Head of Culture, Policy and Strategy Reporting

In this role, you will be responsible for developing and implementing a robust security policy framework for Defra. You will oversee the creation of technical cybersecurity policies and guidance that align with the department’s risk appetite and ensure they are clear and accessible to all staff, supported by effective governance and approval processes.
You will play a key role in fostering a strong security culture across Defra by delivering tailored materials, briefings, and training for diverse audiences, including Ministers, senior staff, and specific employee groups. Your efforts will address thematic risks and promote greater awareness and understanding of security practices.
Your work will include measuring progress on security maturity and awareness through reports to SSB, dashboards for senior leadership, and assessments of the security education program’s success. These metrics will guide improvements in Defra’s security efforts.
By taking on this role, you will help mitigate strategic risks like Insider Risk and Protective Security while driving compliance with government standards such as GovS007. Your contributions will strengthen Defra’s security posture and ensure accountability across the department.
Please note this post requires Security Check (SC) clearance. To gain (SC) clearance all applicants are required to have been a UK resident for a minimum of 5 years. If this requirement is not met, the individual will not be able to progress their application further., + Implementing key mission and individual strategic objectives within the Defra group security strategy.
+ Driving completion of the annual security and data protection training across Defra and our main Arms Length Bodies from the 80% baseline to 90% target.
+ Measuring the strength and effectiveness of security culture across both Core Defra and Arms Length Bodies.
+ Conducting phishing exercises and security campaigns across Defra group.
+ Maintaining and growing a robust security policy framework that delivers 2nd line of defence against security threats and risks across all security domains.
+ Management and delivery of the Security Strategy implementation plan, defining strategic success measures that support the Defra group Security strategy and Mission 4 of the Digital Transformation Strategy.
+ Developing a new Security Champions network into an effective pan-Defra group who help to deliver effective security outcomes in their local areas., We'll assess you against these behaviours during the selection process:
o Communicating and Influencing
o Changing and Improving
o Managing a Quality Service
o Seeing the Big Picture, Candidates who are judged to be a near miss at interview may be considered for other positions in Defra which may be at a lower grade, but have a potential skills match.
Reserve list
A reserve list may be held for a period of 12 months from which further appointments can be made., As part of the pre-employment process for this post, successful candidate(s) will be able to agree a contractual workplace from those locations listed in this advert. The agreed contractual workplace is then the substantive and permanent place of work for the successful candidate(s).
Where the location is ‘National’ the successful appointee should discuss and agree an appropriate contractual location in line with both Defra’s location policy and site capacity, prior to proceeding with pre-employment processes.
Defra operates a blended working policy subject to business need. Individuals are expected to work from any Defra office to connect with their colleagues, as required by their role and business team needs. There is flexibility to split the working week, spending a minimum of 60% in the workplace, unless exceptional circumstances apply and/or you are a contractual home worker.
Our main Defra DDTS hubs are in York, Warrington, Newcastle, Reading and Bristol.
Please also be aware that space within the London office is restricted and it may not be possible to be based in this location.
Successful applicants currently employed by the hiring Defra organisation for this post may choose to remain in their current contractual location or may choose to change contractual location to one of those listed above. This should be discussed and agreed prior to proceeding with pre-employment processes.
Please be aware that this role will be contractually based in a Defra group workplace or office. The successful candidate is required to carry out all their duties from a UK location, and cannot do so from an overseas location at any time.
Travel costs to non-contractual workplaces will be subject to departmental travel and subsistence policies. Travel costs to contractual workplaces are the responsibility of the employee.
NSV
For further information on National Security Vetting please visit the following page https://www.gov.uk/government/publications/demystifying-vetting
Visa Sponsorship Statement
Please take note that Defra does not hold a UK Visa & Immigration (UKVI) Skilled Worker License sponsor and are unable to sponsor any individuals for Skilled Worker Sponsorship.
Reasonable adjustment
If a person with disabilities is put at a substantial disadvantage compared to a non-disabled person, we have a duty to make reasonable changes to our processes.
If you need a change to be made so that you can make your application, you should:
o Contact Government Recruitment Service (GRS) via DefraRecruitment.GRS@CabinetOffice.gov.uk as soon as possible before the closing date to discuss your needs.
o Complete the “Assistance required” section in the “Additional requirements” page of your application form to tell us what changes or help you might need further on in the recruitment process. For instance, you may need wheelchair access at interview, or if you’re deaf, a language service professional.
Accessibility
If you are experiencing accessibility problems with any attachments on this advert, please contact the email address in the 'contact point for applicants' section.
Criminal Record Check
If successful and transferring from another government department, a criminal record check maybe carried out.
In order to process applications without delay, we will be sending a Criminal Record Check to Disclosure and Barring Service on your behalf. However, we recognise in exceptional circumstance some candidates will want to send their completed forms direct. If you will be doing this, please advise Government Recruitment Service of your intention by emailing Pre-Employment.Checks@cabinetoffice.gov.uk stating the job reference number in the subject heading.
Internal fraud database check
Applicants who are successful at interview will be, as part of pre-employment screening subject to a check on the internal fraud database (IFD). This check will provide information about employees who have been dismissed for fraud or dishonesty offences. This check also applies to employees who resign or otherwise leave before being dismissed for fraud or dishonesty had their employment continued. Any applicant’s details held on the IFD will be refused employment.
A candidate is not eligible to apply for a role within the Civil Service if the application is made within a 5 year period following a dismissal for carrying out internal fraud against government.
Childcare Vouchers
Any move to Defra from another employer will mean you can no longer access childcare vouchers. You may however be eligible for other government schemes, including Tax Free Childcare. Determine your eligibility on the Childcare Choices website.
Feedback will only be provided if you attend an interview or assessment.

Security
Successful candidates must undergo a criminal record check.
Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window).See our vetting charter (opens in a new window).
People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements
This job is broadly open to the following groups:
o UK nationals
o nationals of the Republic of Ireland
o nationals of Commonwealth countries who have the right to work in the UK
o nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
o nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
o individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
o Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service
Further information on nationality requirements (opens in a new window)

Working for the Civil Service
The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.
We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).
The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.
The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.

Diversity and Inclusion
The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see the Civil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window).

+ Specific experience across all domains of the Security profession in order to lead security policy development, create security awareness campaigns and analyse and present security metrics for Board reporting.
+ Technical understanding of security policy frameworks and experience of delivering baselined security policies in large and complex organisations.
+ A solid technical background in Government Security or equivalent, possessing or working towards membership of the Security Institute, SANS Strategic Planning, Policy & Leadership & SANS Security Awareness Professional.
+ Experience creating frameworks for data driven metrics to support Board level reporting and security strategies and improvement programmes.
+ Experience of leading the drafting, development and consultation on security policies in all security domains.
+ Experience communicating complex security related messages and/or measurement and presenting updates and recommendations in a clear and comprehensive manner to a senior audience, using behaviour insight techniques.
+ Understanding and adapting to the security implications of transformation - Can interpret and apply understanding of policy and process, business architecture, and legal and political implications to assist the development of technical solutions or controls and application of artificial intelligence solutions.

Defra is the UK government department responsible for safeguarding our natural environment, supporting our world-leading food and farming industry, and sustaining a thriving rural economy. Our broad remit means we play a major role in people's day-to-day life, from the food we eat, and the air we breathe, to the water we drink.
Digital, Data Technology and Security Services (DDTS) is the trusted team for digital across the entire Defra Group.
We have around 1,200 colleagues across DDTS and our ambition is to make it easier and faster than ever for people to interact with Defra. If you are ready to drive innovation and push boundaries, we want to hear from you. Join us and together we will create a great place for living, and a green and healthy future for all.

Alongside your salary of £54,470, Department for Environment, Food and Rural Affairs contributes £15,779 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.
o 25 days’ leave (rising to 30 days over 5 years) plus bank holidays.
o A Civil Service pension with an average employer contribution of 28.97%.
o A day off per year for the King's birthday.
o Access to a range of retail discounts (these include supermarket, tech, gym, holiday, phone and more).
o Flexible working options such as condensed hours, part-time and flexi time.
o 3 paid volunteering days per year.
o Funding for professional membership of a recognised professional body.
o Learning and development tailored to your role and budget for training or qualifications.
o A culture encouraging inclusion and diversity.
o Cycle to work scheme.
o Health cash plan to help you manage health costs for a reduced monthly fee.
o Access to the Employee Assistance Programme open 24 hours, 7 days a week, that provides support to you during any times of stress or difficulty.
o Free access to Headspace for well-being.
o Season ticket loan for public transport.
Equality, diversity and inclusion (EDI)
The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see the Civil Service People Plan and the Civil Service D&I Strategy
Check out the video below from Jane McGeagh, Chief Operating Officer on why DDTS is a great place to work.