Salary - £27,231 - £30,039
Location - Dundee or Glasgow
Hours - 37 hours per week
Closing Date - 6th June 2022 at Midnight
Reference - ID2022-3054
Employment Type - Permanent
Overview
The Chief Digital Office (CDO) Division has a remit to provide infrastructure and systems to support both the wider social security programme and Social Security Scotland. Associate Security and Information Risk Advisor supports effective information security risk management by providing advice and guidance on the proportionate and effective specification, implementation, and operation of cyber security controls to protect the integrity, availability, authenticity, non-repudiation and confidentiality of Scottish Government information. Associate Security and Information Risk Advisor also provides guidance on the compliance of information systems with legislation, regulation and relevant standards.
This post attracts a £4,00 Digital, Data and Technology (DDaT) pay supplement after a 9 months DDaT competency qualifying period. Pay supplements are temporary payments designed to address recruitment and retention issues caused by market pressures and are subject to regular review. This post is part of the Scottish Government DDaT profession. As a member of the profession you will join the professional development system, currently BCS RoleModelplus.
Main Duties
Associate Security and Information Risk Advisor supports effective information security risk management by providing advice and guidance on the proportionate and effective specification, implementation, and operation of cyber security controls to protect the integrity, availability, authenticity, non-repudiation and confidentiality of Scottish Government information. Associate Security and Information Risk Advisor also provides guidance on the compliance of information systems with legislation, regulation and relevant standards.
• Provide basic advice and guidance on security strategies to manage identified risks and ensure adoption and adherence to standards.
• Obtain and act on vulnerability information and conducts security risk assessments and business impact analysis on basic information systems.
• Investigate breaches of security, and recommend appropriate control improvements
• Interpret information assurance and security policies and applies these in order to manage risks
• Provide advice and guidance to ensure adoption of and adherence to information assurance architectures, strategies, policies, standards and guidelines
• Use control testing information to support information assurance assessments
Additional duties:
• Liaison with and support of other Digital Risk and Security functions.
• Management of problems and issues, resolutions, corrective actions, and lessons learned
• Collection and dissemination of relevant information and risk management advice
• Collection of feedback from customers in order to develop and enhance customer and stakeholder relationships
• Supporting the assessment of third party suppliers’ control environments
Further Information
Social Security Scotland are a Disability Confident Employer. We will consider and implement any reasonable adjustments you may require throughout the recruitment process and during the course of your employment, should you be successful in securing a post. If you feel you may require assistance with any part of our recruitment process, please contact us at Recruitment@socialsecurity.gov.scot.
More information about the role and how to apply is available at: Associate Security and Information Risk Advisor in DUNDEE or GLASGOW | (icims.com)