Job Overview
Location: Secure Room, Inverness (On-site)
Working Hours: Mon – Fri 9.00am – 5.30pm
Key Responsibilities
- Security Architecture & Cyber TDA Leadership
- Act as Cyber Technical Design Authority (TDA) for the account
- Review and approve solution architectures
- Define security reference architectures and patterns
- Lead design governance forums
- Provide security design sign‑off and manage exceptions
- Embed security‑by‑design in all solutions
- Advise on IDAM, network, cloud and infrastructure security
Governance, Risk & Compliance (GRC)
- Develop and maintain security policies aligned to ISO 27001 and Cyber Essentials Plus
- Manage Security Risk Register, controls, RACI and RBAC model
- Lead risk identification, assessment, treatment and reporting
- Support audits and assurance activities
- Contribute to Disaster Recovery, Business Continuity and security incident management, covering tracking, remediation, RCA, and reporting
- Conduct assurance activities to validate control effectiveness
- Produce regular reporting packs covering risk, compliance, audits, and incidents
- Provide and update relevant Security Training material for account personnel
Vulnerability Management
- Review and triage vulnerability scans and penetration test reports
- Prioritise vulnerabilities based on risk, impact, and contractual obligations
- Coordinate remediation across technical teams, ensuring clear ownership and timely closure
- Track vulnerabilities to distinguish new vs. existing issues
- Provide remediation guidance and consultancy to stakeholders
- Deliver reporting on remediation progress for internal and client consumption
Skills & Experience
- Strong GRC and risk management experience
- Familiarity with ISO 27001, GDPR, NIST, and ITIL
- Experience as Security Architect or TDA
- Knowledge of Zero Trust and cloud security
- Strong stakeholder communication skills
- Ability to work in a secure, restricted‑access environment
Additional Requirements
- Based onsite in the Highlands
- Eligibility for BPSS security clearance
Baseline Personnel Security Standard (BPSS)
To be successfully appointed to this role you will need to undergo Baseline Personnel Security Standard checks. There are no nationality or residency restrictions, although if you have resided outside of the UK within the last 3 years, further checks may be required.
Disability Confident Employer
Capgemini is proud to be a Disability Confident Employer (Level 2) under the UK Government’s Disability Confident scheme.
#J-18808-Ljbffr…
