Combined Shape Created with Sketch. !
< Back to Careers

Security Risk and Assurance Analyst

Salary £31,266 - £35,813 (This post also attracts a £4,000 DDaT (Digital Data and Technology) pay supplement after a 9 month qualifying period).

Location Dundee or Glasgow

Hours Around 37.00 per week

Closing Date 02 December 2021 at midnight

Reference IRC90463E

Employment Type Permanent Employee

We are currently seeking applications for a Security Risk and Assurance Analyst within Social Security Scotland based in Dundee or Glasgow. This is a permanent and pensionable appointment and new entrants will normally start on the minimum of the pay range. Candidates with a disability who meet the essential criteria below will be invited to the assessments.

DDat Pay Supplement

This post attracts a £4,000 DDaT (Digital Data and Technology) pay supplement after a 9 month competency qualifying period. Pay supplements are temporary payments designed to address recruitment and retention issues caused by market pressures and are subject to regular review. This post is part of the Scottish Government DDaT profession. As a member of the profession you will join the professional development system, currently BCS RoleModelplus.


Social Security Scotland, an Executive Agency of the Scottish Government, is the largest and most complex IT and digital change programme since devolution. With a lifetime budget of over £300m, delivering a social security system that will support the people of Scotland for decades to come. Due to the demands of this exciting programme of work, the Agency is currently experiencing rapid growth and we require more incredible digital, security and technology experts to join us, including Security Risk and Assurance Analyst's.

The Chief Digital Office (CDO) Division has a remit to provide infrastructure and systems to support both the wider social security programme and Social Security Scotland. The division is responsible for delivering the infrastructure, capability and digital solutions that will support the Social Security Programme and Social Security Scotland. Key focus areas of the CDO Division are:

• Architecture and overall design;
• Technologies and Platforms;
• Digital Risk and Cyber Protection;
• Operational Delivery and Capability;
• Service Management Service Development

Essential Criteria

• Demonstrable experience in a security risk and compliance role and management of a compliance governance framework;
• Knowledge of information security standards and information assurance legislation (GDPR, UKDPA, ISO27001, etc);
• Demonstrable experience of risk management methods and techniques;
• Third party governance to key metrics and performance indicators

Important Information Regarding Interviews

In recognition of the Scottish Government's ongoing measures and guidance in its response to Covid-19 (Coronavirus), we would like to advise applicants that a decision has been taken that all interviews must be conducted in a virtual/remote setting.

In order to facilitate this new way of working, we are asking all applicants to ensure that they have a suitable space to complete the virtual interview as well as a personal device of choice with an account registered to the 'MS Teams' app by which you can undertake the interview/assessment if selected. We are also asking you to ensure that your personal Wi-Fi/Broadband capacity will be sufficient to carry both audio and video feeds to undertake the interview. This will then ensure that there are no issues incurred during the interview.

More information about the role and how to apply is available at

Sign up to our newsletter

Sign up to our stakeholder newsletter to get the latest from Social Security Scotland. We'll never send you content you haven’t asked for and you can opt out at any time.

Please enter a valid email address

Read our privacy policy