Information Security Officer

British Transport Police (BTP) are recruiting for an Information Security Officer for permanent, full time opportunity. The role is paying £41,773.05 per annum and will be based in Cardiff. This role offers a blended approach of home and office-working.

BTP is the national police Force for the rail network throughout Great Britain, including London Underground, across which we ensure the safety and security of nearly 3 billion passenger journeys and over 100 million tons of freight every year. The world in which we work is fast-paced, operationally and commercially demanding, and constantly changing.

As an Information Security Officer you will be required to:

Develop and maintain a suite of policies and guidance to create a governance framework to provide appropriate levels of security of information in BTP. This includes interpreting national policies and Police Digital Services (PDS) policy and guidance to provide a policy framework supporting best practice for safeguarding information systems, assets and our people.

Plan, organise, and conduct information assurance activities and accreditation of services across business areas and the supply chain, including national connections, Police Secure Network (PSN) and other codes of connection. To include carrying out risk management activities with varying degrees of complexities within a specific function, technical area or project, often within short timescales. Working with others such as Cyber Security, Digital Policing and other technology functions.

Responsible for investigation, co-ordination and reporting on information data breaches and information security incidents, some of which may be complex in nature, including the appropriate triaging of all incidents, focusing on containment and recovery ensuring preventative action is taken to minimise the risk of a reoccurrence and reputational damage to the Force.

Liaise with the Force Data Protection Officer (DPO) to make informed decisions on reporting to the Information Commissioner’s Office (ICO) and attending Gold Groups as required.

Further information about this vacancy can be found in the attached job description.

The successful Information Security Officer will be required to evidence the following:

Qualifications and Training:

The post requires significant and relevant experience in Information Security and Risk Management ideally within the policing community. This includes providing information assurance support to technology projects, assessing and controlling risks, and liaising with business partners at all levels to provide assurance.

Must be able to hold or attain a recognised Information Security qualification (such as BCS Certificate in Information Security Management Principles) or equivalent security qualification.

Trained in Risk Management Concepts & Accreditation processes.

Experience:

Establishing, developing and delivering IA processes and procedures within a large organisation.

Investigating complex Information Security incidents and providing recommendations to senior management and the Information Security Manager to mitigate risk.

Undertaking detailed risk assessments, audits and accreditation activities, and preparing detailed reports, identifying vulnerabilities and offer recommendations and solutions.

Skills:

Must evidence mental agility and ability to solve complex issues when tasked with new projects using experience and knowledge of information assurance standards to successfully deliver outcomes within tight timescales.

Ability to work within the business to understand and interpret Information Security risks and control measures.

Strong IT skills, including working knowledge of O365, including Microsoft Word, Excel, and PowerPoint.

Knowledge:

Knowledge of risk management, accreditation and assurance methods.

In depth understanding and practical knowledge of current Information Security Management standards and best practice, including HMG Security Policy Framework, PSN Code of Connection, National Institute of Standards and Technology, ISO27001 and any other applicable standards.

Sound understanding and knowledge of relevant statutory obligations, including Data Protection Act / GDPR and the Government Security Classifications.

The ability to speak Welsh is a “desirable” skill and if you would like the job description and application process, this is available through the medium of Welsh- if requested.

HOW TO APPLY:

If you are interested in applying to the role, then please upload a copy of your Cover letter and CV. In your cover letter;

“Please provide details of any relevant skills and experience you have that would make you suitable for this role”.

In return for your experience, we can offer you:

Salary of £41,773.05 per annum

Yearly base salary increments (subject to satisfactory performance in previous PDR year)

Working from home allowance available to purchase suitable equipment for blended & home working

28 days annual leave plus bank holidays

Family friendly policies including up to 26 weeks paid maternity and adoption leave

Bespoke benefits platform and access to Blue Light Card

Development opportunities including fully funded apprenticeships

Employee assistance programme and dedicated wellbeing hub

Excellent Pension scheme

BTP is an employer who cares about the impact we have on the environment and the wider challenges of climate change, and as such we are committed to reducing our carbon footprint and achieving Net Zero Carbon (NZC) through offsetting by 2035.

Inclusion & Diversity and Positive Action

At BTP we are proud guardians of the railway, and we are committed to fostering an inclusive workplace where everyone feels valued, and our communities are represented and protected. We believe that diversity drives innovation, creativity, and better decision-making, enabling all our people to thrive.

Our roles are open to everyone, and appointments are made based on merit. To increase diversity, we encourage applications from underrepresented groups, including Black, Asian, and minority ethnic candidates, women, LGBTQI+ individuals, people with disabilities, and those who are neurodiverse. Positive Action initiatives such as workshops and advice sessions are available to support candidates.

As a Disability Confident Committed employer, we offer guaranteed interviews to applicants with disabilities meeting the ‘essential criteria’ for the role. Our Recruitment Team is available to provide any necessary assistance during the application process.

Click the link for more information on Inclusion & Diversity work, Positive Action, or the Disability Confident Scheme, or please contact PART-Recruitment@btp.police.uk

If you have any questions about the application process, please email our friendly and helpful team where we will be happy to help you: RecruitmentTeam@btp.police.uk. If your question related to equality or diversity then you can also contact our Equality, Diversity and Inclusion team directly at: PART-Recruitment@btp.police.uk To reassure you, anything you ask us will be in the strictest confidence and will not form part of your application.

In order to apply, you must have the permanent right to live and work in the UK and have been resident in the UK for the previous 5 years. You will need to be able to attain MV personnel assurance level, with Security Clearance (SC). You will be asked these and other questions to determine your eligibility to work for British Transport Police when you start your application and you must answer honestly.

BTP GPP Police Staff Pension Scheme is administered by Royal London and this is a group personal pension plan which is available to all police staff. It’s a defined contribution scheme, offering employees the flexibility to vary their pension contributions from 4.4% to 12% of their salary. For more information, visit the Royal London dedicated pension page or email us at Pension-Queries@btp.police.uk .Please note if you are an existing member of Police Staff in the RPS your pension will not be affected.