Operational Security Advisor - DRAFT

The Operational Security Advisor (OpSy) is an independent advisor with the strategic objective to reduce the Law Enforcement Agency (LEA) operational security risk. The OpSy advises on the security, integrity and ethical conduct of all law enforcement techniques, particularly covert tactics.  The OpSy will seek to implement and maintain consistency in standards of security and practice in accordance with legislation, national guidelines and local policy.

• Advise and support senior investigators in the planning and delivery of investigations using covert law enforcement tactics with an emphasis upon risk assessment and risk management.

• Protect covert methodology and equipment by the appropriate application of the ‘Neither Confirm Nor Deny’ principles.

• Protect assets including staff, capabilities, intellectual property and organisational reputation.

• Provide appropriate responses to recommendations made in respect of inspections, reviews and tribunals

• Provide current and relevant operational security advice and guidance in the management and avoidance of compromise and ‘blue on blue’ issues including physical and people assets, information handling, communications and operational techniques

• Develop policy and operational practice by review and implementation of approved recommendations.

• Provide and facilitate expert advice in managing risk in covert and relevant overt activities

• Risk mitigation to counter the risk of corruption and insider threats by utilising anti-corruption capabilities

• Provide link with:
• Information assurance
• Anti- corruption capabilities
• National OpSy Network
• Office of Surveillance Commissioners (now IPCO)
• Information Security Officers
• Other outside bodies and agencies

• Test the integrity, review process and risk management in any investigation and/or intelligence operation

• Undertake independent reviews and inspections of the operational use of intelligence

• Highlight operations that are potentially a risk to the organisation

• To review covert and relevant overt methodology, at all levels within the organisation, to ensure that standards and effective practices are met and maintained

• Report operational security incidents and/or compromises to allow learning and reduce the risk to future operations.

• Identify learning requirements in relation to covert and relevant overt policing

• Undertake and participate in audit and inspections of the Sensitive Intelligence Unit (SIU) in conjunction with the SIU Manager, as determined by local arrangements and the Sensitive Intelligence Network (SIN) National Assurance program for SIUs

Prior education and experience:

• Specialist training and experience in operational security techniques and approaches

• Experience of attending incidents and problem solving, particularly in difficult circumstances, including major and critical incidents and in the application of Joint Emergency Services Interoperability Programme (JESIP) principles.

Skills:

• To provide practical recommendations to operational problems and also possess the necessary interpersonal skills to influence corporate stakeholders

• To provide advice and guidance on sensitive operations

• To represent the organisation at regional and national level on all operational security matters pertaining to covert operations, policy and tactical development

• Good communication skills with the ability to listen to others

• Able to appropriately prioritise and plan own work and use resources effectively and efficiently.

• Able to identify, analyse and manage risk to inform balanced, proportionate, evidence based decisions.

• Able to identify cause and effect and develop a course of action designed to mitigate security breaches.

• Able to break down a problem into component parts and determine appropriate action

• Able to interpret and apply guidance to a specific activity

• Able to appropriately prioritise and plan own work

• Able to proactively develop effective working relationships with colleagues, partners and other stakeholders

• Keep up-to-date knowledge of all current and relevant legislation and government guidance

• Complete all mandatory and annual training

• Personal responsibility to identify training needs and maintain CPD

• Attend interagency training sessions to maintain understanding of other agency working practices and enhance the application of JESIP principles.

• Utilise and refer to all relevant Authorised Professional Practice (APP)

Not Applicable