Role Overview
Education Scotland seeks a Cyber Security professional to support the implementation of an ambitious Information and Cyber Security programme. The candidate will work with the Lead Cyber Security Officer, the Technical Delivery Team and Digital Services to ensure the confidentiality, integrity and availability of corporate digital systems, including Glow, the national Digital Learning platform for schools which serves over one million users.
Responsibilities
- Provide advice and guidance on security strategies to manage identified risks and ensure adoption and adherence to standards.
- Lead penetration testing, security risk assessments and business impact analysis on information systems.
- Interpret information assurance and security policies and apply these to manage risks.
- Advise on adoption of information assurance architectures, strategies, policies, standards and guidelines.
- Identify threats and manage risk.
- Design, procure and implement security projects.
- Oversee third‑party development, delivery and monitoring of security awareness campaigns.
- Provide consultancy on projects.
- Develop information security policies, procedures and guidelines and manage compliance.
- Support and develop the information security management system – incident response.
- Lead and mentor junior members of security staff.
Technical & Professional Skills
- Information risk assessment and risk management
- Applied security capability
- Protective security
- Threat understanding
Experience
- Knowledge of Information Security standards such as ISO/IEC 27001, NIST CSF, and NCSC CAF with proven ability to interpret and apply these standards in organisational contexts.
- Understanding of internal and external information security risks and the administrative, physical and technical controls to mitigate them effectively.
- Demonstrable experience providing information security advice and leadership in the planning, execution and management of information security projects, ensuring alignment with organisational goals and industry best practices.
- Knowledge of current legislation, regulations and standards relevant to information security and privacy, including the Data Protection Act 2018 (DPA 2018) and the General Data Protection Regulation (GDPR), and ability to interpret legal requirements and integrate compliance measures into operational frameworks.
Behaviours
- Leadership (Level 3)
- Changing and Improving (Level 3)
- Communicating and Influencing (Level 3)
- Developing Self and Others (Level 3)
Benefits
Government Digital and Data (GDD) Pay Supplement
This role attracts a £4,000 GDD pay supplement after a 3‑month competency qualifying period. The pay supplement is temporary and subject to regular review.
Location
The position can be based in Glasgow, Dundee or Livingston, with hybrid working in line with current Scottish Government policies.
#J-18808-Ljbffr”, “datePosted”: “2026-05-20”, “hiringOrganization”: { “@type”: “Organization”, “name”: “The Scottish Government”, “sameAs”: “https://uk.whatjobs.com/pub_api__cpl__436828491__4861?utm_campaign=publisher&utm_medium=api&utm_source=4861&geoID=12335” }, “jobLocation”: { “@type”: “Place”, “address”: { “@type”: “PostalAddress”, “addressLocality”: “Glasgow” } } }Role Overview
Education Scotland seeks a Cyber Security professional to support the implementation of an ambitious Information and Cyber Security programme. The candidate will work with the Lead Cyber Security Officer, the Technical Delivery Team and Digital Services to ensure the confidentiality, integrity and availability of corporate digital systems, including Glow, the national Digital Learning platform for schools which serves over one million users.
Responsibilities
- Provide advice and guidance on security strategies to manage identified risks and ensure adoption and adherence to standards.
- Lead penetration testing, security risk assessments and business impact analysis on information systems.
- Interpret information assurance and security policies and apply these to manage risks.
- Advise on adoption of information assurance architectures, strategies, policies, standards and guidelines.
- Identify threats and manage risk.
- Design, procure and implement security projects.
- Oversee third‑party development, delivery and monitoring of security awareness campaigns.
- Provide consultancy on projects.
- Develop information security policies, procedures and guidelines and manage compliance.
- Support and develop the information security management system – incident response.
- Lead and mentor junior members of security staff.
Technical & Professional Skills
- Information risk assessment and risk management
- Applied security capability
- Protective security
- Threat understanding
Experience
- Knowledge of Information Security standards such as ISO/IEC 27001, NIST CSF, and NCSC CAF with proven ability to interpret and apply these standards in organisational contexts.
- Understanding of internal and external information security risks and the administrative, physical and technical controls to mitigate them effectively.
- Demonstrable experience providing information security advice and leadership in the planning, execution and management of information security projects, ensuring alignment with organisational goals and industry best practices.
- Knowledge of current legislation, regulations and standards relevant to information security and privacy, including the Data Protection Act 2018 (DPA 2018) and the General Data Protection Regulation (GDPR), and ability to interpret legal requirements and integrate compliance measures into operational frameworks.
Behaviours
- Leadership (Level 3)
- Changing and Improving (Level 3)
- Communicating and Influencing (Level 3)
- Developing Self and Others (Level 3)
Benefits
Government Digital and Data (GDD) Pay Supplement
This role attracts a £4,000 GDD pay supplement after a 3‑month competency qualifying period. The pay supplement is temporary and subject to regular review.
Location
The position can be based in Glasgow, Dundee or Livingston, with hybrid working in line with current Scottish Government policies.
#J-18808-Ljbffr…