OT Security Officer - Vulnerabilities
- Employer
- SSE
- Location
- Perth, Scotland, Perth & Kinross / Aberdeen, Scotland / Inverness, Scotland, Highlands
- Salary
- £55200 - £83000 per annum + Performance related bonus
- Closing date
- 13 Aug 2024
- Reference
- 549605
View more
- Discipline
- Systems
- Sector
- Computing & IT
- Job Type
- Business & Non-Engineering
Job Details
SSE has big ambitions to be a leading energy company in a low carbon world. Following our commitment to invest £20.5 billion in low carbon projects to 2027, we have significant growth plans and are well on our way to achieving our ambition to build a world that's more sustainable and inclusive for you, your family, the community you live in and for generations to come.
Join us on our journey to net zero and help us power change.
About the Role
Base Location: Flexible, however our preference is that you will be based in one of our key Scotland sites, which includes but is not limited to:- Perth, Aberdeen, Inverness.
Salary: £55,200 - £83,000 (depending on skills and experience) + performance-related bonus + a range of benefits to support your finances, wellbeing and family.
Working Pattern: Permanent | Full Time | Flexible First options available
This role will lead the assurance and testing of the existing security controls within SSE Transmission to ensure they remain effective. This will include checking adherence to processes, monitoring and reporting on software vulnerabilities and directing audits, inspections and penetration testing. This is an opportunity to be part of a growing security team with a clear mission to protect critical infrastructure and keep the lights on.
Key responsibilities for this role will include:
- Leading and prioritising a programme of audits and security assurance to identify vulnerabilities within existing controls. Including:
- Monitoring the configuration and settings of security devices.
- Reviewing the effectiveness of Identity and Access Management processes and systems.
- Assessment and prioritisation of software vulnerabilities.
- Monitoring and auditing our supply chain to ensure security requirements are included within contracts and that suppliers deliver against these commitments.
- Ensure that all vulnerabilities are triaged, prioritised, tracked/reported and remediated appropriately within documented SLAs.
- Development of processes and standards to monitor and verify the efficacy of security controls across the OT estate.
- Contracting external resources to undertake independent control reviews and audits, including control maturity assessments, supply chain assessments and penetration tests.
What do I need?
To be considered for this role, we would love you to have:
- Experience undertaking control and maturity assessments ideally with the NCSC Cyber Assessment Framework (CAF). An understanding of other control frameworks such as NIST CSF and ISA/IEC62443 is desirable.
- Experience working within an operational technology environment, preferably for a large, regulated utility.
- Understanding of how cyber security threats may disrupt Operators of Essential Services.
- Experience applying security controls within an operational technology environment.
- Experience in a greenfield role where you have produced new tools and process to enhancing the maturity of a new team.
About our BusinessSSE IT underpins the technology needs of all the different businesses that make up the SSE group. From emerging technologies to data and analytics to cyber security - we power SSE's growth and enable it to generate value, while keeping it secure. As a trusted business partner that helps SSE lead in a low carbon world, we are proud of our service. Working for SSE IT is all about equipping SSE for now and the future.
What's in it for you?
We offer an excellent package with 34 days annual leave entitlement. Enhanced maternity/paternity leave, discounted healthcare, salary sacrifice car leasing and much more, view our full benefits package on our careers site.
As an equal opportunity employer we encourage diversity and are committed to creating an inclusive environment for all employees. We encourage applicants from all protected characteristics and commit to providing any reasonable adjustments you need during the application, assessment and upon joining SSE. Search for 'Inclusion & Diversity at SSE' to find out more.
Further actions
All applications should be made online, and I'll be back in touch after the vacancy closing date to let you know the outcome.
If you would like to discuss any working flexibly requirements or adjustments you may require throughout the recruitment and selection process, please contact Laura on 01738 341814.
Before commencing your role with SSE, you'll need to complete our pre-employment screening process. This will consist of a criminality and credit check.
Company
We are driven by our purpose: to provide energy needed today while building a better world of energy for tomorrow.
We are a leading generator of renewable electricity and one of the largest electricity network companies in the UK.
We develop, own and operate low carbon infrastructure to support the zero-carbon transition. This includes onshore and offshore wind, hydro power, electricity transmission and distribution grids, and efficient gas-fired generation, alongside providing energy products and services for businesses, and we have interests across Great Britain and Northern Ireland, Republic of Ireland, Japan, Spain, Portugal, Denmark and Poland.
Our twin focus of practicality and inspiration is a strategy that has seen us through more than 70 years.
We are UK listed, employing 10,000 talented and skilled people and are real Living Wage and Fair Tax Mark accredited.
Because we’re SSE, and we’re for a better world of energy – for everyone.
Website: careers.sse.com
- Website
- http://careers.sse.com/
Get job alerts
Create a job alert and receive personalised job recommendations straight to your inbox.
Create alert