Security Culture Change

London
3 months ago
Applications closed

Related Jobs

View all jobs

SecOps Engineer (SC + NPPV3 Cleared)

SecOps Engineer

Sr Advisor, Cyber Security

Vetting & Security Administrator

Data Protection and Information Security Advisor

Senior SOC Engineer

On behalf of FCDO, we are looking for a Security Culture Change - (Inside IR35) for a 6-months contract working on a hybrid basis and with an expectation of between 1 to 2 days attendance in the London office

The Foreign, Commonwealth & Development Office (FCDO) pursues our national interests and projects the UK as a force for good in the world. We promote the interests of British citizens, safeguard the UK's security, defend our values, reduce poverty, and tackle global challenges with our international partners.

Security Culture Support role, assisting the Security Culture Lead in the design, implementation, and evaluation of security culture initiatives. Contribute to communities of practice and knowledge sharing within the organisation and across the wider government/public sector network.

The Security Culture Support Officer will play a key role in helping to shape and embed a strong, positive security culture across the organisation. Working closely with the Security Culture Lead and partners across Physical, Personal, and Information Security functions, the postholder will contribute to a long-term programme of cultural change-anchored in the Culture Web framework-to improve and sustain secure behaviours across a diverse, global workforce.

As a Security Culture Change - (Inside IR35) your main responsibilities will be:

  • This role will focus on supporting and evidencing the organisation's transformation journey over the next five years-helping to turn good intentions into measurable, lasting change.
  • Support the design, implementation, and evaluation of security culture initiatives using the Culture Web and complementary change frameworks.
  • Assist in analysing current organisational culture, identifying strengths, barriers and opportunities to embed positive security behaviours.
  • Gather and interpret data (e.g., surveys, interviews, observations, behavioural metrics) to measure cultural change and inform interventions.
  • Contribute to storytelling and communication strategies that engage staff and bring the organisation's security culture vision to life.
  • Work collaboratively with colleagues across Physical, Personal and Information Security, HR, Learning & Development, and Communications to ensure coherence and alignment.
  • Support the creation of practical tools, resources, and campaigns that help individuals and teams adopt secure behaviours in everyday work.
  • Monitor and report on the progress of initiatives, capturing qualitative and quantitative evidence of change.
  • Definition of requirements stemming from findings
  • Help design and maintain the organisation's Security Culture Change Roadmap, ensuring it remains dynamic, inclusive, and evidence based.

    PLEASE NOTE:

    SC Clearance is an essential requirement for this role, as a minimum you must be willing & eligible to undergo checks. Please note, due to the exceptional requirements of this position (short-term nature of this role and speed at which we require a postholder in situ) preference may be given to candidates who meet all of the essential criteria and hold active security clearance

    Essential Skills:
  • Strong understanding of the Culture Web framework and broader organisational culture/change methodologies.
  • Demonstrated analytical ability-comfortable with data collection, analysis, and presentation to support evidence-based decision-making.
  • Excellent communication and storytelling skills, with an ability to convey complex messages clearly and compellingly to diverse audiences.
  • Collaborative approach, able to build effective working relationships across functions, geographies, and cultures.
  • Awareness of the different dimensions of security (Physical, Personal, Information) and how these interact in an organisational context.
  • Adaptable and curious, with a genuine interest in understanding what drives behaviours and how to influence them positively.

    Desirable Skills:
  • Experience supporting or delivering culture change projects within the public sector or large complex organisations.
  • Familiarity with behavioural science, change psychology, or human factors approaches to security and risk.
  • International or cross-cultural working experience.
  • Experience designing or supporting evaluation frameworks or dashboards for cultural change measurement.

    Please be aware that this role can only be worked within the UK and not Overseas.

    Disability Confident

    As a member of the Disability Confident Scheme, FCDO guarantees to interview all candidates who have a disability and who meet all the essential criteria for the vacancy. In cases where we have a high volume of candidates who have a disability who meet all the essential criteria, we will interview the best candidates from within that group. This scheme encourages candidates with a disability and/or neurodivergence to apply. In exceptional circumstances, we may also need to apply the desirable criteria in our shortlisting process which may include holding active security clearance

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Careers

How Many Cyber Security Tools Do You Need to Know to Get a Cyber Security Job?

If you are trying to build or move forward in a cyber security career, it can feel like the list of tools you are expected to know never ends. One job advert asks for SIEM platforms, another mentions penetration testing tools, another lists cloud security, threat intelligence platforms, endpoint detection, scripting languages and compliance frameworks. Scroll LinkedIn and it gets worse. Everyone seems to “know” dozens of tools, certifications and platforms. Here is the reality most cyber security hiring managers agree on: they are not hiring you because you know every tool. They are hiring you because you understand risk, can think like an attacker and a defender, follow process, communicate clearly and make good decisions under pressure. Tools matter — but only when they support those outcomes. So how many cyber security tools do you actually need to know to get a job? For most job seekers, the answer is far fewer than you think. This article explains what employers really expect, which tools are essential, which are role-specific and how to focus your learning so you look credible, not overwhelmed.

Jobs

What Hiring Managers Look for First in Cyber Security Job Applications (UK Guide)

If you want to stand out in the highly competitive world of cyber security job applications, you need to understand what hiring managers look for before they even finish reading a CV. Cyber security hiring managers scan applications quickly and with specific priorities in mind. They assess not just your technical ability, but your judgement, professionalism, clarity, risk awareness and evidence of impact. This guide explains what hiring managers look for first in cyber security applications across roles like Security Analyst, Security Engineer, Penetration Tester, Incident Responder, Security Architect, Governance Risk and Compliance specialists and Cloud Security positions. Use this as a practical, step-by-step checklist to sharpen your CV, LinkedIn profile, cover letter and portfolio before you apply on www.cybersecurityjobs.tech .

Education

The Skills Gap in Cyber Security Jobs: What Universities Aren’t Teaching

Cyber security has become one of the most critical disciplines in the modern economy. From protecting financial systems and healthcare data to securing national infrastructure, cloud platforms and supply chains, cyber security professionals now sit at the frontline of digital trust. Demand for cyber security talent in the UK has surged. Job vacancies remain high, salaries continue to rise, and organisations across every sector report difficulty hiring skilled professionals. Yet despite this demand, many graduates struggle to break into cyber security roles and employers consistently report that candidates are not job-ready. The problem is not intelligence, ambition or academic effort. It is a persistent and widening skills gap between university education and real-world cyber security work. This article explores that gap in depth: what universities teach well, what they routinely miss, why the gap exists, what employers actually want, and how jobseekers can bridge the divide to build sustainable careers in cyber security.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.