Combined Shape Created with Sketch. !
< Back to Careers

ID2022-3054 - Associate Security and Information Risk Advisor

Salary - £27,231 - £30,039

Location - Dundee or Glasgow

Hours - 37 hours per week

Closing Date - 6th June 2022 at Midnight

Reference - ID2022-3054

Employment Type - Permanent

Overview

The Chief Digital Office (CDO) Division has a remit to provide infrastructure and systems to support both the wider social security programme and Social Security Scotland. Associate Security and Information Risk Advisor supports effective information security risk management by providing advice and guidance on the proportionate and effective specification, implementation, and operation of cyber security controls to protect the integrity, availability, authenticity, non-repudiation and confidentiality of Scottish Government information. Associate Security and Information Risk Advisor also provides guidance on the compliance of information systems with legislation, regulation and relevant standards.

This post attracts a £4,00 Digital, Data and Technology (DDaT) pay supplement after a 9 months DDaT competency qualifying period. Pay supplements are temporary payments designed to address recruitment and retention issues caused by market pressures and are subject to regular review. This post is part of the Scottish Government DDaT profession. As a member of the profession you will join the professional development system, currently BCS RoleModelplus.

Main Duties

Associate Security and Information Risk Advisor supports effective information security risk management by providing advice and guidance on the proportionate and effective specification, implementation, and operation of cyber security controls to protect the integrity, availability, authenticity, non-repudiation and confidentiality of Scottish Government information. Associate Security and Information Risk Advisor also provides guidance on the compliance of information systems with legislation, regulation and relevant standards.

• Provide basic advice and guidance on security strategies to manage identified risks and ensure adoption and adherence to standards.

• Obtain and act on vulnerability information and conducts security risk assessments and business impact analysis on basic information systems.

• Investigate breaches of security, and recommend appropriate control improvements

• Interpret information assurance and security policies and applies these in order to manage risks

• Provide advice and guidance to ensure adoption of and adherence to information assurance architectures, strategies, policies, standards and guidelines

• Use control testing information to support information assurance assessments

Additional duties:

• Liaison with and support of other Digital Risk and Security functions.

• Management of problems and issues, resolutions, corrective actions, and lessons learned

• Collection and dissemination of relevant information and risk management advice

• Collection of feedback from customers in order to develop and enhance customer and stakeholder relationships

• Supporting the assessment of third party suppliers’ control environments

Further Information

Social Security Scotland are a Disability Confident Employer. We will consider and implement any reasonable adjustments you may require throughout the recruitment process and during the course of your employment, should you be successful in securing a post. If you feel you may require assistance with any part of our recruitment process, please contact us at Recruitment@socialsecurity.gov.scot.

More information about the role and how to apply is available at: Associate Security and Information Risk Advisor in DUNDEE or GLASGOW | (icims.com)

Sign up to our newsletter

If you are an organisation or individual who works with people who may need information or support on any of our benefits, sign up to our stakeholder newsletter.

We'll never send you content you haven’t asked for and you can opt out at any time.

Please enter a valid email address

Read our privacy policy