Cyber Risk and Compliance Lead
4 months ago
**Cyber Risk & Compliance Lead**
**Permanent**
**Edinburgh/Hybrid**:
- **£61,626 - £72,684**_
Everything we do at the Scottish Funding Council (SFC) aims to create the right environment for colleges and universities to thrive.
The Scottish Funding Council is Scotland’s tertiary education and research authority. Our ambition is to make Scotland an outstanding place to learn, educate, research, and innovate - now and for the future. So, naturally, we have a clear focus on recruiting the best people and developing them throughout their career. We invest around £2 billion every year, and our funding enables colleges and universities to provide life-changing opportunities for over half a million people.
We’re not only looking for the best people to come and work for us, but also people who will connect with our guiding principles which include working in partnership, championing diversity, and supporting sustainability for future generations.
By fostering our guiding principles, we are very proud of the inclusive working environment that we have created. We are committed to attracting people of all backgrounds: we want our colleague base to reflect the people and communities that we serve.
**Job Summary**
As the Cyber Risk & Compliance Lead at the Scottish Funding Council, you will champion our cybersecurity initiatives, ensuring the protection of our operations, data and technologies in alignment with UK-specific cybersecurity standards and frameworks. This role is critical in maintaining the SFC’s reputation for excellence and integrity in the funding of education and research across Scotland.
**Key Responsibilities**
- Develop and implement a cyber risk management framework tailored to the specific needs and challenges of the SFC, focusing on the protection of financial data, personal information of students and staff, and sensitive research data.
- Ensure full compliance with Scottish and UK data protection laws, as well as adherence to specific regulations relevant to our organisation and our internal and external audit obligations.
- Collaborate closely with academic institutions, research bodies, and government agencies to align cyber security practices and foster a culture of shared responsibility and leading practices in data protection and risk management.
- Lead the review and enhancement of policies, procedures, and controls governing data security, risk assessment, and compliance within the funding council’s operations.
- Conduct targeted cyber risk assessments and compliance audits, providing strategic insights and recommendations to the SFC’s senior management and governing board.
- Act as a principal advisor on cyber security matters, offering expert guidance to support the council’s strategic initiatives in funding education and research.
- Stay abreast of emerging cyber threats and advancements in cyber security technologies and practices, ensuring the SFC remains proactive and responsive in its cyber risk and compliance strategies.
**Person specification**
**It is important through your CV / Cover Letter that you give evidence of proven experience of each of the following essential criteria**:
**Essential Requirements**:
- Proven track record in cybersecurity risk management, with a strong understanding of the UK cybersecurity landscape, including Cyber Essentials, ISO 27001 frameworks.
- Familiarity with the NCSC’s guidelines and recommendations for public sector organisations.
- Experience in managing cybersecurity compliance projects within the UK, including the attainment of Cyber Essentials certification.
- Leadership experience with the ability to mentor a team and drive cybersecurity awareness across an organisation.
- Excellent communication and influencing skills, capable of engaging effectively with a range of stakeholders on complex cybersecurity issues to ensure change is adopted and sustained.
**Professional Certifications**:
- Holding or working towards UK-recognized cybersecurity certifications, such as those offered by CREST or Cyber Essentials Plus, is highly desirable.
- Additional certifications such as CISSP, CISM, or ISO 27001 Lead Auditor/Implementer would be beneficial.
**Additional information**
**Location**
SFC offers hybrid working for its employees. This means that whilst the role is based at our Edinburgh office, there is substantial opportunity to work from home most of the time. As a rule of thumb SFC expects that a minimum of three days a month in the office (on average) will achieve the benefits of its hybrid approach, however it is for the employee and their line manager to agree the balance between home and workplace working - determined primarily by business need. Please be aware that this role can only be worked from within the UK and not overseas. Relocation expenses are not available.
**Key Rewards and Benefits**
- Normal full-time hours of work are 35 per week. We will consider flexible working arrangements. A flexi-t
-
Cyber Delivery Lead
4 days ago
Aberdeen, Aberdeen City, United Kingdom SSE PLC Full timeSSE PLC is committed to becoming a leading energy company in a low-carbon world. To achieve this goal, we are seeking a highly skilled Cyber Delivery Lead to join our Transmission Cyber Programme team.About the RoleThis is a critical position within our Digital Strategy and Vision to be a progressive network owner, using digital to enhance social and...
-
Cyber Delivery Lead
1 week ago
Aberdeen, Aberdeen City, United Kingdom SSE PLC Full timeAbout the RoleSSE PLC is committed to becoming a leading energy company in a low-carbon world. As part of this journey, we are seeking a highly skilled Cyber Delivery Lead to join our Transmission Cyber Programme team.This role will be responsible for leading the delivery of one or more projects in our Cyber Resilience Programme for Operational Technology....
-
Cyber Delivery Lead
2 weeks ago
Aberdeen, Aberdeen City, United Kingdom SSE Full timeAbout the RoleSSE is a leading energy company in a low carbon world, with ambitious plans to deliver 5 billion in low carbon projects by 2027. We are seeking a highly skilled Cyber Delivery Lead to join our Transmission Cyber Programme team, supporting our Digital Strategy and Vision to be a progressive network owner.The successful candidate will be...
-
Cyber Security Manager
5 days ago
Aberdeen, Aberdeen City, United Kingdom EnerMech Full timeWe are a leading specialist engineering services company delivering integrated solutions for complex energy and infrastructure projects and operating assets.Our business is built on the belief that our people are what make EnerMech excellent. When we are thriving globally, it's not just about investing in our infrastructure, service offering, and technology,...
-
Cyber Security Leader
2 weeks ago
Aberdeen, Aberdeen City, United Kingdom EnerMech Full timeAbout EnerMechWe are a leading specialist engineering services company delivering integrated solutions for complex energy and infrastructure projects and operating assets. Our business is built on the belief that our people are what make EnerMech excellent. When we are thriving globally, it's not just about investing in our infrastructure, service offering,...
-
Cyber Security Specialist
5 months ago
Aberdeen, United Kingdom Orion Full time**Job description**: Our client is currently recruiting for the position of Cyber Security Specialist, based in Aberdeen. **Responsibilities**: - Focal point for Cyber Security project scopes and development. - Scope and support external Cyber Security study work. - Develop and maintain detailed plans to address internal and external commitments. - Provide...
-
Cyber Security Graduate Analyst
2 weeks ago
Aberdeen, Aberdeen City, United Kingdom Grayce Full timeJob Opportunity: Cyber Security Graduate AnalystGrayce is seeking a highly motivated and talented individual to join our Cyber Security Graduate Programme. As a Cyber Security Graduate Analyst, you will be part of a dynamic team responsible for delivering high-quality cyber security solutions to our clients.Key Responsibilities:Contribute to the development...
-
Cyber Security Graduate Analyst
2 weeks ago
Aberdeen, Aberdeen City, United Kingdom Grayce Full timeJob Opportunity: Cyber Security Graduate AnalystGrayce is seeking a highly motivated and talented individual to join our Cyber Security Graduate Programme. As a Cyber Security Graduate Analyst, you will be part of a dynamic team responsible for delivering high-quality cyber security solutions to our clients.Key Responsibilities:Contribute to the development...
-
Cybersecurity Project Lead
1 week ago
Aberdeen, Aberdeen City, United Kingdom Morson Talent Full timeOur client, a leading Oil & Gas operator, is seeking a Senior Project Engineer - Cybersecurity to drive regulatory compliance with Cyber Security standards and legislation.The successful candidate will enact a programme of risk assessment and targeted modifications to maintain all Risk Assessments and procedures related to Cyber Security for Operational...
-
Cyber Security Programme Manager
1 week ago
Aberdeen, Aberdeen City, United Kingdom EnerMech Full timeWe are a leading specialist engineering services company delivering integrated solutions for complex energy and infrastructure projects and operating assets.Our business is built on the belief that our people are what make EnerMech excellent. When we are thriving globally, it's not just about investing in our infrastructure, service offering, and technology,...
-
Cyber Security Specialist
2 weeks ago
Aberdeen, Aberdeen City, United Kingdom Grayce Full timeUnlock Your Potential in Cyber SecurityAt Grayce, we're committed to delivering innovative solutions that drive business growth and success. As a Graduate SOC Analyst, you'll play a critical role in helping our clients achieve their goals while developing your skills and expertise in the field of cyber security.Key Responsibilities:Contribute to the...
-
Cyber Security Specialist
2 weeks ago
Aberdeen, Aberdeen City, United Kingdom Grayce Full timeUnlock Your Potential in Cyber SecurityAt Grayce, we're committed to delivering innovative solutions that drive business growth and success. As a Graduate SOC Analyst, you'll play a critical role in helping our clients achieve their goals while developing your skills and expertise in the field of cyber security.Key Responsibilities:Contribute to the...
-
Compliance Lead
5 months ago
Aberdeen, United Kingdom Petrofac Full time**Petrofac is a leading international service provider to the energy industry, with a diverse client portfolio including many of the world’s leading energy companies.** We design, build, manage and maintain infrastructure for our clients. We recruit, reward, and develop our people based on merit regardless of race, nationality, religion, gender, age,...
-
Cyber Security Specialist
3 weeks ago
Aberdeen, Aberdeen City, United Kingdom Grayce Full timeUnlock Your Potential in Cyber SecurityAt Grayce, we're committed to delivering a low-risk and scalable solution for your change and transformation plans. As a Graduate SOC Analyst, you'll embark on a journey of continuous learning, gaining industry-accredited qualifications, while getting hands-on experience working full-time on-site with prestigious...
-
Cyber Security Specialist
3 weeks ago
Aberdeen, Aberdeen City, United Kingdom Grayce Full timeUnlock Your Potential in Cyber SecurityAt Grayce, we're committed to delivering a low-risk and scalable solution for your change and transformation plans. As a Graduate SOC Analyst, you'll embark on a journey of continuous learning, gaining industry-accredited qualifications, while getting hands-on experience working full-time on-site with prestigious...
-
Senior Project Manager
2 weeks ago
Aberdeen, Aberdeen City, United Kingdom ENGINEERINGUK Full timeAbout the RoleWe are seeking a highly skilled and experienced Cyber Delivery Lead to join our Transmission Cyber Programme team. The successful candidate will be responsible for leading the delivery of one or more projects in our Cyber Resilience Programme for Operational Technology.The Cyber Delivery Lead will be responsible for managing the product and...
-
Senior Project Manager
2 weeks ago
Aberdeen, Aberdeen City, United Kingdom ENGINEERINGUK Full timeAbout the RoleWe are seeking a highly skilled and experienced Cyber Delivery Lead to join our Transmission Cyber Programme team. The successful candidate will be responsible for leading the delivery of one or more projects in our Cyber Resilience Programme for Operational Technology.The Cyber Delivery Lead will be responsible for managing the product and...
-
AML Compliance Risk Manager
3 weeks ago
Aberdeen, Aberdeen City, United Kingdom Johnston Carmichael Full timeJob Title: AML & Compliance Risk OfficerWe are seeking a highly skilled Governance, Risk and Compliance (GRC) professional to join our team at Johnston Carmichael. As a key member of our GRC function, you will play a critical role in ensuring the firm's compliance with regulatory requirements and maintaining a robust risk management framework.Key...
-
AML Compliance Risk Manager
3 weeks ago
Aberdeen, Aberdeen City, United Kingdom Johnston Carmichael Full timeJob Title: AML & Compliance Risk OfficerWe are seeking a highly skilled Governance, Risk and Compliance (GRC) professional to join our team at Johnston Carmichael. As a key member of our GRC function, you will play a critical role in ensuring the firm's compliance with regulatory requirements and maintaining a robust risk management framework.Key...
-
Cyber Security Specialist
4 weeks ago
Aberdeen, Aberdeen City, United Kingdom Grayce Full timeUnlock Your Potential in Cyber SecurityAt Grayce, we're committed to delivering innovative solutions that drive business growth and success. As a Graduate SOC Analyst, you'll play a key role in helping our clients achieve their goals while developing your skills and expertise in the field of cyber security.What We Offer:Competitive Salary: Starting at...
