Information Rights and Security Outcomes (CSC)

Closing date for applications: 20/03/2020
Specialist role
Cyber security consultant
Summary of the work
As Industry leading partners to work with us to manage and maintain the confidentiality, integrity and availability of data and information assets, through definition, implementation and maintenance of information policies and operational controls at Highways England resulting in robust Information Rights and Information Security services.
Latest start date
Expected contract length
12 months approximately
South West England
Organisation the work is for
Highways England Company Limited
Maximum day rate
Early market engagement
Who the specialist will work with
Chief Data Officer, Chief Information Officer, Senior Information Risk Officer, IT senior leadership team, Risk, monitor and audit roles, Economic & finance roles, Senior customers of Information & Technology products and services, Project managers, NCSC, DFT, Cabinet Offices GDS team, Information Commissioners Office. Information Rights Team members and Information Security Team members.
What the specialist will work on
As an industry leader, review organisational compliance with relevant Information Rights/Security standards/legislation and monitor requirements. Including but not limited to FOI/DPA/ NISD/PSN as provider of Critical National Infrastructure. Using industry standards to assess/review resource/demand management of information and Security Services ensuring provision/ maintenance of sufficient management systems/lead resources to prevent, detect, respond to/mitigate threats preventing loss of confidentiality/integrity/availability of information assets. Using industry standards and best practice to review, assess/implement policies, processes and systems to manage the continuity of information services and the recovery of information systems, services in the event of crisis, disaster or other unforeseen circumstances
Address where the work will take place
Base location Manchester or Bristol with travel to other locations such as Birmingham, Leeds, London, Bedford, Guildford.
Working arrangements
Monday to Friday with a base at either Manchester or Bristol, as many of the Key Contacts are in these locations. Travel will be required between these sites and Birmingham. Travel to other locations may be necessary. Face to face and video calls will be required, travel may be required 2-3 days a week depending on base location.
Security clearance
Security Check (SC)
Additional terms and conditions
How many specialists to evaluate
Cultural fit criteria
Work as a team with our organisation and other suppliers Take responsibility for their work Challenge the status quo Be comfortable standing up for their discipline Keep ourselves and others safe, above all else Open, honest and professional, respect and value the contribution others make, do what we say, always do the right thing Work together effectively to achieve our goals, work efficiently and flexibly, listen to others and communicate clearly Take accountability, learn from failure and celebrate success, agree stretching goals and delivering them, maintain focus on our imperatives
Assessment methods
Evaluation weighting
Technical competence 60% Cultural fit 20% Price 20%
Essential skills and experience
  • Provides an expert understanding, ability to apply security concepts to a technical level, at the highest levels of risk complexity
  • Able to effectively translate and accurately communicate security and risk implications at the most senior levels across technical and non-technical stakeholders, and able to respond to challenge
  • Able to manage stakeholders’ expectations across high-risk and complexity or under constrained timescales
  • Ensures data governance supports changes to the organisational strategy. Aligns data governance with wider governance (e.g. budget)
  • Assures corporate services by understanding key risks and mitigation through assurance mechanisms
  • Detailed knowledge in information security, able to design, quality review, quality assure solutions/services with security controls embedded, specifically engineered as mitigation against security threats as core part of solutions/services
  • Strong knowledge of system architectures. Able to understand and articulate impact of vulnerabilities on existing/future designs, systems and how easy or difficult it will be to exploit these vulnerabilities
  • Capable of shaping and influencing government strategy
  • Develops and sets data standards across multiple subject areas
  • Knowledge and experience of Network and Information Systems Directive, ISO27001, General Data Protection Act (including ROPA), Freedom of Information Act
  • To provide technical support to the Information Technology Directorate working for the Chief Data Officer
Nice-to-have skills and experience
  • Understands how metadata repositories can support different areas of the business. Promotes and communicates the value of metadata repositories
  • Designs data architecture dealing with problems that span different business areas. Draws links between problems to reach common solutions. Works across multiple subject areas, a single large/complicated subject area

Closing date for applications: 20/03/2020

Information Rights and Security Outcomes (CSC)

Closing date for applications: 20/03/2020

Specialist role:

Cyber security consultant


South West England


Highways England Company Limited

Maximum day rate:


IT Recruitment Marketplace
The Hive Enterprise Centre, Victoria Avenue
Southend-on-Sea, Essex SS2 6EX
© IT Recruitment Marketplace
To change your subscription email us here