Warning
This job advert has expired and applications have closed.
Senior Information and Cyber Security Officer
| Posting date: | 13 May 2025 |
|---|---|
| Salary: | £45,894 to £54,952 per year |
| Additional salary information: | Plus a £5000 Digital, Data and Technology (DDaT) pay supplement after a 3 month qualifying period. |
| Hours: | Full time |
| Closing date: | 03 June 2025 |
| Location: | Dundee or Glasgow |
| Remote working: | Hybrid - work remotely up to 3 days per week |
| Company: | Scottish Government |
| Job type: | Permanent |
| Job reference: | 1313 |
Summary
Salary - £45,894 - £54,952 (plus a £5000 Digital, Data and Technology (DDaT) pay supplement after a 3 month qualifying period)
Location - Dundee or Glasgow
Hours - 35 hours per week
Closing Date - 3rd June 2025 at 23:55
Reference - 1313
Employment Type - Permanent
Overview
Are you ready to lead the way in safeguarding social security services and making a real difference? Join our Digital Risk and Security team as a Senior Information and Cyber Security Officer, where your expertise will assist in shaping the future of Security Risk and Assurance within Social Security Scotland.
As a key member of the Digital Risk and Security branch, you will play a pivotal role in advancing our ambitious Security, Risk and Assurance programme. Our branch is divided into two areas: Security Operations, which handles cyber operations and cloud security functions; and Security Risk and Assurance, which is responsible for security risk management, compliance, and architecture.
Working closely with the Cyber Security Risk and Assurance Managers, Security Architects, and colleagues across the Chief Digital Office, you will help to ensure the confidentiality, integrity, and availability of vital digital systems and releases. This high-impact role offers an exciting opportunity to implement robust cyber security controls which aid in the delivery of services for Social Security Scotland.
DDaT Pay Supplement
This post is part of the Scottish Government Digital, Data and Technology (DDAT) profession and as a member of the profession you will join the professional development system. This post currently attracts a £5,000 annual DDAT pay supplement, applicable after a 3 months competency qualifying period. The payment will be backdated to your start date in the role. Pay supplements are reviewed regularly and there is one currently underway. Changes will be communicated when the review is concluded.
Main Duties
• Lead the provision of advice and guidance on security strategies to manage identified risks and ensure adoption and adherence to standards.
• Lead teams responsible for obtaining and acting on vulnerability information and security risk assessments and business impact analysis on complex information systems.
• Development of information security policies, standards, procedures, and guidelines, including consulting on their development and ensuring ongoing compliance.
• Interpret information assurance and security policies and applies these in order to manage risks.
• Provide advice and guidance to ensure adoption of and adherence to information assurance architectures, strategies, policies, standards and guidelines.
• Use control testing information to support information assurance assessments.
• Threat Identification and Risk Management.
• Security Project Design, Procurement and Implementation.
• Third Party Oversight.
• Internal and External Security Assessments.
• Security Awareness Programme.
• Providing consultancy on projects.
• Supporting and developing the Information Security Management system.
• Incident Response.
• Leading and mentoring a number of security staff.
Further Information
Social Security Scotland are a Disability Confident Employer. We will consider and implement any reasonable adjustments you may require throughout the recruitment process and during the course of your employment, should you be successful in securing a post. If you feel you may require assistance with any part of our recruitment process, please contact us at Recruitment@socialsecurity.gov.scot.
Location - Dundee or Glasgow
Hours - 35 hours per week
Closing Date - 3rd June 2025 at 23:55
Reference - 1313
Employment Type - Permanent
Overview
Are you ready to lead the way in safeguarding social security services and making a real difference? Join our Digital Risk and Security team as a Senior Information and Cyber Security Officer, where your expertise will assist in shaping the future of Security Risk and Assurance within Social Security Scotland.
As a key member of the Digital Risk and Security branch, you will play a pivotal role in advancing our ambitious Security, Risk and Assurance programme. Our branch is divided into two areas: Security Operations, which handles cyber operations and cloud security functions; and Security Risk and Assurance, which is responsible for security risk management, compliance, and architecture.
Working closely with the Cyber Security Risk and Assurance Managers, Security Architects, and colleagues across the Chief Digital Office, you will help to ensure the confidentiality, integrity, and availability of vital digital systems and releases. This high-impact role offers an exciting opportunity to implement robust cyber security controls which aid in the delivery of services for Social Security Scotland.
DDaT Pay Supplement
This post is part of the Scottish Government Digital, Data and Technology (DDAT) profession and as a member of the profession you will join the professional development system. This post currently attracts a £5,000 annual DDAT pay supplement, applicable after a 3 months competency qualifying period. The payment will be backdated to your start date in the role. Pay supplements are reviewed regularly and there is one currently underway. Changes will be communicated when the review is concluded.
Main Duties
• Lead the provision of advice and guidance on security strategies to manage identified risks and ensure adoption and adherence to standards.
• Lead teams responsible for obtaining and acting on vulnerability information and security risk assessments and business impact analysis on complex information systems.
• Development of information security policies, standards, procedures, and guidelines, including consulting on their development and ensuring ongoing compliance.
• Interpret information assurance and security policies and applies these in order to manage risks.
• Provide advice and guidance to ensure adoption of and adherence to information assurance architectures, strategies, policies, standards and guidelines.
• Use control testing information to support information assurance assessments.
• Threat Identification and Risk Management.
• Security Project Design, Procurement and Implementation.
• Third Party Oversight.
• Internal and External Security Assessments.
• Security Awareness Programme.
• Providing consultancy on projects.
• Supporting and developing the Information Security Management system.
• Incident Response.
• Leading and mentoring a number of security staff.
Further Information
Social Security Scotland are a Disability Confident Employer. We will consider and implement any reasonable adjustments you may require throughout the recruitment process and during the course of your employment, should you be successful in securing a post. If you feel you may require assistance with any part of our recruitment process, please contact us at Recruitment@socialsecurity.gov.scot.