NCSC Support to Cyber Regulation- Technical Lead Ref. 2936

Mind Achieving Impact AwardSocial Mobility Foundation AwardThe Times Top 100Disability confident leaderThe Prince's Responsible Business

Information Assurance and Specialists
Cheltenham, London, Manchester
Starting salary of £59,821 plus National Security Payment of £2,771 subject to mandatory training. An allowance of £6,250 is payable to London contracted employees .

Job Summary

At GCHQ, we unlock the complex world of data and communications to keep the UK and its citizens safe, both in the real world and online. Working closely with our British Intelligence partners in MI5 and MI6, we protect the UK from threats including serious organised crime, terrorism, and cyber-attacks. A role in GCHQ means you’ll have varied and fascinating work in a supportive and encouraging environment that puts the emphasis on teamwork.

The National Cyber Security Centre (NCSC), part of GCHQ, is the UK Government’s lead authority on cyber security. The organisation is at the heart of the Government’s cyber security strategy and has the aim of making the UK the safest place to live and work online.   

Regulation plays a growing role in ensuring the cyber resilience of organisations that are vitally important for the normal day-to-day life of the country, such as those organisations that make up the UK Critical National Infrastructure (CNI).  NCSC supports the effective operation of cyber regulation via a range of activities, such as the development of tools for use by cyber regulators and the provision of advice to government policy makers. 

We are looking for an individual to fill the newly-established post of Technical Lead for the NCSC Support to Regulation Team (StRT), responsible for all technical aspects of NCSC’s work to enable effective cross-sector approaches to cyber resilience regulation.

Job Description

What will the successful candidate be doing?

The StRT Technical Lead will have overall responsibility for the portfolio of technical resources that NCSC has published specifically in support of cyber regulation. This portfolio, which has been widely adopted by cyber regulators, includes a Cyber Assessment Framework (CAF) that enables regulators to set required cyber security levels and assess how well-regulated organisations are meeting those requirements. Working closely with a wide range of relevant NCSC teams, the Technical Lead will:

•    Ensure that NCSC work on the portfolio is informed by an appropriate understanding of relevant technical standards, including international regulatory cyber security standards.

•    Plan the evolution of the portfolio to meet current and future UK cyber regulatory requirements.

•    Manage the technical development of new and/or amended elements of the portfolio. 

•    Oversee the systematic maintenance of the portfolio, keeping it up to date with changes in the cyber risk landscape (such as the evolving cyber threat picture).

•    Provide senior-level technical support to users of the portfolio.  

The role is suitable for flexible working arrangements, including a substantial element of home working. Some travel is required, including travel to occasional meetings in London (if not London based).

The StRT Technical Lead will be encouraged to take full advantage of the extensive opportunities for continued career development in technical cyber security provided to NCSC employees.

Person Specification

The successful applicant will need to have:

•    An in-depth understanding of technical cyber security as demonstrated by an appropriate professional qualification (e.g. NCSC Certified Cyber Professional or similar). 
•    A wide knowledge of cyber security standards and be able to demonstrate extensive relevant experience in applying them, ideally in the context of UK CNI and some familiarity with UK CNI cyber resilience regulation.
•   The ability to communicate effectively on technical subjects with both specialists and non-specialists.

GCHQ Competency Requirements

The NCSC will assess you against competencies used by the UK Intelligence Community. These competencies are based closely on the Civil Service Behaviours. The Level 4 competencies you will be assessed against are:

•    Seeing the Big Picture (Civil Service Behaviour Equivalent: Seeing the Big Picture)
•    Communicating and Influencing (Civil Service Behaviour Equivalent: Communicating and Influencing)
•    Working Collaboratively (Civil Service Behaviour Equivalent: Working Together)
•    Making Effective Decisions (Civil Service Behaviour Equivalent: Making Effective Decisions)
•    Providing Customer Value (Civil Service Behaviour Equivalent: Managing a Quality Service)

Further information on Civil Service Behaviours

Benefits we offer

At NCSC and GCHQ, we are proud of our inclusive and supportive working environment that’s designed to encourage open minds and attitudes.  As an organisation that values and nurtures talent, we are committed to helping you fulfil your potential.  With comprehensive training and development opportunities, tailored to your needs and the requirements of your work, we will enable you to flourish in your role and perform to the very best of your abilities.

You’ll receive a starting salary of £59,821 with potential for skills payments typically in the region of £5,200-£10,400 but potential to rise further after a number of years. It is expected to take 1-2 years to reach the base skills level. Skills payments are periodically reviewed and are subject to validation of experience and practical application within the workplace. The skills payments described here are for guidance only and subject to change. 
Plus, an annual National Security Payment of £2,771, subject to mandatory training. A London Allowance of £6,250 is applicable for London contracted employees.

Other benefits:

•    25 Days Annual Leave automatically rising to 30 days after 5 years' service, and an additional 10.5 days public and privilege holidays
•    An environment with flexible working options
•    Opportunities to be recognised through our employee performance scheme.
•    Interest-free season ticket loan
•    Cycle to work scheme
•    Facilities such as a gym, restaurant and on-site coffee bars (at some locations)
•    Paid parental and adoption leave.
•    Excellent pension scheme - Civil Service pension with an average employer contribution of 27%

Selection Process

Before You Apply

To work at GCHQ, you need to be a British citizen or hold dual British nationality. You can read our full eligibility criteria here

This role requires the highest security clearance, known as Developed Vetting (DV). It’s something everyone in the UK Intelligence Community undertakes. You can find out more about the vetting process here

Please note we have a strict drugs policy, so once you start your application, you can’t take any recreational drugs and you’ll need to declare your previous drug usage at the relevant stage.

The role is based in Cheltenham, London or Manchester so you’ll need to live within a commutable distance. Please consider any financial implications and practicalities before submitting an application, as we do not offer relocation costs.

Please note, you should only launch your application from within the UK. If you are based overseas, you should wait until you visit the UK to launch an application. Applying from outside the UK will impact on our ability to progress your application. You should not discuss your application, other than with your partner or a close family member.

What to Expect

Our recruitment process is fair, transparent, and based on merit. Here is a brief overview of each stage, in order:

1.    Online Application.
2.    Application sift.
3.    Interview.
4.    If successful, you will receive a conditional offer of employment subject to vetting.

Please note, you must successfully pass each stage of the process to progress to the next. Your application may take around 6 - 9 months to process including vetting, so we advise you to continue any current employment until you have received your final job offer.

We’re Disability Confident

GCHQ are proud to have achieved Leader status within the DWP’s Disability Confident scheme.  This is aimed at encouraging employers to think differently about disability and take action to improve how they recruit, retain and develop disabled people.  Being Disability Confident, we aim to offer a person-to-person interview to any candidate who self-identifies as disabled and meets the essential criteria for the role.  This is our ‘Offer of Interview’ (OOI). To secure an interview for this vacancy, the essential criteria (in order of application process) are:

•    An in-depth understanding of technical cyber security as demonstrated by an appropriate professional qualification (e.g. NCSC Certified Cyber Professional or similar). 
•    A wide knowledge of cyber security standards and be able to demonstrate extensive relevant experience in applying them, ideally in the context of UK CNI and some familiarity with UK CNI cyber resilience regulation.
•    Meet the minimum competency requirements for the role.

Equal Opportunities

At GCHQ diversity and inclusion are critical to our mission. To protect the UK, we need a truly diverse workforce that reflects the society we serve. This includes diversity in every sense of the word: those with different backgrounds, ages, ethnicities, gender identities, sexual orientations, ways of thinking and those with disabilities or neurodivergent conditions. We therefore welcome and encourage applications from everyone, including those from groups that are under-represented in our workforce such as women, those from an ethnic minority background, people with disabilities and those from low socio-economic backgrounds.

Find out more about our culture, working environment and diversity on our website:

Our Vetting

To work in this role, you will need the highest security clearance, known as Developed Vetting (DV). It’s something everyone in the UK Intelligence Community must go through and it can take some time. As part of the DV process you will be asked to fill in a detailed questionnaire and attend an interview with a vetting officer. In your interview the vetting officer will have a thorough, compassionate, and honest discussion with you about you as a person and your life experiences, to ensure holding a DV clearance is right for you. You don’t need to do any preparation for your vetting interview, just be honest and be yourself. All applicants for DV are treated impartially and consistently, irrespective of gender, race, disability, religion, age, sexual orientation, and other protected characteristics.

The closing date for this role is: 11:55pm 16th June 2023

Right to Withdraw Statement: 

Please be aware that we withhold the right to bring forward the closing date for this role from the original closing date once a certain number of applications have been received. Please be mindful of this and submit your application at your earliest convenience to avoid disappointment.


This Program / Vacancy is closed to applications.