Cyber Security Manager

General information

Reference

001579  

Publication start date

16/12/2024

Publication end date

10/01/2025

Post Description

Cyber Security Manager

Closing date

20/05/2024

Vacancy location

Location

South West, Gloucestershire, Rosehill - Hybrid

Vacancy details

Job Profile

Digital Services - Enterprise Security

Title

Cyber Security Manager

Contract Type

Full Time

About us

About UCAS

UCAS is at the heart of connecting people to higher education.

 

UCAS is the world’s leading shared admissions service for higher education. We provide application services for UK universities and colleges as well as delivering a wide range of research, consultancy and advisory services to schools, colleges, careers services, professional bodies and employers.

 

We’re a successful and fast-growing organisation, which helps hundreds of thousands of people every year. We're committed to delivering a first-class service to all of our customers — they're at the heart of everything we do.

Business Unit description

The Digital Delivery business unit runs UCAS’ day-to-day frontline services, digital products and technical infrastructure for all customers, including applicants and providers. The unit is also responsible for developing and improving customer-centric products in close collaboration with UCAS’ product function.

Services to customers include the Customer Experience Centre, providing comprehensive high quality services to support applicants in their journey into university and other higher education provision. Digital Delivery is responsible for running UCAS’ Confirmation and Clearing service, and logistics related to key deadlines in the cycle.

Working in cross-company multi-disciplinary teams comprising customer insight, product managers, architects, developers, testers, and data scientists, the Digital Delivery business unit ensures that UCAS is a customer-centric, product-focused digital business, connecting students with their next opportunity.

About the role

Contractual Hours

35.00

About the role

UCAS is widely understood to be the equivalent of UK Critical National Infrastructure at certain points of the curriculum year. The Cyber Security Manager will support the Enterprise Security Lead to ensure an appropriate level of security assurance for Executive Members, Trustees and UK Government at all times.

 

This role will also provide expertise and support to the Enterprise Security Lead in achieving the strategic goals in UCAS for IT/Cyber security, helping to drive a level of excellence throughout the entire organisation that presents UCAS as 'The Exemplar' in cyber security across the education sector. The Cyber Security Manager will also assist in providing an integrated security service with strong links to all parts of the business including executive members.

 

Key accountabilities:

· Provide an internal security service, collaborating with various teams on security matters and responding to SAQ’s.

· Collaborate with the Enterprise Security Lead and other security team members in developing and maintaining both a strategy and Security maturity model that can be benchmarked with similar organisations.

· Lead/Support Cyber Security Initiatives/Projects as directed.

· Work closely with our primary outsource provider, including both onshore and offshore teams, assuring the operational security service they are contracted to provide.

For a full list of accountabilities see attached role profile.

Skills, qualifications, and experience

· One or more of the following qualifications: CompTia Security +, CISM, GIAC, CISSP, CISMP or SANS Certification.

· ITIL V3/V4 Foundation and above.

· Significant experience in a similar role, however lesser experience will still be considered for the right candidate.

· Working knowledge/understanding of the adherence to standards such as ISO27001, CIS-18, NIST CSF, OWASP, MITRE ATT@CK, GDPR etc.

· Good understanding of both the technical and operational aspects of IT systems and services, and security practices (SSDLC) embedded into agile development methodologies.

· A confident communicator, both verbal and written, comfortable engaging with internal customers at all levels, both technical and non-technical.

Package

 

Salary - up to £60,000

 

· 30 days annual leave (plus 3 concessionary days over Christmas and your bank holidays!)

· Flexibility – UCAS positively supports Hybrid working for its employees, meaning you can work between home and the office in a way that suits you and the business and also has a comprehensive Flexible Working Policy

· A generous pension scheme

· Hundreds of high street discounts and offers with Perkbox

· Internal training and development

· Subsidised gym and café

· Be rewarded for going above and beyond with our ex-gratia bonus scheme and

· Celebrating U, our quarterly employee recognition scheme

· Dedicated volunteer employee networks promoting wellbeing, awareness and inclusion

 

 

Studies have shown that some groups of people are less likely to apply to a role unless they tick every box. At UCAS we recognise that talent comes in various forms and we are committed to delivering a fair and equitable recruitment process where applicants have an equal opportunity to demonstrate their skills. So, if you think you have what it takes, but don't necessarily meet every single point on the job description, please still apply.

 

If you have any questions and would like to find out more about the role before applying please email the Talent Acquisition team via careers@ucas.ac.uk and one of us will be in touch.

Attachments

Attachment

Cyber Secuirty Manager May 2024.pdf (335 Kb)