Cyber Security Apprenticeship - Level 3 (Newport)
On site
Newport, United Kingdom
Full Time
07-03-2025
Job Specifications
ONS operates a flexible hybrid working model across the UK, with colleagues linked to our contractual locations in Newport and working between office and remote throughout the week.
As part of the hybrid working arrangement there is a 40% minimum office attendance requirement. Please note due to the nature of the role, you may need to attend the office 80% of working week. Attendance is typically at your contractual office, with occasional travel to alternative locations.
Please note only candidates living in Wales will be eligible to apply for this role due to the requirements of the apprenticeship providers.
Job Summary
The Office for National Statistics (ONS) is the UK’s largest producer of official statistics, covering a range of key economic, social and demographic topics. These include measuring changes in the value of the UK economy, estimating the size, geographic distribution, and characteristics of the population, and providing indicators of price inflation, employment, earnings, crime, and migration.
The last few years has seen an extensive overhaul of security and information management to meet the challenges of corporate and statistics transformation in technology, methods and practice, the Digital Economy Act and organisational risk appetite. The capability is evolving and expanding to address changes in threat and business direction.
Do you have an interest in Cyber Security......and are interested in completing an apprenticeship? Well, this could be the role for you. We’re looking for two candidates to become Cyber Security Level 3 Apprentices.
Job Description
The Cyber Security Apprenticeship is an opportunity for individuals interested in cyber security to work toward a formal qualification alongside full time employment in Government. The role will involve shadowing, observing, and learning various cyber security related skills and gaining experience within a cyber security function. You will be working across the Triage and Investigation functions to build knowledge & experience within cyber security to enable completion of each module within the Cyber Security Apprenticeship.
Responsibilities
Working towards completing modules within the apprenticeship and completing assessments as required.
Fulfil all responsibilities to commit to and complete apprenticeship as informed by apprenticeship provider.
Areas covered in apprenticeship will include (but not limited to):
Principles of Information Governance and Assurance
Carrying out Information Security Risk Assessment
Carrying out Information Security Incident Management Activities
Investigating Information Security Incidents
Threat Analysis
IT System Security
What qualifications will I get?
Level 3 Cyber Security Apprenticeship.
The Cyber Security Apprenticeship is an opportunity for individuals interested in cyber security to work toward a formal qualification alongside full time employment in Government. The role will involve shadowing, observing, and learning various cyber security related skills and gaining experience within a cyber security function. You will be working across the Triage and Investigation functions to build knowledge & experience within cyber security to enable completion of each module within the Cyber Security Apprenticeship.
Responsibilities
Working towards completing modules within the apprenticeship and completing assessments as required.
Fulfil all responsibilities to commit to and complete apprenticeship as informed by apprenticeship provider.
Areas covered in apprenticeship will include (but not limited to):
Principles of Information Governance and Assurance
Carrying out Information Security Risk Assessment
Carrying out Information Security Incident Management Activities
Investigating Information Security Incidents
Threat Analysis
IT System Security
What qualifications will I get?
Level 3 Cyber Security Apprenticeship.
Person specification
Essential Criteria
Interested to learn about Cyber Security.
Have a real enthusiasm and curiosity to tasks. To be able to deliver to timescales, with a good attention to detail, responding effectively to changing priorities.
Good interpersonal skills, both written and verbal, with an ability to interact well with people across the organisation, including those more senior to you.
Ability to proactively work well as part of a team, taking responsibility for delivering agreed business objectives.
Ability to work independently with minimal supervision, across a range of tasks, seeking advice and guidance from managers as appropriate.
Standard Eligibility Criteria For Apprenticeships Apply:
You must not already hold a similar, or the same, qualification at Level 3 or above.
You must be living in Wales.
You must be at least 16 years old by 31st August 2024, and no longer be in full time education or plan to return to full time education in the next 12 months.
You must have the legal right to live and work in the UK.
You must not be taking part in any other employment or enterprise programmes funded directly by the UK Government or the Welsh Government.
You must not be taking part in any other EU funded employment or enterprise programme or vocational learning programme
You must not be supported by the UK Government’s Work programme with a contract of employment for less than 16 hours per week.
You must not be in receipt of an Assembly Learning Grant or Education Maintenance Allowance.
Is not an ineligible overseas national.
Is not in custody or on remand in custody.
Please note the training provider makes the final decision on whether funding can be provided per person and the job offer will be made on the condition that funding is available.
Qualifications
To apply for this apprenticeship, you need to have either qualifications or relevant experience in this field:
GCSEs in Maths and English at Grade C or above.
or
Relevant experience - learners will be considered for entry based on previous experience.
Standard eligibility criteria for apprenticeships still apply and any specific programme entry criteria listed above.
Behaviours
We'll assess you against these behaviours during the selection process:
Working Together
Communicating and Influencing
Changing and Improving
Alongside your salary of £24,137, Office for National Statistics contributes £6,992 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.
The Office for National Statistics is part of the Civil Service, and as such we share a number of key benefits with other departments, whilst also having our own unique offerings to support our 5400 valued colleagues across the business.
Whether you are hearing about us for the first time or already know a bit about our organisation, we hope that the benefits pack attached (bottom of page) will give you a great insight into the benefits and facilities available to our colleagues, and our fantastic working culture.
I...
About the Company
We’re the Office for National Statistics (ONS), the UK’s largest independent producer of official statistics. The statistics we gather make a real difference, helping people make important decisions for the nation and our communities on everything from health and education to the environment and the cost of living. We’re responsible for the census that happens every ten years and share information and analysis about some of the UK’s most topical issues. To find out more about how you can join us at the ONS, email talent.ac... Know more
Related Jobs
- Company Name
- Cumberland Building Society
- Job Title
- Information Security Assurance Officer
- Job Description
- Working at the Cumberland, you become part of something special. We’re a Mutual organisation, committed to improving the lives of our colleagues, customers, and community. Our values are incredibly important to us. We’re on an exciting transformational journey with our people firmly at the forefront of our plans. If you want to work for a team integral in helping to drive cultural change, a team where you can bring your whole self to work bringing your energy and creativity to make a positive difference, then this is the job for you. As our Information Security Assurance Officer, you'll be responsible for assisting in the oversight and control of all aspects of the Information Security Management System, ensuring controls and reviews are in place to prevent/minimise threats such as security breaches, computer viruses or attacks by cyber criminals. This covers Risk Management, External Assurance, Supplier Management, Training and Awareness, Policy Management. You’ll also play a pivotal role in providing subject matter expertise to projects to ensure they have security controls included by design. You’ll have depth of knowledge in information security, with an excellent understanding of the technical side, having very good experience of compliance such as ISO27001, NIST, CBEST & CQUEST requirements. The Benefits Competitive salary – depending on skills and experience. Holidays - 25 days holiday plus public holidays and the opportunity to buy and sell up to 2 days. Learning and Development opportunities - We want you to grow in your role. We’ll work together to support your personal and professional development. Hybrid Working - the tools and equipment you need to be able to work from home when you need to, depending on your role. Health and Wellbeing - a calendar of events and activities throughout the year, Mental Health & Wellbeing champions, and Cycle to Work scheme. Community Day - We offer our people an extra paid day off every year to help local charities and community organisations. The Role Main Responsibilities Include Engagement with projects to provide advice, guidance and non-functional requirements to ensure security is being built in by design. Support and execute all group-wide Assurance tasks, initiatives and assignments, including monitoring the assurance inbox and responding to queries. Assist in the ongoing program of information security assurance covering all aspects of ISO27001 and the controls set out in the Society. Support the management of the Information Security Management System on behalf of the Society and ensure compliance with its components. Support the Information Security Assurance Manager in working with information security operations to maintain acceptable levels of control and risk throughout the Society. Carry out assurance reviews in line with the schedules calendar, producing reports, feedback and managing actions/non-conformities through to satisfactory conclusion. To assist in the maintenance of the Information Security (COO) Risks and Controls register and work closely with other information security colleagues and carry out actions to mitigate the risks identified. To keep up to date with security trends, threats and control measures and recommend new solutions and initiatives that will enhance the protection of the Society’s assets and data. Support in phishing campaigns and the management the outcomes and necessary training. Identify risks and ensure these are presented in accordance with procedures and are given the appropriate level of attention. Conducting third party supplier reviews. Work closely with key stakeholders including Risk, Audit, Technology and Information Security Operations to assist and provide input to ensure that Society policies and procedures for Information/Cyber Security Operations are effective and adhered to. To be proactive in making recommendations for updates to policies and procedures as required All potential candidates should read through the following details of this job with care before making an application. About You You’ll have strong, demonstrable experience in an Information Security role, ideally within a Financial Services led environment or equivalent highly regulated industry. You’ll ideally have a formal qualification in an Information Security discipline, e.g. CISM or equivalent significant experience, as well as experience of ISO27001 audits, NIST audits or similar, ideally being a Certified ISMS Lead Auditor (CIS LA). In Addition To This We’d Love To See A strong technical understanding and background Full UK driving license Excellent interpersonal, written and verbal communication skills and the ability to work well with people at every level. Ability to work with autonomy, flexibility, be organised and able to work under pressure. Strong relationship management and influencing skills. Attention to detail to ensure accurate assessment and management of risk. Strong analytical skillset. A good level of understanding on general IT security concepts and principles. Ability to effectively prioritise situations requiring urgent attention. Ability to work as a team and on own initiative to think ‘outside of the box’ and go the extra mile. Pro-activity and self-motivated with the proven ability to drive results and provide excellent customer services to all levels of the organisation. High level of motivation to see success delivered through own personal efforts and those around them. About Us We’re here to create a banking experience that’s kinder to people and planet. Unlike banks, we don’t have public or private shareholders which means we can invest 100% of our profits back into our business. As a result, our business is purpose-led, financially strong, socially responsible and always focused on our people, planet and communities. Recently we were presented with a Highly Commended award in the Financial Services Company of the year category at the British HR Awards in London. Our entry was recognised for our continued commitment to wellbeing. Where you will work Our aim is to keep the great balance we have achieved with hybrid working. The successful candidate would therefore be willing to work remotely and be able to work from Cumberland House as and when required. The closing date for completed applications is 20th March 2025, however it may be closed earlier if enough applications are received. We’re here to create a banking experience that’s kinder to people and planet. Unlike banks, we don’t have public or private shareholders which means we can invest 100% of our profits back into our business. As a result, our business is purpose-led, financially strong, socially responsible and always focused on our people, planet and communities.
- Company Name
- CGI
- Job Title
- DevOps Engineer (DV Security Clearance)
- Job Description
- Position Description The Space, Defence and Intelligence business unit in CGI is a true IT Systems Integrator. We work, build, and operate bespoke, technically complex, mission-critical systems which help our clients keep us all safe and secure. We bring innovation to our clients using proven and emerging technologies, agile delivery processes and our deep expertise across the breadth of space, defence, intelligence, aerospace and maritime, all underpinned by our end-to-end cyber capability. We work collaboratively with global technology companies, cutting edge SMEs and academia to deliver the optimal solution for each client. CGI was recognised in the Sunday Times Best Places to Work List 2023 and has been named one of the ‘World’s Best Employers’ by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a member not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you’ll be part of an open, friendly community of experts. We’ll train and support you in taking your career wherever you want it to go. As a DevOps Engineer within the Space, Defence and Intelligence business unit, you will apply your technical expertise to the design, implementation, testing and ongoing support of CGI's tool chain. With strong skills in Terraform and Azure, you will be responsible for the automation of the software development lifecycle. Your future duties and responsibilities Utilise a diverse set of tools such as Azure and Terraform and Jira to automate the software development lifecycle. Participate in Kanban and/or Scrum meetings to plan, prioritise and estimate work. Work with developers and testers to troubleshoot specific issues, including recreating tests, validation configuration, etc. Install, configure and manage both cloud-based and on-premise applications. Required Qualifications To Be Successful In This Role Azure Terraform Continuous Integration Continuous Deployment Docker Linux Amazon Web Services Cloud Desired Competencies: Kubernetes Agile Ansible Security Clearance: Must be a sole UK national – and either hold, or willing to gain higher level clearance. Any individual without security clearance is welcome to apply and will always be considered for this or wider opportunities in CGI, where appropriate. Working pattern: due to the secure nature of the work we are operating with a hybrid working policy however due to the secure nature of some projects with this area we would expect our members to be in their local when required. Some travel to other CGI or client sites might also be required (all travel away from your base office is expensed) Together, as owners, let’s turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because… You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction. Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team—one of the largest IT and business consulting services firms in the world.
- Company Name
- Harnham
- Job Title
- Security Consultant - Vulnerability Management
- Job Description
- Job Title: Security Consultant - Vulnerability Management Contract Duration: 3 Months (Potential for Extension) Location: Remote IR35: Outside IR35 The Role: We are seeking an experienced Security Engineer specialising in Vulnerability Management to enhance our security posture. You will be responsible for identifying, assessing, and mitigating vulnerabilities across our infrastructure, ensuring proactive risk management and compliance with security standards. Key Responsibilities: Lead the vulnerability management program, including scanning, assessment, and remediation coordination. Deploy, configure, and manage vulnerability scanning tools (e.g., Qualys, Tenable, Rapid7). Analyze and prioritize vulnerabilities based on risk, impact, and exploitability. Work closely with IT and security teams to develop and implement remediation plans. Provide threat intelligence insights to enhance vulnerability detection and response. Ensure compliance with security standards such as ISO 27001, NIST, CIS, and GDPR. Generate reports and dashboards to communicate risk posture to stakeholders. Key Skills & Requirements: Proven experience in Vulnerability Management, Threat Intelligence, and Risk Assessment. Strong understanding of network security, operating systems, cloud security, and DevSecOps. Hands-on experience with vulnerability scanning and risk assessment tools. Familiarity with patch management, secure coding practices, and remediation strategies. Strong analytical and problem-solving skills with a proactive security mindset. Relevant certifications (e.g., CISSP, CEH, GIAC GSEC, OSCP) are desirable.
- Company Name
- The Trade Desk
- Job Title
- Senior Application Security Engineer
- Job Description
- The Trade Desk is changing the way global brands and their agencies advertise to audiences around the world. How? With a media buying platform that helps brands deliver a more insightful and relevant ad experience for consumers –– and sets a new standard for global reach, accuracy, and transparency. We are proud of the culture we have built. We value the unique experiences and perspectives that each person brings to The Trade Desk, and we are committed to fostering inclusive spaces where everyone can bring their authentic selves to work every day. So, if you are talented, driven, creative, and eager to join a dynamic, globally-connected team, then we want to talk! What We Do Cybersecurity at The Trade Desk strives to protect the people, process, and technology used to further our goals for the open internet using hybrid infrastructure that includes major public clouds (Amazon Web Services, Azure, Google Cloud Platform) and on-premise systems in data centers around the world. What You’ll Do We are looking for an experienced Application Security Engineer specialising in Java web applications with strong expertise in OIDC and OAuth2. This role will work embedded with the OpenPass team contributing to: Threat models, design, implementation, and management of security measures for OpenPass applications, ensuring that they are robust and trustworthy. Reviews and validations that OIDC and OAuth2 protocols are implemented correctly, ensuring secure authentication and authorization processes. Secure cloud infrastructure, ensuring adherence to security best practices for public cloud environments such as AWS. Design, implementation, reviews and management of Kubernetes infrastructure to ensure the protection of containerized workloads and application data. Secure deployment pipelines by integrating security check and controls within CI/CD processes to ensure safe and reliable infrastructure deployment and software releases. Regular security assessments, code reviews, and penetration tests to identify and mitigate security vulnerabilities in our applications. Development and enforcement of security best practices and standards for web applications and APIs, ensuring compliance with industry specifications, regulations, and compliance policies. Maintaining comprehensive documentation of security decisions, procedures, configurations, and assessment reports. Security training sessions for developers and other stakeholders to promote a culture of security awareness within the organisation. Who You Are Experience: minimum of 5 years of experience in application security, with a focus on JavaScript and Java web applications. Experience with secure coding practices and threat modeling. Strong expertise in OIDC and OAuth2 protocols, including implementation and management. Proficiency in Java programming and related frameworks (e.g. Spring, Vert.X) Familiarity with cloud security and container security (e.g. AWS, Kubernetes) Experience with security tools and technologies (e.g. static and dynamic analysis, SIEM, WAF) Ability to work independently and as part of a team. Strong communication and collaboration skills Attention to detail and a proactive approach to security. The Trade Desk does not accept unsolicited resumes from search firm recruiters. Fees will not be paid in the event a candidate submitted by a recruiter without an agreement in place is hired; such resumes will be deemed the sole property of The Trade Desk. The Trade Desk is an equal opportunity employer. All aspects of employment will be based on merit, competence, performance, and business needs. We do not discriminate on the basis of race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, veteran status, or any other status protected under federal, state, or local law. As an Equal Opportunity Employer, The Trade Desk is committed to making our job application process accessible to everyone and to providing reasonable accommodations for applicants with disabilities. If you have a disability or medical condition and require an accommodation for any part of the application or hiring process, please contact us at accommodations@thetradedesk.com You can also contact us using the same email address if you have a disability and need assistance to access our Company website. When contacting us, please provide your contact information and specify the nature of your accessibility issue.