CVI Manager


Reference: PM/Req/006314
Location: Bristol
Type: Contract
Status: Active
Salary/Rate: £750 per Day

Find out more about this vacancy and apply here

Cyber Vulnerability Investigation (CVI) Manager – DV Cleared

Defence needs to understand the vulnerabilities in its system and platforms that an adversary might exploit in a cyber-attack. To support this, Defence is conducting Cyber Vulnerability Investigations (CVIs) in all of Defence’s systems, platforms and capability.

Broadly, the CVI Manager will own and manage multiple CVIs as they progress through a structured operating model. They will be responsible for scoping and planning the approach, including the constituent activities that will take place within the team, through MOD partners or via industry. They will own and be responsible for the timely and successful conclusion each CVI within their portfolio including translating issues and vulnerabilities into risks for communication with Front Line Commands and Operational Commanders. Stakeholder engagement is vital, interaction with senior military and MOD stakeholders will be frequent and a key enabler to success.

Required Skills:

At least 5 years of experience in cyber security.
Technical qualifications in Information Security, Information Assurance or related fields.
Excellent analytical skills.
Detailed knowledge and experience within one or more of the following domains: Air, Maritime, Land, Defence Procurement, Joint Operations.
Knowledge and experience in one or more of the following:
Cyber Maturity Assessments
Cyber Risk Analysis
Technical Vulnerability Assessments
MOD Information Assurance Policy
Human Factors Assessments
Red/Blue Teaming including Workshop Facilitation
Crown Jewel Assessment
Excellent communicator including strong writing skills.
Key Tasks and Deliverables

Activities will include, but will not be limited to, the following:

Gain a thorough understanding of the current CVI methodology, conducting knowledge transfer with permanent members of the CVI Ops Cell as required.
Lead in-year CVIs as directed by Jt User (Cyber).
Assist ISS as required to enable the delivery of CVI Management Tools, Cyber Enterprise Risk Tool and the CVI Commercial Framework.
Assist in the tasking of Defence industry Partners as required by the CVI process.
Manage Defence Industry Partners where required in order to progress in-year CVIs.
Produce reports detailing the conclusions of in year CVIs.
Facilitate workshops to understand targets of interest as required.
Cyber Vulnerability Investigation (CVI) Manager – DV Cleared – IA – CMIA