Cyber Risk Advisor 2023-5378

**Details**:
**Reference number**:

- 267067**Salary**:

- £41,642 - £49,860**Job grade**:

- Senior Executive Officer- B3**Contract type**:

- Permanent**Type of role**:

- Other**Working pattern**:

- Full-time**Number of jobs available**:

- 1Contents

Location

About the job

**Benefits**:
Things you need to know

Location
- Edinburgh, Scotland, EH11 3XDAbout the job

**Job summary**:
The Cyber Security Unit (CSU) is responsible for responsible for protecting the confidentiality, integrity and availability of Scottish Government information and information systems.

As a Cyber Risk Advisor, you will use your information security experience to understand and advise on identifying and managing information security risks and mitigations in relation to technical infrastructure, projects, procurements and systems.

We operate a flexible location policy, with a named base in Scotland. Staff are assigned to the base office, however there may be a need for travel to other Scottish Government offices/other locations depending on assigned work. The Cyber Security Unit currently work on a hybrid basis which involves four days working remotely and one day in the office, which is based at Saughton House in Edinburgh.

**DDAT Pay Supplement**

**Job description**:
To be successful in this role you offer excellent written and verbal communication skills and be experienced translating complex technical concepts clearly to your peers and management level colleagues. You should also have good collaboration and stakeholder management skills working with internal and external colleagues, specialists and stakeholders to make sure work is completed on time and to a high standard. And you will maintain an in-depth knowledge of specific specialisms, enabling you to provide expert advice.

**Responsibilities**
- Providing cyber security input to support major change programmes.
- Supporting projects with security policy advice and guidance.
- Performing security risk assessments and business impact analysis.
- Assessing the robustness of third party suppliers’ control environments.
- Contributing to continually improving our services.
- Creating and maintaining security documentation and policies.
- Responding to cyber security queries for help and support.

**Person specification**:
1. An awareness of security standards, e.g. ISO27001, NIST, CAF, PCI DSS, HMG GovS 007.

2. Experience of engaging with, and managing, a wide range of internal and external stakeholders, including senior officials, customers and suppliers. This includes producing concise, clear, well-structured written work and communicating complex matters across a range of audiences.

3. Demonstratable ICT related knowledge and skills in order to be able to identify the most appropriate security solutions in any given situation, and must be able to stay abreast of new ICT developments and security best practices

4. Demonstrable experience of managing the internal and external cyber security risks to IT systems, services and data storage, particularly within Digital Cloud services.

**Benefits**:

- Learning and development tailored to your role
- An environment with flexible working options
- A culture encouraging inclusion and diversity
- A Civil Service pension with an average employer contribution of 27%

Things you need to know

**Selection process details**:

- Please use the below link to apply.
- Feedback will only be provided if you attend an interview or assessment.**Security**:
- People working with government assets must complete basic personnel security standard checks.**Nationality requirements**:
This job is broadly open to the following groups:

- UK nationals
- nationals of Commonwealth countries who have the right to work in the UK
- nationals of the Republic of Ireland
- relevant EU, EEA, Swiss or Turkish nationals working in the Civil Service
- relevant EU, EEA, Swiss or Turkish nationals who have built up the right to work in the Civil Service
- certain family members of the relevant EU, EEA, Swiss or Turkish nationals

Further information on nationality requirements**Working for the Civil Service**:

- The Civil Service Code sets out the standards of behaviour expected of civil servants.
- We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles.-
- Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.**Contact point for applicants**:
Job contact:

- Name:
- john mackay
Recruitment team :