HMRC is building a modern, digital tax administration and runs the biggest digital operation in Government, providing services for 45 million individuals and 4.9 million business customers. Our digital programme is multi-award winning and the envy of other government organisations!

Data Platform Services (DPS) within the Chief Digital and Information Officer group (CDIO) function designs, builds and operates the data foundations for all of HMRC’s services at a size and scale larger than most other organisations.

The team is leading a major transformation programme encompassing technology, capabilities and data services whilst continuing to deliver high quality and robust services to our internal and external customers.

As Head Security Operations you will play a key leadership role in this transformation journey. You will own the physical and data security accountability for Data Platform Services managing a talented team of HMRC employees, contractors and third party suppliers.

Our team builds and operates all of HMRC’s data platforms and a wide variety of advanced data products and services and is accountable for the secure movement, persistence and use of a large a diverse collection of government and 3rd party data.

We are moving all data into a hybrid cloud environment, building and migrating to a range of data lakes and data warehouses. But it’s not just about the technology; we need the best people to lead this transformation, working in agile ways, continuously delivering value for our internal and external customers.

In this role you will be ensuring the secure development, testing and delivery of data services and products as well as the operation of our secure offices. You will ensure wider government and HMRC Security policy is enforced and policed with existing services and an approach of secure by design ensuring Risk assessment and Threat Models are a critical part of the development lifecycle.

You’ll also be part of the DPS leadership team, working together to co-ordinate operations and delivery to the new functional design model.

The Team:

DPS’ operating model is based on coordinating around a number of data capabilities such as data acquisition, searching and risking. Each delivered and run by a dedicated product-oriented delivery (POD) team.

Your role will be cross cutting touching all parts of the Group including Business Operations, Core Product Engineering and Intelligence Product Engineering, working with external teams such as estates and Cyber Security Information & Risk. You will engage with contractors and third party suppliers designing, building and running industry leading data services on behalf of the department.

We focus on our people, we have a dedicated Data Academy supporting personal development and creating defined career pathways that are rewarding, fulfilling and achievable. We support our team members in managing their own work/life balance. And we have a diverse and inclusive workplace where everyone feels able to bring their whole self to work.

Responsibilities Responsibilities

• Direct line management responsibility for a team of Security Operations Leads within Data Platform Services. The team has a wider responsibility for a growing multi-disciplinary team consisting of both civil servants and contractor/supplier resources
• Translating wider security requirements into a set of clear, consumable and enforceable processes in a constantly evolving area of technology
• Contribute to the Data Platform Services strategy
• Lead on our engagement with internal and external security stakeholders
• Support the wider HMRC data transformation programmes with expertise and resource
• Forging of productive working relationships within CDIO and with HMRC Business Customers
• Engage and collaborate with the DPS leadership team to achieve department objectives within agreed budgets
• Ensure Products and Services we deliver meet stringent security requirement
• Contribute to the evaluation of new technology, designs and solutions as the primary security stakeholder
• Mentor team members and guide the team
Specific Criteria

Essential Criteria:

• An experienced technology leader and manager, with the ability to lead highly skilled teams, with a specialism in security
• A strong understanding of data security and legislation
• Supplier management experience. Influencing commercial partners in a multi-supplier / vendor environment to ensure services are secure and robust
• Experience of physical secure locations and operations
• Experience of secure IT system design
• Credible with both technical teams and business leaders, able to communicate appropriately
• Strong track record in building and developing teams - this will include initiating and delivering change, ensuring respect, developing leadership and management capability
• Experience of people management across large, complex teams distributed geographically

Desirable Criteria:

• to deliver sustainable performance and long term improvements
• Ability to work under pressure and to respond quickly to changing circumstances and tight timetables as priorities evolve and raise
• Either hold or be willing to work towards recognised qualifications and experience on par with:
o Senior/Lead NCSC Certified Professional Schemes (CCP)
o CISMP, CISM, ISO27001 LI
o Undergraduate degree/Postgraduate qualification in an Information Security discipline; or equivalent experience