Senior Data Security Architect - GDS - G7

Location

Bristol, London, Manchester

About the job

Job summary

The Government Digital Service (GDS) is the digital centre of government. We are responsible for setting, leading and delivering the vision for a modern digital government.

Our priorities are to drive a modern digital government, by:

1. joining up public sector services
2. harnessing the power of AI for the public good
3. strengthening and extending our digital and data public infrastructure
4. elevating leadership and investing in talent
5. funding for outcomes and procuring for growth and innovation
6. committing to transparency and driving accountability

We are home to the Incubator for Artificial Intelligence (I.AI), the world-leading GOV.UK and at the forefront of coordinating the UK’s geospatial strategy and activity. We lead the Government Digital and Data function and champion the work of digital teams across government.

We’re part of the Department for Science, Innovation and Technology (DSIT) and employ more than 1,000 people all over the UK, with hubs in Manchester, London and Bristol.

The Government Digital Service is where talent translates into impact. From your first day, you’ll be working with some of the world’s most highly-skilled digital professionals, all contributing their knowledge to make change on a national scale.

Join us for rewarding work that makes a difference across the UK. You'll solve some of the nation’s highest-priority digital challenges, helping millions of people access services they need

You’ll be joining the GDS Data Sharing Team, we are strengthening the Data Foundations for the whole public sector to make data sharing easier. We work in partnership across government to define the data strategy, by building consensus through the development of common frameworks and standards.

Job description

As a GDS Senior Data Security Architect working in the Office of the Government Chief Data Officer, you’ll be collaborating with other government departments to develop and publish data security standards for government and the wider public sector.

You’ll have an understanding of agile environments, continual delivery techniques and devops cultures.

With the ability to drive through an agenda, you will be collaborating with other teams in GDS, including our consulting technical architects, the technology policy team, tech writers, and others, as standards are developed and shaped. This will also mean delivering presentations to various stakeholders at all levels.

The role will include travel to different government departments and agencies, therefore there must be a willingness to undertake this.

As a Senior Data Security Architect you’ll:

• develop data security standards for government
• advise on data security for government services
• perform threat modelling as part of a security risk assessment
• apply Secure by Design activities to government services
• identify opportunities to use novel privacy-enhancing technologies to enable data-driven collaboration without compromising on privacy and security
• contribute to API design, including how to make APIs secure
• develop data security controls to mitigate risks applying to AI systems
• work in agile multi-disciplinary teams, with software developers using tools such as Github and following continuous delivery and devops practices

Person specification

We’re interested in people who can:

• understand how to balance the needs of security against the need of users to access and use data to derive value
• communicate effectively with both technical and non-technical stakeholders, support and host discussions within a multidisciplinary team, and manage differing stakeholder perspectives
• show an awareness of opportunities for innovation with new tools and uses of data, for example emerging privacy-enhancing technologies
• understand what data governance is and take responsibility for the assurance of data solutions and make recommendations to ensure compliance
• explain the concepts and principles of data modelling, produce, maintain and update relevant data models for an organisation’s specific needs, reverse-engineer data models from a live system
• work with subject matter experts to develop standards, policies and guidance to secure data
• explain the strategic context of your work and why it is important, support strategic planning in an administrative capacity
• design data architecture that deals with specific data security problems and align it to enterprise-wide standards and principles
• work within the context of well understood architecture, and identify appropriate patterns
• demonstrate a good understanding of data security concepts and can apply them to a technical level
• work with risk owners to advise and give feedback, advise on risk impact and whether it's within risk tolerance, describe different risk methodologies and how these are applied, as well as the proportionality of risk