Cyber Security Specialist

Description

Are you a skilled Cyber Security Specialist ready to make a significant impact on digital transformation projects?

We are looking for a Cyber Security Specialist to join our team and provide vital advice and guidance on cyber security and risk management throughout the service lifecycle. This is an exciting opportunity to play a key role in ensuring that new and existing digital services are secure, compliant, and aligned with industry best practices.

Key Responsibilities:

Stay up-to-date with the current cyber threat landscape and industry best practices and standards.
Support initial scoping and risk assessments of change projects.
Interpret security best practices and accreditation requirements to define security needs for each project.
Adapt existing security standards and controls to fit specific change projects and environments.
Conduct threat modelling and risk assessments to proactively identify potential vulnerabilities.
Review high and low-level designs drafted by solution architects, ensuring security considerations are integrated.
Maintain a security design assessment for new services, ensuring all aspects meet security standards.
Perform basic hands-on security assessments (e.g., SSL Labs configuration, CSP evaluator).
Plan and coordinate independent penetration testing.
Provide recommendations for stage gating and go-live decisions, ensuring secure deployment.
Ensure the completion and accuracy of all security-related product delivery evidence.
Recommend improvements for SecOps processes and automation in new systems.

Technical Scope:

Security Products: Email filtering, AV, firewalls, WAFs, MS Defender.
Security Testing: SAST, DAST.
Platforms and Systems: Virtualization (Hyper-V, Windows Server), Enterprise Systems (PKI, AD, SCCM, M365), Application platforms (MS Dynamics, Power Platform), Cloud platforms (Azure).

Skills Required:

Strong experience in Security and Risk Assessment.
In-depth understanding of enterprise-scale digital service provision and security needs.
Demonstrable experience making security contributions in the development of new digital services.
Proven ability to work well within agile project teams, collaborating with internal colleagues and external suppliers.
Ability to take ownership of security aspects from start to finish on projects, ensuring seamless integration.
Strong knowledge sharing and handover skills to effectively transition to SecOps teams.

Desirable Skills:

Experience with MS Dynamics, Power Platform, and Azure.
Experience managing independent testing (scope, pre-test config, triage findings).
MCSE Certified or equivalent experience.
ITIL Certification.

Ready to make an impact?
If you’re passionate about cyber security and want to play a critical role in shaping the security landscape of digital services, we want to hear from you! Join us and help create secure, future-proof solutions.

Apply today to take the next step in your cyber security career!

ASA Recruitment is one of Scotland’s largest independent multi-sector recruitment agencies. We specialise in providing effective tailored solutions for permanent, contract and temporary employment requirements for our Clients and Candidates. We are members of the REC and are ISO certified.

YOU SEEK WE FIND