Security Architect
Overview
Security Architect | Hybrid Working with Glasgow or Dundee Base Location | £57141 - £71243 + £5,000 DDaT Pay Supplement after 3 month qualifying period | Full or Part Time Hours | Flexi- time | 25 Days annual leave (increasing to 30 after 4 years' service) plus 11.5 Public and Privilege | Contributory Pension Scheme (employee contributions 7.35% employer contributions 28.97%)
Are you looking for a job where you can make a real difference to the people of Scotland? Would you enjoy playing a key role in designing the security for the delivery of Social Security Benefits in Scotland? Would you like to work with a multi-disciplinary team to support the secure delivery of the complex digital programme which underpins the most significant new public service to be created in Scotland since devolution? If so, then our Security Architect role may be the perfect opportunity for you to develop your career while also helping people in these challenging times.
Social Security Scotland, an Executive Agency of the Scottish Government, is the largest and most complex IT and digital change programme since devolution. With a lifetime budget of over £300m, delivering a social security system that will support the people of Scotland for decades to come. Due to the demands of this exciting programme of work, the Agency is currently experiencing rapid growth and we require more incredible digital, security and technology experts to join us.
The Security Architect is based in the Digital Risk & Security (DRS) Branch of the Chief Digital Office. The DRS Branch is responsible for managing and protecting the security of the Social Security Scotland, ensuring that all operations, data, resources within the agency are safeguarded against potential threats. This includes the implementation and enforcement of robust security measures, continuous monitoring, and ensuring compliance with public sector standards.
The security architect is responsible for designing and managing the organisation's security architecture, with an emphasis on AWS cloud security. Designing secure AWS architecture patterns, conducting security assessments, ensuring compliance, and integrating security best practices into all development and deployment processes. This role is critical in applying security by design principles to protecting the organisation's data and infrastructure from potential threats.
What Do We Offer You?
- C1 - Salary between £57141 - £71243 plus a £5000 annual Digital, Data and Technology (DDaT) pay supplement after a 3 month qualifying period. This supplement is backdated and paid with your monthly salary.
- Flexible working arrangements with potential of up to 4 days off per month.
- You will have an annual leave allowance of 5 weeks, rising to 6 weeks after 4 years. In addition, the Scottish Government observes 11½ days public and privilege holidays, dates of which are set annually.
- Workplace adjustments for everyone that needs them to ensure your comfort and safety in your new role.
- Learning and development opportunities to support your personal and professional growth.
- Career progression - join a rapidly growing and developing organisation with excellent opportunities for career advancement.
- Contributory Pension Scheme (employee contributions 7.35% employer contributions 28.97%).
- Health and wellbeing support including 24 hour access to our Employee Assistance Programme, plus counselling support available for all.
- Discounts on gym memberships and retail outlets.
Responsibilities
- Develop, maintain, and enhance the security architecture strategy, principles, and pattern to address the emerging threats.
- Manage and update the security baseline controls to define the security control requirements for the information systems and data.
- Design and implement effective security solutions that are designed to secure the organisation's data and systems.
- Provide specialist security advice and recommend approaches across teams and stakeholders.
- Identify and evaluate the security tools and technology that are required for the agency.
- Advise on important security-related technologies and assess the risk associated with proposed changes.
Qualifications
No specific qualifications are required for this post.
How To Apply
To apply for this post, you will need to provide the information requested below via the online application process. A CV (no longer than two pages) setting out your career history, with key responsibilities and achievements - this is accessed through the candidate profile. In addition, please record your Personal Statement (no longer than 750 words). This should clearly demonstrate how your skills, qualities and experience meet the following essential criteria:
- Broad and deep technical knowledge covering application, data, technology, and security domains in digital cloud (preferred AWS) services with associated experience in designing secure solutions using industry standard tools and techniques is required.
- Demonstrable experience and track-record of delivering successful IT security architecture frameworks, strategies, roadmaps, and solutions in support of organisational programmes and projects, including strong knowledge and working experience identifying and remediating common attack methods.
- Experience providing assurance of 3rd party security architecture designs ensuring adherence to agreed policies, standards, and design patterns and explaining clearly to a wide range of internal and external stakeholders (including senior officials, customers and suppliers) how the decision has been reached with the ability to understand and resolve security related disputes across varying levels of complexity and risk.
- Experience of implementing technical security controls in a variety of projects and organisations with strong knowledge of government and industry data/cyber security legislation, policy, patterns, standards (including but not limited to ISO27001, CSA STAR and NIS Directive).
If we receive a large number of applications, we may complete an initial sift on the first essential criteria. Following the sift of applications there may be a telephone interview as part of the Assessment process, prior to interview.
If you are successful at sift stage you will be invited to an interview which will be held in person in either High Street, Glasgow or Agnes Husband House, Dundee.
If you pass the sift but are not invited to the first round of interviews, you may be invited to a subsequent round. Any queries on this please contact gopal.pandurengan@socialsecurity.gov.scot
Additional Information
This post requires the successful candidate to clear additional National Security Vetting clearance "SC" before a start date can be offered. Further information regarding National Security Vetting clearance can be found here - United Kingdom Security Vetting: Applicant - GOV.UK (www.gov.uk)
The successful candidate will be expected to remain in post for a minimum of 3 years unless successful in gaining promotion to a higher Band or Grade. Social Security Scotland are a Disability Confident Employer. We will consider and implement any reasonable adjustments you may require throughout the recruitment process and during the course of your employment, should you be successful in securing a post.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
