Senior Cyber Security Analyst

Are you interested in safeguarding Scotland’s digital future whilst supporting Agriculture and Rural Economies?

The Agriculture and Rural Economy (ARE) Directorate works to support Scotland's sustainable economic growth, especially in the rural economy, making the most of Scotland’s environment, natural assets and advantages - its people, landscapes, biodiversity, agriculture, food & drink and animal welfare.

ARE Digital & Data (AD&D) is responsible for developing and maintaining the Information Technology systems required by ARE to deliver their Business Services. AD&D covers the full spectrum of IT disciplines required to deliver and maintain the IT Services and complex IT Applications required by ARE. Most AD&D staff are IT professionals and members of the BCS RoleModelplus scheme. RoleModelplus allows users to identify their gaps, create and update their professional development plans and work towards their goals and objectives. You do not need to be a member of BCS to take advantage of RoleModelplus. The Architecture Office and Cyber Security & Risk team are part of the Digital Strategy and Governance Branch.

The Branch is responsible for all areas of Information Security to support a complex business area. Security is there to assist the department function safely in a fast moving cyber world. Security is responsible for the selection, design, justification, implementation and operation of controls and management strategies to maintain the security, confidentiality, integrity, availability, accountability and relevant compliance of information systems with legislation, regulation and relevant standards.

Cyber Security & Risk are responsible for the overall Information security for ARE. The capability covers Cyber Security, Defence, Vulnerabilities, and Cyber Risk. This is an exciting opportunity for a Senior Cyber Security Analyst to be responsible for protecting the confidentiality, integrity and availability of information assets and systems used within ARE, through application of their Cyber Security knowledge and close working with the wider teams within AD&D. In addition, this role will feed in to small to medium size projects, and the continual service improvement process within the team and wider business.

• Develop security operating procedures for use across multiple information systems or maintain compliance with them.
• Apply routine security procedures appropriate to the role, such as patching, managing access rights, malware protection, or vulnerability testing with autonomy.
• Develop and test rules for detecting violations of security operating procedures with autonomy.
• Follow documented principles and guidelines for incident management, incident investigation, and response activities.
• Advise others on incident management, incident investigation, and response processes. Able to understand and articulate the impact of vulnerabilities on existing and future designs and systems, and able to provide insight into how these can be exploited.
• Will include mentoring of less experienced Cyber Security Analysts within the team.