Cyber Security Officer Scotland
Scottish Government
Full Time
Scotland
43725 - 52353 GBP ANNUAL Today
Job description
Overview:
This is an exciting opportunity to join Education Scotland’s Digital Services team to provide Information and Cyber Security as we continue to embed the Scottish Approach to Service Design.
Education Scotland is the national improvement agency for Scottish education and an executive agency of the Scottish Government. Our role is to promote improvement through inspection and review, innovation and change, and providing support and challenge to the whole of the education system from early years to adult learning.
The organisation has many programmes of work to deliver this vision, including responsibility for the Digital Learning and Teaching (DLT) programme and Corporate Digital Services (CDS) development programmes. These national programmes have a wide range of internal and external customers and stakeholders many of whom are represented on the governance, advisory and supporting groups. This includes Glow, the national online platform for education. This is a fast moving and exciting area of work which offers lots of opportunity for working across many digital services and technologies.
We are currently seeking applications for an Information and Cyber Security officer based in Glasgow, Livingston, Dundee or Aberdeen.
This is an exciting role within Education Scotland where you will be instrumental in helping to drive forward the implementation of an ambitious Information and Cyber Security programme.
Working with the Lead Cyber Security Officer, the Technical Delivery Team in an agile multidisciplinary team, you will help ensure the confidentiality, integrity, and availability of corporate digital systems, including Glow, the national Digital Learning platform for schools which has over one million provisioned users.
You will also help to support the design and implementation of cyber security controls and measures for transformative projects within Education Scotland. This is a high impact role which offers the successful candidate the opportunity of making a strong and significant impact to the benefit hundreds of thousands of learners and teachers across Scotland.
This post has a salary range of £43,725 up to £52,353 with the expectation that all new entrants to the Scottish Government would come in on the entry level salary. There are annual increments (eligibility after probation period and thereafter meeting performance criteria) that will allow for salary to incrementally increase up to the maximum amount for that band.
DDAT Pay Supplement
This post attracts a £5,000 DDAT pay supplement after a 3 months DDaT competency qualifying period. Pay supplements are temporary payments designed to address recruitment and retention issues caused by market pressures and are subject to regular review. This post is part of the Scottish Government DDaT profession. As a member of the profession, you will join the professional development scheme, currently BCS RoleModel plus.
Benefits:
Responsibilities:
Key Competencies
Essential Criteria & Qualifications:
Essential Criteria
1. Demonstrable knowledge of Information Security standards such as ISO27001 and NIST 800-53.
2. Understanding of both internal and external information security risks and administrative, physical and technical controls to mitigate against these.
3. Experience of providing information security advice and leading on the implementation of Information Security projects.
4. Knowledge of current legislation including the Data Protection Act 2018 and the GDPR.
Interview and Assessment
Dates to be confirmed
Minimum Time In Post
You will be expected to remain in post for a minimum of three years unless successful at gaining promotion to a higher Band or Grade.
In the event that further posts are required, a reserve list of successful candidates will be kept for up to 12 months.
Location
The Job can be based in any of Education Scotland Offices.
The post is flexible and hybrid working in line with current Scottish Government policies.
HOW TO APPLY AND ADDITIONAL INFORMATION
DDaT Recruitment - Further Information
The Closing Date for applications is 18/10/2023 at 23:55 PM.
Diversity and Inclusion
Delivering a successful national service for Scotland is impossible without ensuring we consider the diverse needs, perspectives, and backgrounds of everyone in Scotland in our work.
We welcome applications from candidates of all backgrounds, and work to ensure a positive recruitment experience where everyone is treated fairly, and with respect regardless of the outcome.
It’s not essential to be in a similar role right now. You may be working in another field or returning from a career break - the experiences you have gained through this can bring fresh perspectives to our teams and work.
For information on this post please contact the hiring manager by email at [email protected]
The Scottish Government is a diverse and inclusive workplace and we want to help you demonstrate your full potential whatever type of assessment is used. If you require any adjustments to our recruitment process, please let us know via [email protected]
As part of any recruitment process, Scottish Government and associated public bodies collects and processes personal data relating to job applicants and applicants for public appointments.
Personal information you provide in the recruitment process will be made available to Scottish Government and our additional data processors.
Are you passionate about Information and Cyber Security?
This is an exciting opportunity to join Education Scotland’s Digital Services team to provide Information and Cyber Security as we continue to embed the Scottish Approach to Service Design.
Education Scotland is the national improvement agency for Scottish education and an executive agency of the Scottish Government. Our role is to promote improvement through inspection and review, innovation and change, and providing support and challenge to the whole of the education system from early years to adult learning.
The organisation has many programmes of work to deliver this vision, including responsibility for the Digital Learning and Teaching (DLT) programme and Corporate Digital Services (CDS) development programmes. These national programmes have a wide range of internal and external customers and stakeholders many of whom are represented on the governance, advisory and supporting groups. This includes Glow, the national online platform for education. This is a fast moving and exciting area of work which offers lots of opportunity for working across many digital services and technologies.
We are currently seeking applications for an Information and Cyber Security officer based in Glasgow, Livingston, Dundee or Aberdeen.
This is an exciting role within Education Scotland where you will be instrumental in helping to drive forward the implementation of an ambitious Information and Cyber Security programme.
Working with the Lead Cyber Security Officer, the Technical Delivery Team in an agile multidisciplinary team, you will help ensure the confidentiality, integrity, and availability of corporate digital systems, including Glow, the national Digital Learning platform for schools which has over one million provisioned users.
You will also help to support the design and implementation of cyber security controls and measures for transformative projects within Education Scotland. This is a high impact role which offers the successful candidate the opportunity of making a strong and significant impact to the benefit hundreds of thousands of learners and teachers across Scotland.
This post has a salary range of £43,725 up to £52,353 with the expectation that all new entrants to the Scottish Government would come in on the entry level salary. There are annual increments (eligibility after probation period and thereafter meeting performance criteria) that will allow for salary to incrementally increase up to the maximum amount for that band.
DDAT Pay Supplement
This post attracts a £5,000 DDAT pay supplement after a 3 months DDaT competency qualifying period. Pay supplements are temporary payments designed to address recruitment and retention issues caused by market pressures and are subject to regular review. This post is part of the Scottish Government DDaT profession. As a member of the profession, you will join the professional development scheme, currently BCS RoleModel plus.
Benefits:
- Generous Civil Service Pension Scheme with employer contributions ranging from 26.6% to 30.3%.
- Competitive salary ranges.
- Flexible working arrangements including compressed hours and flexi time, with potential to accrue up to 4 extra days off a month.
- 25 Days Annual Leave (pro-rata) which increases in line with service plus 11.5 days Public & Privilege holidays.
- Access to a wide range of courses offered by the Scottish Digital Academy, plus opportunities to gain professional memberships and academic qualifications.
- Automatic Membership of the Scottish Government DDaT profession and professional development system.
- Reasonable adjustments as required to ensure your comfort and safety in your new role.
- Range of health and wellbeing support available to all staff.
- Investigating security incidents, perform root cause analysis, and developing strategies to prevent future incidents.
- Conduct regular security assessments and vulnerability scans to identify potential threats and vulnerabilities.
- Perform risk assessments, provide recommendations for enhancing the security posture of our systems and infrastructure and ensure activities are consistent with applicable regulations and legislation.
- Monitor network activity and analyse security logs to identify and respond to suspicious activities, potential security breaches, and incidents.
- Participate in Security Project Design, Procurement and Implementation activities.
- Collaborate with cross-functional teams to implement and maintain security measures.
- Stay up to date with the latest cybersecurity threats, technologies, and best practice.
- Maintain the desired cyber security posture in line with our risk appetite. Have experience of developing an Information Security Management system within a fast-paced environment
- Be involved in developing and maintaining incident response plans, including guidelines and procedures for responding to security incidents,
- Participate in incident response activities as needed.
- Provide cybersecurity awareness training to employees to promote a culture of security and to ensure risk or service owners can make well-informed and auditable decisions.
- Collaborate with external vendors and partners to ensure compliance with security standards and regulations.
Key Competencies
- Self-Awareness
- Communications and Engagement
- Analysis and Use of Evidence
- Improving Performance
Formal security qualifications would be advantageous but not essential.
Essential Criteria
1. Demonstrable knowledge of Information Security standards such as ISO27001 and NIST 800-53.
2. Understanding of both internal and external information security risks and administrative, physical and technical controls to mitigate against these.
3. Experience of providing information security advice and leading on the implementation of Information Security projects.
4. Knowledge of current legislation including the Data Protection Act 2018 and the GDPR.
Interview and Assessment
Dates to be confirmed
Minimum Time In Post
You will be expected to remain in post for a minimum of three years unless successful at gaining promotion to a higher Band or Grade.
In the event that further posts are required, a reserve list of successful candidates will be kept for up to 12 months.
Location
The Job can be based in any of Education Scotland Offices.
The post is flexible and hybrid working in line with current Scottish Government policies.
HOW TO APPLY AND ADDITIONAL INFORMATION
Please complete the application and submit evidence based examples to demonstrate your knowledge/skills (300 words). Remember, your answers should be clear, concise and reflect what actions you undertook. You may want to use the STAR(R) approach to respond to each criterion.
DDaT Recruitment - Further Information
DDaT Recruitment Candidate Guide
Person Specification
The Closing Date for applications is 18/10/2023 at 23:55 PM.
Diversity and Inclusion
Delivering a successful national service for Scotland is impossible without ensuring we consider the diverse needs, perspectives, and backgrounds of everyone in Scotland in our work.
We welcome applications from candidates of all backgrounds, and work to ensure a positive recruitment experience where everyone is treated fairly, and with respect regardless of the outcome.
It’s not essential to be in a similar role right now. You may be working in another field or returning from a career break - the experiences you have gained through this can bring fresh perspectives to our teams and work.
For information on this post please contact the hiring manager by email at [email protected]
The Scottish Government is a diverse and inclusive workplace and we want to help you demonstrate your full potential whatever type of assessment is used. If you require any adjustments to our recruitment process, please let us know via [email protected]
As part of any recruitment process, Scottish Government and associated public bodies collects and processes personal data relating to job applicants and applicants for public appointments.
Personal information you provide in the recruitment process will be made available to Scottish Government and our additional data processors.
Scottish Government
www.gov.scot
Edinburgh, United Kingdom
Nicola Sturgeon
$25 to $50 million (USD)
1001 to 5000 Employees
Government
National Services & Agencies
1885
