Apply Now
Details
Reference number
Salary
Job grade
Contract type
Business area
Type of role
Working pattern
Number of jobs available
Contents
Location
About the job
Job summary
You will also help to support the design and implementation of cyber security controls and measures for projects within Social Security Scotland. This is a high impact role which offers the successful candidate the opportunity of making a strong, significant and positive impact to those that rely on Social Security Scotland.
The Digital Risk and Security branch are responsible for developing and leading the strategic approach to managing security risk, and for developing the operational cyber security and physical and personnel security functions for Social Security Scotland.
The branch comprises two main areas; Security Operations and Security Assurance. The Security Operations teams are responsible for cyber operations, cloud security engineering, protective monitoring and engineering, and physical and personnel security. The Security Assurance teams are responsible for security risk and assurance, compliance management and security architecture.
DDaT Pay Supplement
This post attracts a £5,000 DDAT pay supplement after a 3 months DDaT competency qualifying period. The payment will be backdated to your start date in the role. Pay supplements are temporary payments designed to address recruitment and retention issues caused by market pressures and are subject to regular review. This post is part of the Scottish Government DDaT profession. As a member of the profession, you will join the professional development scheme, currently BCS RoleModel plus
Job description
- Conduct regular security assessments to identify potential threats and vulnerabilities.
- Perform risk assessments, provide recommendations for enhancing the security posture of our systems and infrastructure and ensure activities are consistent with applicable regulations and legislation.
- Participate in Security Project Design, Procurement and Implementation activities.
- Collaborate with cross-functional teams to implement and maintain security measures.
- Stay up to date with the latest cybersecurity threats, technologies, and best practice.
- Maintain the desired cyber security posture in line with our risk appetite.
- Have experience of developing an Information Security Management system within a fast-paced environment
- Be involved in developing and maintaining incident response plans, including guidelines and procedures for responding to security incidents.
- Participate in incident response activities as needed.
- Provide cybersecurity awareness training to employees to promote a culture of security and to ensure risk or service owners can make well-informed and auditable decisions.
- Collaborate with external vendors and partners to ensure compliance with security standards and regulations.
- Development of Information Security policies, procedures and guidelines, and managing compliance.
- Leading and mentoring a small number of security staff.
Person specification
1. Demonstrable knowledge of Information Security standards such as ISO27001 and NIST 800-53.
2. Understanding of the internal and external information security risks and administrative, physical and technical controls to mitigate against these
3. Experience of providing information security advice and leading on the implementation of Information Security projects.
4. Demonstrable knowledge of current legislation including the Data Protection Act 2018 and the GDPR.
Benefits
A Civil Service Pension – This job comes with a Civil Service pension. New joiners to the Civil Service will join a career average pension scheme as standard. Read more here – www.civilservicepensionscheme.org.uk.
Healthy work life balance – We can offer the possibility of full-time, part-time, term-time, and job shares. We also encourage flexible working.
Discounts – You can enjoy a vast range of retail, travel and lifestyle discounts through our benefit scheme.
Personal support for you – Our Employee Assistance Programme gives you confidential, independent information and guidance 24/7.
Volunteering special leave – Up to six days paid special leave a year for volunteering. We support our staff to help causes important to them.
Great locations – Our bright and modern offices in the heart of Dundee and Glasgow have been designed with staff in mind. Both locations are ideal for public transport.
Things you need to know
Selection process details
Sift & Interview dates are to be confirmed.
To apply please submit an application form by clicking on the Apply at Advertisers Site button.
Feedback will only be provided if you attend an interview or assessment.
Security
Nationality requirements
Working for the Civil Service
We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission’s recruitment principles (opens in a new window).
Apply and further information
You may want to save a copy for your records.
Contact point for applicants
Job contact :
- Name : Recruitment Team
- Email : recruitment@socialsecurity.gov.scot
Recruitment team
- Email : recruitment@socialsecurity.gov.scot