Cyber Security and Resilience Analyst

About the job. 

National Highways have an excellent opportunity for a Cyber Security and Resilience Analyst to join our team in Digital Services. As a Cyber Security and Resilience Analyst, you will research, develop, and maintain the Cyber Security and Resilience approach for the business, ensuring alignment with business objectives, implementing the approach across the business and managing it through-life. The Analyst will also support wider security and resilience functions and will play a key role in the security incident management process (preparation, response and recovery) within CS.

Please note this is a hybrid position and can be based from any of our UK offices however some travel, within the UK, will be required to attend team meetings and customer engagements.

• Conduct outreach and engagement across the business, peer organisations and with national authorities (including Department for Transport and Government Security Group) to research appropriate options for National Highways security approach. 
• Engage with Threats and Cyber Futures teams to ensure strategic ambitions inform, and are informed by, ongoing threat analysis and horizon scanning.
• Transition the Security Approach into effective security plans, working across the business to deliver an effective security operating model, incorporating cyber, physical and personnel security. 
• Conduct security and resilience analysis of NH critical digital services and capabilities to inform assurance, exercising and testing; and provide informed cyber security and resilience advice to enhance the security posture of these services. 
• Deliver or support security assurance assessments using common frameworks (CAF, NIST CSF); this will support compliance activities under the Network and Information Systems Regulations 2018.

About you. 

• Recognised cyber and wider security certifications strongly preferred (CISSP, CISM, CRISC etc). 
• Excellent knowledge of information security standards: ISO 27001, ISO 27005, ISO 31000, Cyber Essentials, NCSC Cyber Assessment Framework, ISF Standard of Good Practice for Information Security, NIST Cybersecurity Framework, CIS Top 18 Controls, and GDPR. 
• Strategy, policy and risk experience in a complex security environment (national security or large organisation preferred). 
• Advanced knowledge of threat environments, likely threat adversaries, actors and audiences, and conversant in developing a picture of the Tactics, Techniques and Procedures (TTPs). 
• Able to collect, analyse, and interpret qualitative and quantitative data from various sources and must be able to communicate this succinctly.

About us.

Here at National Highways, we manage and improve England’s motorways and major A roads, helping our customers have safer, smoother and more reliable journeys. Our priorities are safety, customers and delivery, and at the core of this are our values of passion, integrity, safety, teamwork and ownership. 

The Digital Services Directorate is helping to reshape the way National Highways operates by delivering digital, data, and technology services across all areas, from frontline to back office, in a modern and efficient manner. Our vision is to develop integrated information and technology that empowers our colleagues and provides real-time information to our customers, as well as integrating with intelligent vehicle and transport systems as they evolve, to enhance journey safety and reliability. 

External candidates will be offered a starting salary at the lower end of the pay scale, while current employees will be appointed in accordance with our established pay policy. 

We are committed to creating a diverse environment and welcome applicants from all backgrounds. 

Why you should join us

At National Highways we believe in a connected country. We are passionate about creating a culture where colleagues feel connected, included and enjoy greater wellbeing to achieve this. We’re proud that as an organisation we are continually striving to do better and actively encourage and support our colleagues to do the same with their careers. 

So, if you put safety first, take ownership of your work, show passion for what you do, work effectively in a team, and demonstrate integrity in how you do it – then you’ll be a great fit for our organisation.

A connected and sustainable working approach has been adopted across National Highways. For some roles, this means being able to work in a hybrid way spending up to 60% of time working from a remote location such as home.

We offer many different ways to work flexibly and we’re open to discuss part-time working, job shares, and flexible start and finish times. 

Please wait until the interview stage before asking us about flexibility, and we will explore what is possible.

Our benefits package

• Our total reward package includes basic salary, the potential for a performance related bonus
• Contributory pension scheme with employer contribution of up to 10%
• Annual Leave starting at 26 days (plus Bank Holidays) rising by 1 day each year up to 31 days (plus Bank Holidays)
• Flexible hours and an approach driven by connected and sustainable working which includes hybrid working
• Life assurance of 4 times annual salary
• Health and wellbeing support, including an Employee Assistance Programme, available 24/7 365 days and network of mental health first aiders. Plus access to a wellbeing app to enhance your self-care 24/7, Occupational health service and flu vaccines
• A cycle to work scheme for the purchase of a bicycle and equipment for healthy, low carbon travel
• Significant investment in your career development, through learning and development, talent management, coaching, mentoring and on job experience

And we are

• Family friendly with enhanced maternity leave and pay, paternity leave (15 days), shared parental leave, adoption leave. Plus access to financial support for holiday play schemes and paid special leave (up to 5 days pa), eg for caring responsibilities
• Money friendly with access to a discounts platform including over 3000 discounts for supermarkets, eating out, leisure, holidays. Alongside a financial wellbeing programme
• Community friendly – offering paid leave to volunteer, 3 days basic/year

If you are successful, it is key to know all offers of employment are subject to satisfactory completion of our pre-employment checks which include:       

• Right to work check
• 3 year employment history references
• DBS criminal record check
• Social media and adverse journalism check
• Driving licence check (if applicable)
• Fit to work questionnaire (for all), followed by a medical check (if applicable)
• Qualifications and/or professional membership check (if applicable)

And finally 

We reserve the right to close before the advertisement expires.