Job Description

Details

-----------


#

Reference number

435163
#

Salary

45,894 - 54,952
GBP
#

Job grade

Senior Executive Officer
B3#

Contract type

Permanent#

Business area

SSS - Chief Digital Office#

Type of role

Other#

Working pattern

Full-time#

Number of jobs available

1

Contents

------------

Location About the job Benefits Things you need to know Apply and further information

Location

------------


Dundee, Glasgow

About the job

-----------------

#

Job summary

Are you passionate about cyber security and looking to make a real impact? We are seeking an experienced Senior Information and Cyber Security Officer to join our Digital Risk and Security branch at Social Security Scotland. In this vital role, you will help shape and implement our ambitious Security Risk and Assurance programme, supporting the development of robust governance, risk management, and compliance frameworks.



The Digital Risk and Security branch is responsible for developing and leading the strategic approach to managing security risks and establishing the operational cyber security function. It comprises two key areas: Security Operations and Security Risk and Assurance. The Security Operations team oversees cyber operations, cloud security engineering, protective monitoring, and physical and personnel security. The Security Risk and Assurance team focuses on risk management, assurance, compliance, and security architecture.



This role offers an exciting opportunity to work closely with the Cyber Security Risk and Assurance Manager and contribute to the ongoing maturity of Social Security Scotland's governance, risk, and compliance capabilities.#

Job description

Provide expert advice on security strategies to manage risks and ensure compliance with standards and policies. Lead vulnerability assessments, security risk analyses, and business impact evaluations for complex systems. Develop, review, and advise on information security policies, standards, and guidelines. Interpret and apply security policies to effectively manage risks and ensure adherence to security frameworks. Support the implementation and ongoing compliance of security architectures, strategies, and controls. Use control testing data to inform security assessments and assurance activities. Identify threats, manage risks, and lead proactive threat detection and mitigation efforts. Lead the design, procurement, and delivery of security projects. Oversee third-party security oversight and conduct internal and external security assessments. Develop and deliver security awareness programmes. Provide consultancy on security projects and initiatives. Support and improve the Information Security Management System (ISMS). Lead incident response activities, ensuring swift and effective resolution. Mentor and lead a small team of security professionals. Maintain the organisation's cyber security posture aligned with risk appetite, leveraging experience in dynamic environments. #

Person specification

Essential Experience

In-depth knowledge of information security standards like ISO/IEC 27001 and NIST SP 800-53, combined with understanding of current legislation such as DPA 2018 and GDPR. Proven ability to interpret and apply these standards and legal requirements to ensure compliance and integrate best practices into organisational operations. Comprehensive understanding of internal and external information security risks, and proficiency in identifying, assessing, and implementing administrative, physical, and technical controls to mitigate these risks effectively.

Behaviours

Leadership (Level 3) Changing and Improving (Level 3)

You can find out more about Success Profiles Behaviours here.

Technical / Professional Skills

This role is aligned to Lead Cyber Security Risk Manager within the Digital, Data and Technology Profession.



These skills will be tested during the Technical Assessment if you are successful at sift stage. They will be not be assessed at application stage.


Please review the following to understand the skill expectations: Cyber Security: Advisory - gov.scot

Benefits

------------


Annual Leave - You will receive 25 days annual leave on joining us. This will increase to 30 days after four full years of service. You will also have 11.5 public and privilege days of leave every year. We also offer Flexi-time. Any extra hours you've worked can be taken as leave when suitable.




A Civil Service Pension - This job comes with a Civil Service pension. New joiners to the Civil Service will join a career average pension scheme as standard. Read more here - www.civilservicepensionscheme.org.uk.




Healthy work life balance - We can offer the possibility of full-time, part-time, term-time, and job shares. We also encourage flexible working.




Discounts - You can enjoy a vast range of retail, travel and lifestyle discounts through our benefit scheme.




Personal support for you - Our Employee Assistance Programme gives you confidential, independent information and guidance 24/7.




Volunteering special leave - Up to six days paid special leave a year for volunteering. We support our staff to help causes important to them.




Great locations - Our bright and modern offices in the heart of Dundee and Glasgow have been designed with staff in mind. Both locations are ideal for public transport.

Things you need to know

---------------------------

#

Selection process details

Expected Timeline (subject to change)

Sift - w/c 10th November

Interview - w/c 24th November

Location - In Person in either Dundee or Glasgow



To apply please submit an application form by clicking on the 'Apply at Advertisers Site' button.




Feedback will only be provided if you attend an interview or assessment.#

Security

Successful candidates must undergo a criminal record check.
Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check .



See our vetting charter .
People working with government assets must complete baseline personnel security standard (opens in new window) checks.#

Nationality requirements

This job is broadly open to the following groups:


UK nationals nationals of the Republic of Ireland nationals of Commonwealth countries who have the right to work in the UK nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS) individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020 Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service
Further information on nationality requirements
#

Working for the Civil Service

The Civil Service Code sets out the standards of behaviour expected of civil servants.



We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles .
The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.#

Diversity and Inclusion

The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see the Civil Service People Plan and the Civil Service Diversity and Inclusion Strategy .

Apply and further information

---------------------------------


This vacancy is part of the Great Place to Work for Veterans initiative.
The Civil Service welcomes applications from people who have recently left prison or have an unspent conviction. Read more about prison leaver recruitment (opens in new window).
Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.#

Contact point for applicants

Job contact :

Name : Resourcing Team Email : recruitment@socialsecurity.gov.scot

Recruitment team

Email : recruitment@socialsecurity.gov.scot #

Further information

https://www.socialsecurity.gov.scot/jobs/how-to-make-a-great-application