Location: Hybrid, 2 x days in Buckinghamshire (M25)
Reports to Programme Manager – Export Controlled Information Protection
Salary: Umbrella rate £635day inside IR35
The Role
Regulators of this organisation expect to have its export-controlled information (ECI) under control. A greater degree of control is also required to leverage current technologies, enhance collaboration and support the IT agenda. Much work has been done to understand and clarify the complex subject of export controls and an ECI Protection strategy has been devised which will transform this type of data, across all of its businesses. This role will lead delivery of various projects within the ECI Protection Programme, in order to realise this strategy.
The programme is complex and challenging, spanning business and IT domains in the creation of new capabilities. The focus of this role will be the delivery of systems & processes to improve information classification and control. There will be many problems to solve and challenges to overcome, including breaking through any barriers to new ways of working. The role presents a fantastic opportunity to drive tangible business improvements.
The successful candidate will be required to achieve and maintain SC clearance.
Main responsibilities
Own the delivery of workstreams and projects within the ECI Protection Programme:
• Work with business analysts, solutions architects, subject matter experts and 3rd parties as required to scope, shape, & size new projects as needed to realise the ECI Protection strategy and mitigate compliance risks
• Plan, mobilise and deliver projects to time, cost and quality targets, in-line with applicable policies, best practices and Information Security standards
• Ensure that solutions are identified (be they technological or business process changes) to meet business requirements
• Manage project-level risks, assumptions, issues and dependencies
• Create and uphold the required project documentation
• Manage project stakeholders and ensure alignment with other initiatives which enable the ECI protection programme
• Represent the projects at governance forums; lead project status updates and secure the required project decisions and approvals; resolve problems, escalate where needed
• Feed results and insights from the various projects back to key stakeholders, such that the ECI protection strategy and programme roadmap can be adapted as required
Manage project resources:
• Ensure the projects are adequately resourced, including internal staff allocations and the procurement of 3rd party solutions and professional services where needed
• Hold people accountable for delivering on their commitments, be they internal or external
Manage project budgets & funding
• Lead change management for the projects:
• Support internal communications for the overall programme, execute workforce engagement where needed (e.g. via works councils) and lead any required interventions for projects (e.g. creation of user training for new systems)
• Ensure changes are successfully deployed, adopted and embedded in the business and that projects are transitioned to BAU; measure success & capture lessons learned
Job requirements
Vocational Qualifications:
• Educated to bachelor’s degree level or higher
• Project Management qualifications such as PMI BOK, MSP, Prince2 or similar would be an advantage
• Information Security qualifications such as CISSP, CISM or similar would be an advantage
Experience required:
• Proven experience of leading the successful delivery of complex, multi-national projects, from end-to-end
• Experience of managing relevant tech-enabled information governance projects (e.g. use of data classification tools, the application of data controls such as digital rights management) would be a distinct advantage
• Ideally, experience working in a regulated environment, working with sensitive information
• A background of delivering cyber projects would be beneficial
• A background in the nuclear sector and knowledge of associated regulations would be beneficial but not a requirement
Specific know how and technical skills:
• Expertise in project management best practices
• Good knowledge of how to manage business changes from end-to-end, from building the case for change, bringing the business on the journey, through to ensuring the change is successfully deployed, adopted and embedded in the business
• Ideally, an understanding of cyber risk management, specifically around information governance
Behavioural competencies:
• Organised, pragmatic, hands-on, action-oriented, focussed on customer outcomes
• Good team player with excellent relationship management skills
• Strong problem solving skills
• Strong communication skills
• A fast learner, willing to learn about export control regulations
• Adaptable to changing priorities with an emphasis on getting the job done