Programme Manager - Slough

Information/Business Risk
Ref: 120 Date Posted: Monday 20 Jun 2022
LinkedIn ShareShare
Company:    Energy
Location: Hybrid – Home & Berkshire (occasional travel may be required).
Reports to: CISO
Salary: £70,000 - £80,000 (12-month fixed term contract)
Benefits: Generous
Start Date:  September (or sooner if possible)


The Role
The scope is broad and challenging, spanning business and IT domains in the creation of new capabilities. Topics include information discovery & classification, new systems & capabilities, data controls and data monitoring. There will be many problems to solve and challenges to overcome, including breaking through any barriers to new ways of working. The role presents a fantastic opportunity to lead cutting-edge developments and to drive tangible business improvements.
Under the Nuclear Non-Proliferation Treaty, regulators from all 4 of the operating countries expect to have its export-controlled information (ECI) under control. A greater degree of control is also required to leverage current technologies, enhance collaboration and support the IT agenda. Much work has been done to understand and clarify the complex subject of export controls and an ECI Protection strategy has been devised which will transform how this type of date is managed, across all of its businesses. This role will lead the ECI Protection Programme, in order to realise this strategy.
This role is part of the Information Security PMO and reports to the CISO, who is responsible for Information Governance.
The successful candidates will be required to achieve and maintain SC clearance.
Main Responsibilities
Own, evolve and deliver the ECI Protection programme:
•             Assure the delivery of the required workstreams and projects within the programme; establish governance as required to ensure these deliver to time, cost and quality targets, in-line with applicable policies, best practices and Information Security standards
•             Work with subject matter experts to scope, shape, size and mobilise new projects as needed to realise the ECI Protection strategy and mitigate compliance risks
•             Manage programme-level risks, assumptions, issues and dependencies; connect the dots across workstreams and with ‘business-as-usual’ to ensure alignment and coherence
•             Support and ensure alignment with other initiatives which enable the ECI protection programme (e.g the development of Export Control policies, standards, guidelines, procedures and training)
•             Represent the programme at governance forums; lead status updates and secure the required decisions and approvals; resolve problems, escalate where needed and drive prioritisation calls
•             Work with stakeholders to adapt the ECI protection strategy and programme as required, based on the results and insights gained over time
Manage programme resources:
•             Resource the programme as required including internal staff allocations, recruitment and the procurement of 3rd party solutions and professional services where needed
•             Guide, challenge and support programme team members and hold people accountable for delivering on their commitments, be they internal or external
•             Manage the overall programme budget & funding
Lead change management for the programme:
•             Lead internal communications for the programme, support workforce engagement (e.g. via works councils) and drive any required interventions (e.g. user training for new systems)
•             Ensure changes are successfully deployed, adopted and embedded in the business and that projects are transitioned to BAU; measure success & capture lessons learned
Job requirements
Vocational Qualifications:
•             Educated to bachelor’s degree level or higher
•             Project Management qualifications such as PMI BOK, MSP, Prince2 or similar would be an advantage
•             Information Security qualifications such as CISSP, CISM or similar would be an advantage
Behavioural competencies:
•             Strong leadership and organisational skills
•             Strong communication skills with the ability to articulate complex concepts to stakeholders
•             Ability to effectively influence across the organisation, including senior management
•             A fast learner, willing to learn about export control regulations
•             Pragmatic, action-oriented, focussed on customer outcomes, avoids ‘analysis-paralysis’
•             Strong problem-solving ability
•             A ‘can-do’ attitude, adaptable, comfortable with and able to resolve uncertainty
•             Hands-on, takes an active role in delivery and able to deliver through others
•             Ability to prioritise, manage time effectively, escalate issues appropriately and keep information confidential
Experience required:
•             Proven experience of leading the successful delivery of large, complex, multi-national, tech-enabled business change programmes, from end-to-end
•             A background of delivering cyber projects would be beneficial; experience of managing relevant information governance projects would be an advantage
•             A background in the nuclear sector and knowledge of associated regulations would be beneficial
•             Specific knowhow and technical skills:
•             Expertise in programme, project and change management best-practices
•             Ability to craft executive presentations and internal communications
•             Ideally, the ability to drive cultural changes
•             Ideally, knowledge of target operating model design
•             Ideally, an understanding of cyber risk management, specifically around information governance