Defence Digital - Chief Information Security Officer
UK Ministry of DefenceUnited Kingdom1 day ago
Full-timeRemote FriendlyInformation Technology
Track This Job
Add this job to your tracking list to:
- Monitor application status and updates
- Change status (Applied, Interview, Offer, etc.)
- Add personal notes and comments
- Set reminders for follow-ups
- Track your entire application journey
Save This Job
Add this job to your saved collection to:
- Access easily from your saved jobs dashboard
- Review job details later without searching again
- Compare with other saved opportunities
- Keep a collection of interesting positions
- Receive notifications about saved jobs before they expire
AI-Powered Job Summary
Get a concise overview of key job requirements, responsibilities, and qualifications in seconds.
Pro Tip: Use this feature to quickly decide if a job matches your skills before reading the full description.
Although Defence Digital's main hubs are in the South West and London, the postholder can work from any MOD site in the UK.
Job Summary
The MOD's digital teams ensure we remain among the most technologically advanced Armed Forces in the world. We develop and lead in cutting-edge data science, automation, and cybersecurity solutions to protect the UK and its interests, at home and abroad. Our mission also goes beyond the battlefield by leading humanitarian efforts and driving innovation that impacts lives across the globe.
Watch our video to see what we do at Defence Digital!
This position is advertised at 37 hours per week.
Job Description
The Digital Delivery Chief Information Security Officer position is a high-impact role with accountability for driving improvements in the Cyber Risk Position of the core digital capabilities delivered and supported by Defence Digital.
You’ll work closely with senior leaders, driving innovation, ensuring risks are suitably mitigated and embedding secure-by-design principles into everything we do. Your expertise will make a real difference, helping to safeguard national security and ensuring our digital future is resilient, secure and ready for tomorrow’s challenges.
Ensuring robust governance, risk management and compliance frameworks are in place, you’ll champion a positive security culture across the organisation, improving cyber security and information security awareness, knowledge and skills.
Responsibilities
You’ll work closely with senior leaders, driving innovation, ensuring risks are suitably mitigated and embedding secure-by-design principles into everything we do. Your expertise will make a real difference, helping to safeguard national security and ensuring our digital future is resilient, secure and ready for tomorrow’s challenges.
Ensuring robust governance, risk management and compliance frameworks are in place, you’ll champion a positive security culture across the organisation, improving cyber security and information security awareness, knowledge and skills.
Responsibilities
We would expect to see extensive experience in Cyber and Information Security leadership, within a large, complex organisation(s) and demonstrable ability to develop and maintain governance and risk management frameworks.
You’ll have a thorough understanding of secure-by-design principles, digital resilience and compliance requirements, with experience of managing security incidents, audits and remediation activities.
This position may be suitable for individuals with relevant skills and experience in information security governance & management, risk assessment & information risk management, technical security architecture or with appropriate skills gained in an ICT assurance or compliance environment.
You’ll Need:
If not already held, successful candidates will be required to undergo DV clearance. Please note this position is open to sole UK Nationals only.
Behaviours
We'll assess you against these behaviours during the selection process:
We'll assess you against these technical skills during the selection process:
Defence Digital operates an organisation model in which every individual belongs to a Government Profession. The successful applicant will be posted into one of the defined Government Professions on Standard Terms of Reference for the grade. Defence Digital reserves the right to move individuals between roles, within their allocated profession, to meet the needs of the business and in support of agile resourcing. Within Defence Digital each profession is led by a Professional Head of Community who will lead professional development and support the Continuous Professional Development path for their group.
Learning & Development
We have a strong learning and development ethos, supporting you to fulfil your potential by providing:
Where business needs allow, some roles may be suitable for a combination of office and home-based working. This is a non-contractual arrangement where all office-based employees will be expected to spend a minimum of 60% of their working time in office, subject to capacity and any required workplace adjustments. Requirements to attend other locations for official business, or work in another MOD office, will also count towards this level of attendance. Applicants can request further information regarding how this may work in their team from the Vacancy Holder (see advert for contact details). Defence Business Services cannot respond to any questions about working arrangements. Some roles will involve regular travel within the UK to various Defence and partner sites. In addition, certain positions will require office attendance at least 3 days per week. Please note that travel across all listed sites and other Defence and partner locations within the UK will be a regular requirement. There may also be occasional opportunities or requirements for overseas travel.
Defence is going through a significant transformation programme which aims to improve the way the Command conducts its business and delivers for Defence and the nation. As a consequence of this, all posts within Defence Headquarters and in time the wider organisation, are/will be subject to review and potential changes as we continuously improve across the period of the transformation programme. These changes may be minor or could be more substantive and will generate new opportunities. Throughout, the transformation programme is committed to following the MOD’s framework on managing and supporting people through the change process and places an emphasis on early and open consultation and engagement with personnel and Trade Unions.
Artificial intelligence
Artificial intelligence can be a useful tool to support your application, however, all examples and statements provided must be truthful, factually accurate and taken directly from your own experience. Where plagiarism has been identified (presenting the ideas and experiences of others, or generated by artificial intelligence, as your own) applications may be withdrawn and internal candidates may be subject to disciplinary action. Please see our candidate guidance (opens in a new window) for more information on appropriate and inappropriate use.
Selection process details
This vacancy is using Success Profiles (opens in a new window), and will assess your Behaviours, Experience and Technical skills.
Sift
At sift, you will be assessed against your CV and statement of suitability.
To apply, please upload your CV in the relevant section on the Civil Service Jobs dashboard, ensuring it clearly demonstrates how you meet the essential criteria outlined in the person specification. You must also submit a statement of suitability (maximum 1,250 words) providing evidence of how you meet these criteria.
Please make sure your application clearly outlines your relevant experience, referencing the key skills and capabilities listed in the job advert.
Here is a link to a video offering helpful tips and guidance on the Civil Service Jobs application process: Watch: How to apply on CS Jobs: Guide and Tips
Interviews
If You Are Invited For An Interview, We’ll Assess You Against These Behaviours, Technical Skills & Experience During The Interview Process:
Behaviours
You will be asked to prepare and deliver a 5-minute (max) presentation on a role-related subject. You will be contacted with further details prior to interview.
The Government Security Profession Career Framework and the Cyber Security - Head of Cyber Security role used in this vacancy can be found at: Government Security Profession career framework.
Please Note:
The Ministry of Defence is committed to providing a safe and healthy working environment for its staff which includes educating them on the benefits of not smoking, protecting them from the harmful effects of second-hand smoke and supporting those who want to give up smoking. Under the Smoke-Free Working Environment policy, Smoking and the use of all tobacco products (including combustible and chewing tobacco products) will not be permitted anywhere in the Defence working environment however some exemptions are in place, please refer to local guidance. The policy is Whole Force and includes all Defence personnel, contractors, visitors and other non-MOD personnel. All applicants seeking, considering, or accepting employment with the Ministry of Defence should be aware of this policy and that it is already in place at a number of Defence Establishments.
MOD Recruitment Satisfaction Survey – We may contact you regarding your experience to help us improve our customer satisfaction. The survey is voluntary and anonymous. You may however be given the opportunity to provide additional information to help us improve our service which includes the collection of some personal data as defined by the United Kingdom General Data Protection Regulation (UK GDPR). The MOD Privacy Policy Notice sets out how we will use your personal data and your rights.
Feedback will only be provided if you attend an interview or assessment.
This vacancy is using Success Profiles (opens in a new window), and will assess your Behaviours, Experience and Technical skills.
Security
Successful candidates must undergo a criminal record check.
Successful candidates must meet the security requirements before they can be appointed. The level of security needed is developed vetting (opens in a new window).See our vetting charter (opens in a new window).
People working with government assets must complete baseline personnel security standard (opens in new window) checks.
Successful candidates must undergo a criminal record check.
Successful candidates must meet the security requirements before they can be appointed. The level of security needed is developed vetting (opens in a new window).See our vetting charter (opens in a new window).
People working with government assets must complete baseline personnel security standard (opens in new window) checks.
Nationality requirements
Open to UK nationals only.
Working for the Civil Service
The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.
We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).
The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.
The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.
The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.
We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).
The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.
The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.
Diversity and Inclusion
The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see the Civil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window).
This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative.
Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.
Contact point for applicants
Job Contact :
Please ensure you read the attached candidate information document prior to completing your application. If you are dissatisfied with the service you have received from DBS, or believe that DBS has failed to follow the recruitment process in line with the Civil Service Commission principles of selection for appointment on merit on the basis of Fair and Open competition, you can raise a formal complaint by writing to DBS at the following address: Defence Business Services, Scanning Hub, Room 6124, Tomlinson House, Norcross Lane, Blackpool, FY5 3WP. If after raising your complaint with DBS you remain dissatisfied you can complain directly to the Civil Service Commission at the following address: Civil Service commission, Room G/8, 1 Horse Guards Road, London, SW1A 2HQ Or by email: [email protected].
Job Summary
The MOD's digital teams ensure we remain among the most technologically advanced Armed Forces in the world. We develop and lead in cutting-edge data science, automation, and cybersecurity solutions to protect the UK and its interests, at home and abroad. Our mission also goes beyond the battlefield by leading humanitarian efforts and driving innovation that impacts lives across the globe.
Watch our video to see what we do at Defence Digital!
This position is advertised at 37 hours per week.
Job Description
The Digital Delivery Chief Information Security Officer position is a high-impact role with accountability for driving improvements in the Cyber Risk Position of the core digital capabilities delivered and supported by Defence Digital.
You’ll work closely with senior leaders, driving innovation, ensuring risks are suitably mitigated and embedding secure-by-design principles into everything we do. Your expertise will make a real difference, helping to safeguard national security and ensuring our digital future is resilient, secure and ready for tomorrow’s challenges.
Ensuring robust governance, risk management and compliance frameworks are in place, you’ll champion a positive security culture across the organisation, improving cyber security and information security awareness, knowledge and skills.
Responsibilities
- Lead Cyber Security – Act as the primary point of contact for Cyber and Information Security, ensuring strong governance and clear accountability across the organisation and supply chain.
- Manage Risk – Deliver and maintain the Cyber and Information Risk Management Framework, identifying, assessing and mitigating risks effectively.
- Embed Resilience – Drive secure-by-design principles and digital resilience into all programmes and services from the outset.
- Ensure Compliance – Oversee audits, incident management and adherence to Defence standards and regulations.
- Promote Security Culture – Champion awareness and training, so everyone understands their role in maintaining security.
- Protect Information Assets – Ensure Data Protection Advisors and Information Asset (DPIA) Owners manage personal data responsibly, with DPIAs in place for systems and services.
- Incident Management - Ensure all cyber and information security incidents, breaches and near misses are appropriately managed, reported and investigated appropriately, to ensure that risk is mitigated and lessons identified, recorded and learnt.
- Line management of a small team and matrix management within a larger organisation.
You’ll work closely with senior leaders, driving innovation, ensuring risks are suitably mitigated and embedding secure-by-design principles into everything we do. Your expertise will make a real difference, helping to safeguard national security and ensuring our digital future is resilient, secure and ready for tomorrow’s challenges.
Ensuring robust governance, risk management and compliance frameworks are in place, you’ll champion a positive security culture across the organisation, improving cyber security and information security awareness, knowledge and skills.
Responsibilities
- Lead Cyber Security – Act as the primary point of contact for Cyber and Information Security, ensuring strong governance and clear accountability across the organisation and supply chain.
- Manage Risk – Deliver and maintain the Cyber and Information Risk Management Framework, identifying, assessing and mitigating risks effectively.
- Embed Resilience – Drive secure-by-design principles and digital resilience into all programmes and services from the outset.
- Ensure Compliance – Oversee audits, incident management and adherence to Defence standards and regulations.
- Promote Security Culture – Champion awareness and training, so everyone understands their role in maintaining security.
- Protect Information Assets – Ensure Data Protection Advisors and Information Asset (DPIA) Owners manage personal data responsibly, with DPIAs in place for systems and services.
- Incident Management - Ensure all cyber and information security incidents, breaches and near misses are appropriately managed, reported and investigated appropriately, to ensure that risk is mitigated and lessons identified, recorded and learnt.
- Line management of a small team and matrix management within a larger organisation.
We would expect to see extensive experience in Cyber and Information Security leadership, within a large, complex organisation(s) and demonstrable ability to develop and maintain governance and risk management frameworks.
You’ll have a thorough understanding of secure-by-design principles, digital resilience and compliance requirements, with experience of managing security incidents, audits and remediation activities.
This position may be suitable for individuals with relevant skills and experience in information security governance & management, risk assessment & information risk management, technical security architecture or with appropriate skills gained in an ICT assurance or compliance environment.
You’ll Need:
- Excellent stakeholder engagement and influencing skills at senior levels.
- Strong analytical and problem-solving abilities with a risk-based approach.
- Ability to lead cultural change and promote security awareness across diverse teams.
- Effective communication skills, both written and verbal, for assurance reporting and governance representation.
- Describe your experience of managing cyber security governance, risk and compliance aspects within an organisation.
- Provide an example of when you have managed a Cyber Security incident, the approach used and the outcome.
- Describe your experience of leading, managing and developing a team and of resources not owned by the organisation.
If not already held, successful candidates will be required to undergo DV clearance. Please note this position is open to sole UK Nationals only.
Behaviours
We'll assess you against these behaviours during the selection process:
- Leadership
- Communicating and Influencing
We'll assess you against these technical skills during the selection process:
- Information risk assessment and risk management
- Applied security capability
- Protective security
- Threat understanding
- This post is eligible for a Digital Skills Allowance of up to £18,000 per annum. Eligibility for this allowance will be assessed at interview against 4 core technical skills only and reviewed annually in line with MOD policy.
- Flexible working options- we understand the importance of adapting work to your life.
- Inclusion and diversity- our culture celebrates uniqueness and encourages collaboration of diverse thought.
- Generous annual leave- starting with 25 days and growing to 30 after just 5 years.
- Pension contribution: 28.97%
- Minimum of 15 Days Special Leave in a rolling 12-month period to volunteer for military or emergency service reserve commitments.
- Special Paid Leave for volunteering up to 6 days a year.
- Enhanced maternity, paternity and adoption leave.
- Most sites have good travel links with free car parking; many also have other facilities such as a Sports & Social Club and Gyms
- You can read more here- Civil Service Employee Benefits , Civil Service Careers (civil-service-careers.gov.uk)
Defence Digital operates an organisation model in which every individual belongs to a Government Profession. The successful applicant will be posted into one of the defined Government Professions on Standard Terms of Reference for the grade. Defence Digital reserves the right to move individuals between roles, within their allocated profession, to meet the needs of the business and in support of agile resourcing. Within Defence Digital each profession is led by a Professional Head of Community who will lead professional development and support the Continuous Professional Development path for their group.
Learning & Development
We have a strong learning and development ethos, supporting you to fulfil your potential by providing:
- Learning and development tailored to your role
- Professional skills development
- Access to thousands of training courses through Civil Service Learning
- Ability to obtain industry recognised qualifications supported by MOD
Where business needs allow, some roles may be suitable for a combination of office and home-based working. This is a non-contractual arrangement where all office-based employees will be expected to spend a minimum of 60% of their working time in office, subject to capacity and any required workplace adjustments. Requirements to attend other locations for official business, or work in another MOD office, will also count towards this level of attendance. Applicants can request further information regarding how this may work in their team from the Vacancy Holder (see advert for contact details). Defence Business Services cannot respond to any questions about working arrangements. Some roles will involve regular travel within the UK to various Defence and partner sites. In addition, certain positions will require office attendance at least 3 days per week. Please note that travel across all listed sites and other Defence and partner locations within the UK will be a regular requirement. There may also be occasional opportunities or requirements for overseas travel.
Defence is going through a significant transformation programme which aims to improve the way the Command conducts its business and delivers for Defence and the nation. As a consequence of this, all posts within Defence Headquarters and in time the wider organisation, are/will be subject to review and potential changes as we continuously improve across the period of the transformation programme. These changes may be minor or could be more substantive and will generate new opportunities. Throughout, the transformation programme is committed to following the MOD’s framework on managing and supporting people through the change process and places an emphasis on early and open consultation and engagement with personnel and Trade Unions.
Artificial intelligence
Artificial intelligence can be a useful tool to support your application, however, all examples and statements provided must be truthful, factually accurate and taken directly from your own experience. Where plagiarism has been identified (presenting the ideas and experiences of others, or generated by artificial intelligence, as your own) applications may be withdrawn and internal candidates may be subject to disciplinary action. Please see our candidate guidance (opens in a new window) for more information on appropriate and inappropriate use.
Selection process details
This vacancy is using Success Profiles (opens in a new window), and will assess your Behaviours, Experience and Technical skills.
Sift
At sift, you will be assessed against your CV and statement of suitability.
To apply, please upload your CV in the relevant section on the Civil Service Jobs dashboard, ensuring it clearly demonstrates how you meet the essential criteria outlined in the person specification. You must also submit a statement of suitability (maximum 1,250 words) providing evidence of how you meet these criteria.
Please make sure your application clearly outlines your relevant experience, referencing the key skills and capabilities listed in the job advert.
Here is a link to a video offering helpful tips and guidance on the Civil Service Jobs application process: Watch: How to apply on CS Jobs: Guide and Tips
Interviews
If You Are Invited For An Interview, We’ll Assess You Against These Behaviours, Technical Skills & Experience During The Interview Process:
Behaviours
- Leadership
- Communicating & Influencing
- Information risk assessment and risk management
- Applied security capability
- Protective security
- Threat understanding
You will be asked to prepare and deliver a 5-minute (max) presentation on a role-related subject. You will be contacted with further details prior to interview.
The Government Security Profession Career Framework and the Cyber Security - Head of Cyber Security role used in this vacancy can be found at: Government Security Profession career framework.
Please Note:
- The post does not offer relocation expenses.
- External recruits who join the MOD who are new to the Civil Service will be subject to a six-month probation period.
- Expenses incurred for travel to interviews will not be reimbursed.
- Please be advised that the Department is conducting a review of all pay related allowances which could impact on those allowances that the post currently being advertised attracts.
The Ministry of Defence is committed to providing a safe and healthy working environment for its staff which includes educating them on the benefits of not smoking, protecting them from the harmful effects of second-hand smoke and supporting those who want to give up smoking. Under the Smoke-Free Working Environment policy, Smoking and the use of all tobacco products (including combustible and chewing tobacco products) will not be permitted anywhere in the Defence working environment however some exemptions are in place, please refer to local guidance. The policy is Whole Force and includes all Defence personnel, contractors, visitors and other non-MOD personnel. All applicants seeking, considering, or accepting employment with the Ministry of Defence should be aware of this policy and that it is already in place at a number of Defence Establishments.
MOD Recruitment Satisfaction Survey – We may contact you regarding your experience to help us improve our customer satisfaction. The survey is voluntary and anonymous. You may however be given the opportunity to provide additional information to help us improve our service which includes the collection of some personal data as defined by the United Kingdom General Data Protection Regulation (UK GDPR). The MOD Privacy Policy Notice sets out how we will use your personal data and your rights.
Feedback will only be provided if you attend an interview or assessment.
This vacancy is using Success Profiles (opens in a new window), and will assess your Behaviours, Experience and Technical skills.
Security
Successful candidates must undergo a criminal record check.
Successful candidates must meet the security requirements before they can be appointed. The level of security needed is developed vetting (opens in a new window).See our vetting charter (opens in a new window).
People working with government assets must complete baseline personnel security standard (opens in new window) checks.
Successful candidates must undergo a criminal record check.
Successful candidates must meet the security requirements before they can be appointed. The level of security needed is developed vetting (opens in a new window).See our vetting charter (opens in a new window).
People working with government assets must complete baseline personnel security standard (opens in new window) checks.
Nationality requirements
Open to UK nationals only.
Working for the Civil Service
The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.
We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).
The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.
The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.
The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.
We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).
The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.
The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.
Diversity and Inclusion
The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see the Civil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window).
This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative.
Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.
Contact point for applicants
Job Contact :
- Name : DD Talent Acquisition Team
- Email : [email protected]
- Email : [email protected]
Please ensure you read the attached candidate information document prior to completing your application. If you are dissatisfied with the service you have received from DBS, or believe that DBS has failed to follow the recruitment process in line with the Civil Service Commission principles of selection for appointment on merit on the basis of Fair and Open competition, you can raise a formal complaint by writing to DBS at the following address: Defence Business Services, Scanning Hub, Room 6124, Tomlinson House, Norcross Lane, Blackpool, FY5 3WP. If after raising your complaint with DBS you remain dissatisfied you can complain directly to the Civil Service Commission at the following address: Civil Service commission, Room G/8, 1 Horse Guards Road, London, SW1A 2HQ Or by email: [email protected].
Key Skills
Ranked by relevanceReady to apply?
Join UK Ministry of Defence and take your career to the next level!
Application takes less than 5 minutes