At a Glance
- Tasks: Join a dynamic team to assess and manage cyber security risks in digital services.
- Company: Public sector client focused on innovative cyber security solutions.
- Benefits: Competitive day rate, hybrid work model, and opportunity for professional growth.
- Other info: Must be onsite once a week in Edinburgh; BPSS clearance required.
- Why this job: Make a real impact on digital security while collaborating with diverse teams.
- Qualifications: Experience in risk assessment and understanding of digital service processes.
Harvey Nash's Public Sector Client are looking to bring in a contract Cyber Security Risk Analyst to their cyber security team and work closely across with the digital department and with business process owners. Note that you must be onsite once per week in Edinburgh. You will be expected to get up to speed with core business priorities and digital services and contribute to the development and population of new cost-effective, objective, and where possible, automated risk management processes. The goal is to support data-driven security decisions through maintaining accurate and up-to-date risk information. This includes supporting the development of risk management tools and integration with relevant data sources. You will collaborate closely with product owners, architects, developers, and engineers, as well as security consultants, operations teams, and senior security leadership.
Key Responsibilities
- Maintain an awareness of current industry risk management standards and best practices to support gathering accurate detailed data related to risk.
- Conduct assessments of risks related to projects, changes, and digital services - with a focus on digital risks - through structured conversations and checking system configuration reports.
- Contribute to the development and improvement of risk management processes and ensure risk data is accurately captured and maintained.
- Interpret outputs from assurance activities (e.g., vulnerability scans, audits, or penetration tests) and incorporate findings into the risk management process.
- Support generations of clear, prioritised recommendations for risk treatment and mitigation and tracker application of treatments.
- Support the design and enhancement of risk data models and tools to enable consistent, efficient risk tracking - such as PowerBI dashboards or similar.
- Work collaboratively across business and technical teams with ability to bridge business and technical language differences and priorities.
Technical Scope
- Office suite (Excel, Word, etc...)
- Cloud platforms (Azure)
- M365 (e.g. Microsoft form)
- Power Platform (desirable but not required)
Skills Required
- Risk Assessment or Audit with Digital / Cyber experience.
- Understanding of and experience of business processes mapping and documenting digital service reliance.
- Ability to work well in an agile environment with internal colleagues and suppliers.
- Ability to self-start and see through deadlines, improvements and benefits realisation.
- Ability to explain context and goals with colleagues and collaborate with business and technical colleagues.
Desirable Skills
- Risk Assessment or Audit with Digital / Cyber experience.
- Understanding of and experience of business processes mapping and documenting digital service reliance.
- Ability to work well in an agile environment with internal colleagues and suppliers.
- Ability to self-start and see through deadlines, improvements and benefits realisation.
- Ability to explain context and goals with colleagues and collaborate with business and technical colleagues.
Please note that you must be eligible for BPSS clearance to commence this contract.
Cyber Security Analyst - Risk in Edinburgh employer: Harvey Nash
Join a forward-thinking public sector organisation in Edinburgh as a Cyber Security Risk Analyst, where you will play a pivotal role in enhancing digital security measures. With a strong emphasis on collaboration and innovation, the company fosters a supportive work culture that values employee growth through continuous learning and development opportunities. Enjoy the unique advantage of working in a hybrid environment, allowing for flexibility while being part of a dedicated team committed to making data-driven security decisions.
StudySmarter Expert Advice🤫
We think this is how you could land Cyber Security Analyst - Risk in Edinburgh
✨Tip Number 1
Network like a pro! Reach out to folks in the cyber security field, especially those already working in the public sector. Attend meetups or webinars, and don’t be shy about asking for informational interviews. You never know who might have the inside scoop on job openings!
✨Tip Number 2
Show off your skills! Create a portfolio or a personal project that highlights your risk assessment abilities. This could be a mock risk management tool or a case study of a past project. It’s a great way to demonstrate your expertise beyond just your CV.
✨Tip Number 3
Prepare for interviews by brushing up on your knowledge of current industry standards and best practices in risk management. Be ready to discuss how you would approach risk assessments and collaborate with technical teams. Confidence is key!
✨Tip Number 4
Don’t forget to apply through our website! We’ve got loads of opportunities that might not be advertised elsewhere. Plus, it’s a straightforward way to get your application in front of the right people. Let’s land that job together!
We think you need these skills to ace Cyber Security Analyst - Risk in Edinburgh
Some tips for your application 🫡
Tailor Your CV:Make sure your CV speaks directly to the Cyber Security Risk Analyst role. Highlight your experience with risk assessments and digital services, and don’t forget to mention any relevant tools like PowerBI or Azure.
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you’re the perfect fit for this role. Mention your understanding of risk management standards and how you can contribute to the team’s goals.
Showcase Your Collaboration Skills:Since this role involves working closely with various teams, make sure to highlight your ability to bridge business and technical language differences. Share examples of past collaborations that led to successful outcomes.
Apply Through Our Website:We encourage you to apply through our website for a smoother application process. It’s the best way for us to receive your application and get you in front of the right people quickly!
How to prepare for a job interview at Harvey Nash
✨Know Your Cyber Security Basics
Make sure you brush up on the latest industry standards and best practices in cyber security risk management. Being able to discuss current trends and how they relate to the role will show that you're not just knowledgeable but also genuinely interested in the field.
✨Prepare for Technical Questions
Expect questions about risk assessments, vulnerability scans, and digital service reliance. Be ready to explain your experience with these processes and how you've applied them in past roles. Use specific examples to illustrate your points.
✨Show Your Collaborative Spirit
This role requires working closely with various teams, so be prepared to discuss how you've successfully collaborated in the past. Highlight any experiences where you bridged gaps between technical and business teams, as this will demonstrate your ability to communicate effectively across different areas.
✨Demonstrate Your Problem-Solving Skills
Be ready to talk about how you've tackled challenges in previous roles, especially those related to risk management. Think of specific instances where you identified a problem, proposed a solution, and implemented it successfully. This will showcase your proactive approach and ability to self-start.
