Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead application security initiatives and ensure best practices in secure software development.
- Company: Join ScottishPower, a leader in renewable energy and digital transformation.
- Benefits: Enjoy 36 days annual leave, competitive salary, and unique perks like technology vouchers.
- Why this job: Make a real impact on cybersecurity while working towards a sustainable future.
- Qualifications: Knowledge of secure software development and cybersecurity threats is essential.
- Other info: Flexible working options and a commitment to diversity and inclusion.
The predicted salary is between 48000 - 72000 £ per year.
The Application Cybersecurity Lead will work within the Digital Transformation team, working across all ScottishPower businesses, with the objective of rolling out the Global Application Security Model, to ensure best practices for secure software development. This person will coordinate and collaborate with the global business, defining projects, initiatives and standards, making sure these are adopted across the business.
What you’ll be doing
A key focus of this role will be to implement and evolve the application security model, aligning it to the Global Application Cybersecurity team, ensuring standards and best practices are fully integrated into the Software Development Lifecycle. Within this role, you’ll lead on vulnerability management, promoting the adoption and execution of the global vulnerability management processes and controls. This includes:
- Inventorying of logical components and dependencies of business solutions
- Proactively discovering vulnerabilities
- Coordinating the execution of scanning, pen testing, or in general the activities and services of vulnerability identification
- Vulnerability assessment
- Remediation and mitigation of vulnerabilities
- Solution verification
- Reporting
- Contributing to the evolution of the process for vulnerability management
- Lead security assessments of commercial packages
You’ll look to continually evolve the implementation of cybersecurity, implementing new measures and optimising those already in place. You’ll act as the owner and subject matter expert for the Secure Software Development Standards, Methods and Tools, and has the overall accountability to:
- Work with the global teams to influence, direct and understand the Iberdrola defined standards
- Take overall accountability for the governance, oversight, and adoption of these standards within ScottishPower
- Lead the education, training, and awareness of standards
- Implement governance and control mechanisms to ensure compliance
What we’re looking for
- Detailed knowledge of the Secure Software Development Life Cycle (S-SDLC)
- Knowledge and understanding of cybersecurity threats and associated attack techniques
- Design knowledge: modelling of components, data, interfaces, etc.
- Threat analysis and modelling
- Knowledge of web application security
- Vulnerability discovery techniques and vulnerability lifecycle scanning and management
- Knowledge of application security architecture: segmentation, API Gateway, Encryption, Privileged Account Management, WAF, publishing, event collection tools and alert management
- Stakeholder management, with the ability to work across multiple projects and teams
What’s in it for you
As well as a competitive salary which is reviewed annually, you can also enjoy a number of other benefits. With our pension scheme, we’ll double match your contribution up to a company contribution of 10%. At ScottishPower, we believe it’s the little things we do in life that make a big difference. From helping you look after your family’s wellbeing, save for your future and take personal steps for climate action – our benefits are designed to help you do just that - so that you have everything you need to take care of your world – today and tomorrow. That’s why our benefits include:
- 36 days annual leave
- Holiday purchase – perfect your work/life balance with extra annual leave
- Share Incentive Plan and Sharesave Scheme
- Payroll giving and charity matched funding
- Technology Vouchers – save more and spread the cost of your technology purchases
- Count us in – pledge to reduce carbon emissions and help fight climate change
- Electric Vehicle Schemes – to help you transition to green/clean driving
- Cycle to Work scheme and public transport season ticket loans
- Options to purchase dental insurance, private medical insurance, health cash plan and annual health assessments
- Life Assurance (4x salary)
- Access to ‘nudge’ financial wellbeing support
- Plus shopping, leisure, restaurant and gym discounts, and unique employee deals on travel insurance and more
Why ScottishPower
ScottishPower is part of the Iberdrola Group, one of the world’s largest integrated utility companies and a world leader in wind energy. With a commitment to generate all of our energy from renewable resources and a drive to create the energy infrastructure of the future, we’re at the forefront of the journey to Net Zero and investing over £6m every working day to make this happen. With diverse opportunities across our businesses and a commitment to invest in our own internal talent, ScottishPower can offer people real career opportunities that meet personal and professional goals, in a global organisation. Inclusion, diversity, and a social purpose are at the heart of everything we do. Together with our values, they bring us together into a stronger, more sustainable business with direct links to the communities we serve. It takes all kinds of people to build a large-scale business like ours, so whatever your background, you’ll fit right in. ScottishPower is committed to providing reasonable support or adjustments in our recruiting processes for candidates with disabilities, long term conditions, mental health conditions, or who are neurodivergent or require pregnancy-related support.
Application Cybersecurity Lead in Glasgow employer: Iberdrola SA
Contact Detail:
Iberdrola SA Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Application Cybersecurity Lead in Glasgow
✨Tip Number 1
Network like a pro! Reach out to current employees at ScottishPower on LinkedIn or through mutual connections. A friendly chat can give you insider info and might just get your foot in the door.
✨Tip Number 2
Prepare for the interview by brushing up on your knowledge of the Secure Software Development Life Cycle (S-SDLC). Be ready to discuss how you can implement and evolve application security models – show them you’re the expert they need!
✨Tip Number 3
Don’t forget to showcase your soft skills! Stakeholder management is key for this role, so be prepared to share examples of how you've successfully collaborated across teams in the past.
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen. Plus, it shows you’re genuinely interested in joining the team at ScottishPower.
We think you need these skills to ace Application Cybersecurity Lead in Glasgow
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Application Cybersecurity Lead role. Highlight your experience with Secure Software Development Life Cycle (S-SDLC) and any relevant cybersecurity projects you've worked on. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about cybersecurity and how you can contribute to our Digital Transformation team. Be sure to mention specific experiences that relate to the job description.
Showcase Your Knowledge: In your application, don’t shy away from showcasing your knowledge of cybersecurity threats and vulnerability management. We love candidates who can demonstrate their understanding of the field and how they can help us evolve our application security model.
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re keen on joining our team!
How to prepare for a job interview at Iberdrola SA
✨Know Your Cybersecurity Basics
Make sure you brush up on your knowledge of the Secure Software Development Life Cycle (S-SDLC) and common cybersecurity threats. Being able to discuss these topics confidently will show that you're not just familiar with the theory but can apply it in practice.
✨Showcase Your Vulnerability Management Skills
Prepare to discuss your experience with vulnerability management processes. Be ready to share specific examples of how you've identified, assessed, and remediated vulnerabilities in past projects. This will demonstrate your hands-on expertise in the field.
✨Understand the Company’s Standards
Familiarise yourself with ScottishPower's approach to application security and their global standards. Showing that you understand their specific needs and how you can contribute to their goals will set you apart from other candidates.
✨Engage with Stakeholders
Highlight your experience in stakeholder management during the interview. Discuss how you've successfully collaborated across teams and projects, as this role requires strong communication skills and the ability to influence others.
