At a Glance
- Tasks: Join our Cyber Security Team to protect data and services using Microsoft security tools.
- Company: Skills Development Scotland, a leading national skills agency.
- Benefits: Flexible working, competitive salary, and a focus on wellbeing and development.
- Other info: Hybrid working model with opportunities for career growth and continuous improvement.
- Why this job: Make a real impact on cyber security for thousands of users across Scotland.
- Qualifications: Experience with Microsoft security technologies and a degree in cyber security or equivalent.
The predicted salary is between 40000 - 50000 £ per year.
The Cyber Security Team sits within Enterprise Information Services (EIS), part of the Enabling Services Directorate. We provide cyber security services to SDS and its shared service partners: Scottish Enterprise, Highlands and Islands Enterprise, and South of Scotland Enterprise, supporting around 3,800 users. The team comprises two core functions: Security Operations and Security Operations Engineering, reporting to the Information Security Manager. This role sits within the SecOps engineering function, working hands‑on with the Microsoft security tooling stack to protect our people, data, and services.
What You’ll Be Doing
This is a hands‑on security engineering role. You’ll be responsible for configuring, optimising, and continuously improving our Microsoft security tooling stack including Sentinel, Defender Suite, Entra ID, Intune, Purview, and Forcepoint to mature the cyber security posture across all four partner organisations. You’ll engineer, review, and tune detection analytics rules in Sentinel, onboard new log sources, and develop automated security workflows using playbooks and Logic Apps. While our managed Security Operations Centre (SOC) provider supports the creation and tuning of analytics, you’ll provide the in‑house technical capability to understand how detections work, validate and optimise them, and perform gap analysis so we have independent assurance that coverage is effective and efficient. You’ll assess detection coverage against frameworks like MITRE ATT&CK, identify gaps, and build the content to close them. You’ll own security‑related changes through the Change Advisory Board (CAB) process, produce supporting technical documentation, and test and validate configurations to make sure they perform as intended. Working alongside our Security Operations Engineer, you’ll support security programme delivery aligned to tooling maturity and provide direct operational resilience to the security operations function. You’ll act as the primary technical interface with our managed SOC provider and Microsoft, challenging supplier performance and driving continuous service improvement. You’ll also contribute to a security tooling roadmap, maintain an improvement backlog, and help maximise the return on our Microsoft E5 licence investment. Your work will directly strengthen our Cyber Essentials Plus accreditation and improve the security posture for thousands of users across Scotland.
What We’re Looking For
You’ll have solid experience in using Microsoft security and compliance technologies, including Sentinel, Defender Suite, Entra ID, Intune, and Purview. You’ll also understand how to implement security baselines aligned to Centre for Internet Security (CIS) benchmarks, which are industry best practice standards for securing IT systems. You’ll be confident in raising and presenting technical changes at the Change Advisory Board (CAB), producing clear technical documentation, and troubleshooting when configurations do not perform as expected. You’ll know how to work with external suppliers and hold them to agreed standards and deliverables. Experience in Sentinel automation, mapping detections to the MITRE ATT&CK framework, or improving an organisation’s Secure Score would be advantageous. A degree‑level qualification in cyber security or equivalent practical experience is essential. A recognised professional certification such as CISSP, CISM, Microsoft Certified: Security Operations Analyst Associate (SC‑200), or Microsoft 365 Security Administrator (MS‑500) would be beneficial.
About SDS
Skills Development Scotland (SDS) is Scotland’s national skills agency, focused on driving productivity and inclusive economic growth by investing in skills and supporting people and businesses to reach their full potential. Through deep partnership working, expert insights and innovative solutions, SDS helps address Scotland’s skills and labour‑market challenges, ensuring employers can access the talent they need while individuals gain opportunities to develop and thrive. SDS is guided by strong organisational values, placing customers at the heart of everything it does and fostering a culture of collaboration, continuous improvement and respect.
Our Values
- We put the needs of our customers at the heart of all we do
- We make use of our combined strengths and expertise to deliver the best outcomes
- We demonstrate self‑motivation, personal responsibility, and respect
- We continually improve to achieve excellence
Why You’ll Love Working Here
SDS is an award‑winning, equal opportunities and fair work employer where our culture is driven by our people. The values we share guide how we support our customers—the people of Scotland—and how we support one another. With progressive benefits, flexible ways of working, and a strong focus on wellbeing, engagement, and development, we’re proud to be a great place to work.
Where You’ll be Working
This role can be located at any of our SDS locations, although occasional travel to Glasgow offices will be required. SDS are working to a hybrid working model, therefore the successful applicant is expected to work from both home and an SDS workplace on a regular basis.
How to Apply
The closing date to submit your application is Sunday 14th June 2026. Interviews are due to take place on 16th and 17th July 2026. If this opportunity excites you and you would like to discuss the role in more detail to help you decide if it is right for you, please contact Donna McWilliam, Information Security Manager at donna.mcwilliam@sds.co.uk.
One Last (but very important) Thing
At SDS we are committed to equality, diversity and inclusion. If you've got the right skills for the job, we want to hear from you. We encourage applications from the right candidates regardless of age, disability, gender identity, sexual orientation, religion, belief or race. Therefore, while we want to know about your relevant skills and experience, please avoid disclosing any identifying characteristics. To help you prepare and perform at your best, SDS shares interview questions with all candidates in advance. This removes unnecessary barriers, supports those who benefit from additional preparation time, and helps ensure a fair and transparent recruitment process.
Cyber Security Operations Analyst in Glasgow employer: Skills Development Scotland
At Skills Development Scotland (SDS), we pride ourselves on being an award-winning employer that champions equality, diversity, and inclusion. Our collaborative work culture fosters continuous improvement and personal development, offering progressive benefits and flexible working arrangements to support your wellbeing. Join us in making a meaningful impact across Scotland while advancing your career in a supportive environment that values your contributions.
Contact Details:
Skills Development Scotland Recruitment Team
StudySmarter Expert Advice🤫
We think this is how you could land Cyber Security Operations Analyst in Glasgow
✨Get Involved in the Cybersecurity Community
Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!
✨Show Off Your Skills with Capture the Flag Competitions
Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including Skills Development Scotland, love seeing candidates who actively engage in these challenges.
✨Tailor Your Online Presence
Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!
✨Apply Directly Through Skills Development Scotland
Don’t forget to head straight to our website and check out any openings for cybersecurity roles at Skills Development Scotland. Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.
We think you need these skills to ace Cyber Security Operations Analyst in Glasgow
Some tips for your application 🫡
Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!
Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!
Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at Skills Development Scotland insight into your practical problem-solving abilities and makes your application memorable.
Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to Skills Development Scotland that you’re committed to staying ahead in the game.
How to prepare for a job interview at Skills Development Scotland
✨Sharpen Your Technical Skills
For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.
✨Prepare for Scenario-Based Questions
Expect the interviewers at Skills Development Scotland to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.
✨Highlight Your Certifications
Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at Skills Development Scotland.
✨Show Your Passion for Cybersecurity
Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.
