At a Glance
- Tasks: Provide expert advice on cyber security for digital transformation projects.
- Company: Join a leading public sector organisation in Edinburgh with a hybrid work model.
- Benefits: Competitive day rate, flexible working, and opportunities for professional growth.
- Other info: Work in an agile team and enjoy excellent career development opportunities.
- Why this job: Make a real impact by safeguarding digital services and enhancing security measures.
- Qualifications: Experience in security and risk assessment, with a strong understanding of enterprise digital services.
Harvey Nash's Client have a requirement for within their cyber security team, you will be providing advice and guidance to digital transformation projects. Activities will cover cyber security and risk throughout service lifecycle.
Key Responsibilities
- Be aware of the current cyber threat landscape and industry best practices and standards.
- Support initial scoping and risk assessment of a change project.
- Interpret security best practice and accreditation requirements to determine security requirements.
- Adapt existing cyber security standards and controls to fit specific change projects.
- Carry out threat modelling and risk assessments.
- Review high- and low-level designs drafted by solution architects.
- Maintain a security design assessment for new services.
- Carry out basic hands-on security assessments (e.g. SSL Labs config or CSP evaluator, not including full pen testing).
- Plan and co-ordinate independent pen testing.
- Provide recommendations for stage gating and go live decisions.
- Own completion and accuracy of all security related product delivery evidence.
- Provide recommendations for SecOps processes and automation for new systems.
Technical scope
- Security products (email filtering, AV, firewalls, WAFs, MS Defender).
- Security Testing (SAST, DAST).
- Virtualisation platforms and operating systems, including Hyper-V and Windows Server.
- Enterprise Systems (email, PKI, AD, GP, SCCM, Azure incl. Entra and Intune, M365).
- Application platforms (MS Dynamics, Power Platform).
- Cloud platforms (Azure).
Skills Required
- Security and Risk assessment.
- In depth understanding of and experience with enterprise scale digital service provision.
- Demonstrable recent record making security contribution during the development of a new digital service.
- Ability to work well in an agile project team with internal colleagues and suppliers.
- Ability to self-start, accept ownership and see through security aspects of project start to finish.
- Ability to share knowledge and experience with colleagues and effectively hand over to SecOps.
Desirable Skills
- Experience with MS Dynamics, Power Platform and Azure.
- Experience managing independent testing (scope, pre-test config, triage findings).
- Experience with MCSE Certified or equivalent experience.
- ITIL certification.
Please note that you must be eligible for BPSS and Standard Disclosure Clearance to commence this post.
Locations
Cyber Security Specialist in Edinburgh, Scotland employer: Harvey Nash
As a Cyber Security Specialist with our esteemed public sector client in Edinburgh, you will thrive in a dynamic and supportive work environment that prioritises employee growth and development. The company fosters a culture of collaboration and innovation, offering competitive day rates and the flexibility of hybrid working arrangements, ensuring you can balance your professional and personal life while contributing to meaningful digital transformation projects.
StudySmarter Expert Advice🤫
We think this is how you could land Cyber Security Specialist in Edinburgh, Scotland
✨Tip Number 1
Network like a pro! Reach out to folks in the cyber security field on LinkedIn or at local meetups. We can’t stress enough how valuable personal connections can be when it comes to landing that dream job.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your past projects, especially those related to cyber security and risk assessments. We want to see what you can do, so make it easy for potential employers to see your expertise.
✨Tip Number 3
Prepare for interviews by brushing up on current cyber threats and best practices. We recommend doing mock interviews with friends or using online platforms to get comfortable discussing your knowledge and experience.
✨Tip Number 4
Don’t forget to apply through our website! We’ve got loads of opportunities waiting for you, and applying directly can sometimes give you an edge. Let’s get you into that cyber security role!
We think you need these skills to ace Cyber Security Specialist in Edinburgh, Scotland
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Cyber Security Specialist role. Highlight your experience with security assessments, risk management, and any relevant projects you've worked on. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about cyber security and how your background makes you a great fit for our team. Don’t forget to mention any specific experiences that relate to the job description.
Showcase Relevant Skills:Be sure to showcase your skills in security products and testing methods. Mention your familiarity with tools like MS Dynamics, Azure, and any certifications you hold. We love seeing candidates who are proactive about their professional development!
Apply Through Our Website:We encourage you to apply through our website for a smoother application process. It helps us keep track of your application and ensures you don’t miss out on any important updates. Plus, it’s super easy!
How to prepare for a job interview at Harvey Nash
✨Know Your Cyber Security Basics
Make sure you brush up on the current cyber threat landscape and industry best practices. Familiarise yourself with key concepts like risk assessments and security standards, as these will likely come up during your interview.
✨Showcase Your Experience
Be ready to discuss specific projects where you've made a security contribution. Highlight your experience with enterprise-scale digital services and how you've adapted security standards for different projects.
✨Prepare for Technical Questions
Expect questions about security products and testing methods. Review your knowledge of tools like SSL Labs, SAST, DAST, and any experience you have with Azure or MS Dynamics. Being able to speak confidently about these will impress your interviewers.
✨Demonstrate Team Collaboration Skills
Since you'll be working in an agile project team, be prepared to discuss how you collaborate with colleagues and suppliers. Share examples of how you've effectively communicated security needs and handed over knowledge to SecOps teams.
