Chief Information Security Officer (CISO)

Job Overview

The Ministry of Defence (MoD) seeks a CISO with to lead a critical cybersecurity project at a secure UK MoD site. The role focuses on protecting classified systems and enhancing cyber resilience against advanced threats.

Project Objectives

Strengthen cyber defences for MoD critical infrastructure against sophisticated threats, including APTs.
Ensure compliance with HMG policies, JSP 440, JSP 604, and ISO 27001.
Enhance threat detection, incident response, and system recovery capabilities.
Securely integrate cloud and hybrid IT systems.

Key Responsibilities

Lead threat intelligence integration with MoD and NCSC teams.
Design and implement secure architectures (firewalls, IDPS, encryption).
Manage cyber incident response and coordinate with MoD's CSOC and external agencies.
Conduct vulnerability assessments and penetration testing.
Develop and enforce project-specific security policies.
Secure cloud-based systems per NCSC guidelines.
Deliver cybersecurity training to MoD personnel.
Report project progress and metrics to senior leadership.

Essential Qualifications

Active DV clearance (mandatory).
8+ years in cybersecurity, with 3+ years in a senior leadership role.
Experience in UK defence/government environments (JSP 440/604).
Knowledge of NIST, ISO 27001, and cloud security.
Certifications: CISSP, CISM, or equivalent.
Proven incident response and project leadership skills.

Desirable Skills

Experience with MoD CSOC or defence contractors.
Knowledge of zero-trust models or AI-based threat detection.

Personal Attributes

Strategic thinker with strong decision-making under pressure.
Excellent communication for technical and non-technical audiences.
High integrity for handling classified information.

Working Conditions

Job Type: Contract
Location: Secure MoD site, UK (travel may be required).
Hours: Full-time, with out-of-hours availability for incidents.
Security: Strict adherence to MoD protocols.

Application Process

Submit CV t0: