Department for Work and Pensions (DWP)

About the Company

The Department for Work and Pensions (DWP) is the UK’s largest government department and is responsible for welfare, pensions and child maintenance policy. It administers the State Pension and a range of working age, disability and ill health benefits, serving around 20 million customers.

DWP is responsible for
• understanding and dealing with the causes of poverty rather than its symptoms
• encouraging people to work and making work pay
• encouraging disabled people and those with ill health to work and be independent
• providing a decent income for people of pension age and promoting saving for retirement
• providing value for money and reducing levels of fraud and error
• reducing work-related death and serious injury in workplaces through the Health and Safety Executive

DWP is a fast paced organisation which puts leadership at the centre of its transformation journey. The majority of DWP colleagues are part of the Operational Delivery Profession (ODP) – providing customer service to DWP’s 20 million customers across the UK. ODP is a thriving, inclusive professional community that supports colleagues and encourages them to learn, develop, grow and progress in their career to reach their full potential.

Listed Jobs

Company Name

Department for Work and Pensions (DWP)

Job Title

Lead Cyber Security Vulnerability Manager

Job Description

**Job Title** Lead Cyber Security Vulnerability Manager **Role Summary** Leads the design, implementation, and continuous improvement of the organization’s vulnerability management program across people, processes, and technology. Aligns policies with risk appetite, drives risk‑based prioritization, and ensures regulatory and audit compliance while protecting critical digital services. **Expectations** - Provide strategic direction for vulnerability management and security awareness. - Lead and develop a team of Vulnerability Analysts. - Deliver measurable risk reduction through timely remediation and mitigation. - Maintain required Security Check clearance. **Key Responsibilities** - Define and execute the department’s vulnerability management strategy. - Align vulnerability policies, procedures, and guidelines with organizational objectives and risk appetite. - Prioritize vulnerabilities using a risk‑based methodology to meet compliance and audit requirements. - Collaborate with security, operations, and digital teams to design mitigation strategies and remediation plans. - Oversee investigation of security findings, set KPIs, and track remediation across multiple digital functions. - Build and maintain interfaces and working processes with cross‑functional security teams. - Lead, coach, and assess the performance and skill development of Vulnerability Analysts. - Contribute to security awareness initiatives supporting the Government Cyber Security Strategy. **Required Skills** - Broad knowledge of multiple platforms (Windows, Linux, cloud, network, application). - Proven experience conducting multi‑platform cyber security assessments. - Strong leadership and people‑management abilities. - Excellent communication and stakeholder‑engagement skills. - Expertise in risk‑based vulnerability prioritization and remediation planning. - Familiarity with regulatory standards (e.g., ISO 27001, NIST, GDPR). **Required Education & Certifications** - Bachelor’s degree in Cyber Security, Information Security, Computer Science, or related field (or equivalent experience). - Professional certifications such as CISSP, CISM, CISA, CEH, or equivalent. - Ability to obtain and maintain UK Security Check clearance.

Blackpool, United kingdom

On site

Senior

26-09-2025

Company Name

Department for Work and Pensions (DWP)

Job Title

Lead Cloud Infrastructure Engineer (EKS)

Job Description

**Job Title:** Lead Cloud Infrastructure Engineer (EKS) **Role Summary:** Lead the design, implementation, and support of scalable cloud infrastructure to enable secure, agile software delivery for critical public services. Act as a technical leader, guiding teams to build and maintain infrastructure aligned with industry standards. **Expectations:** Demonstrate expertise in cloud technologies, lead cross-functional teams, and ensure high-availability services for applications serving 22 million citizens. Drive innovation in infrastructure-as-code and CI/CD practices while managing on-call and in-hours support. **Key Responsibilities:** - Design, implement, and administer cloud infrastructure (EKS, Kubernetes, container platforms, IaC, CI/CD pipelines). - Architect scalable PaaS/SaaS services and shared cloud solutions for rapid application deployment. - Collaborate with technical teams to resolve complex infrastructure challenges. - Define engineering strategies, guidelines, and standards for infrastructure operations. - Provide technical leadership, mentorship, and line-management for junior engineers. - Ensure security-by-design in infrastructure solutions to mitigate threats. - Support live services with incident investigation, root-cause analysis, and proactive problem resolution. **Required Skills:** - Advanced knowledge of Kubernetes (EKS), container orchestration, and related tools (Flux, ArgoCD, Helm). - Expertise in infrastructure-as-code, CI/CD automation, and cloud-native technologies. - Experience in full application lifecycle management, including production support. - Proficiency in cloud service design (AWS/Azure/GCP preferred). - Strong understanding of agile methodologies and DevOps practices. - Information security principles and threat mitigation strategies. - Clear communication and ability to simplify technical concepts for diverse audiences. **Required Education & Certifications:** - Bachelor’s degree in Computer Science, Engineering, or related field. - Proven track record in cloud infrastructure leadership roles (5+ years). - Certifications in cloud platforms (e.g., AWS, Azure) or Kubernetes (e.g., CKAD/CSP) preferred.

Blackpool, United kingdom

On site

Senior

10-10-2025

Company Name

Department for Work and Pensions (DWP)

Job Title

Security Platforms Engineer

Job Description

**Job Title:** Security Platforms Engineer **Role Summary:** Responsible for the day‑to‑day management, development, and operational stability of enterprise‑grade security platforms across cloud and on‑premise environments. Drives platform design, implementation of security controls, and automation to protect critical infrastructure, aligning with NIST CSF and CIS Controls. **Expectations:** - Pass a Security Clearance check. - Design, build, and maintain monitoring, incident response, and compliance processes for security solutions. - Partner with senior stakeholders and lead the Infrastructure Development Lifecycle for one or more product lines. **Key Responsibilities:** - Operate and troubleshoot self‑hosted and SaaS security platforms (e.g., Cloud Native Application Protection, WAF, CDN, XDR, anti‑malware, threat intelligence, orchestration). - Design and implement new functionality and future enhancements to meet evolving security requirements. - Manage incidents, resolve problems, and produce root‑cause analysis. - Develop protection controls and detection alerts, integrating them into the Cyber Security Ecosystem. - Document architecture, processes, and configuration changes. - Collaborate with Digital Security and Security Practice teams to deliver security outcomes. **Required Skills:** - Cyber security architecture principles and frameworks (NIST CSF, CIS Critical Security Controls). - ITIL service management and IT infrastructure in on‑premise and cloud environments. - Design, build, and maintain monitoring systems for live services. - Implement security controls and DevOps practices, including Infrastructure as Code (IaC). - Strong knowledge of detection, response, and compliance tools (XDR, SIEM, vulnerability management). - Ability to work with cross‑functional teams and influence change. **Required Education & Certifications:** - Bachelor’s degree in Computer Science, Information Security, or related field. - Professional security certifications (e.g., CISSP, CISM, IAM) preferred. - Experience with IaC tools (Terraform, CloudFormation) and DevOps pipelines.

Blackpool, United kingdom

Hybrid

03-12-2025