Job Description
Cyber Security Specialist
12-month contract£500-550 per dayOutside IR35 Hybrid - Edinburgh (1-2 days per week onsite)
We are currently recruiting for an experienced Cyber Security Specialist to join a busy digital transformation environment on a 12-month contract. This role will play a key part in ensuring robust cyber security practices are embedded across new and evolving digital services.
Working as part of a dedicated cyber security function, you will provide specialist advice and guidance across the full service lifecycle, supporting projects from initial scoping through to go-live and ongoing operational readiness.
Key responsibilities:
* Provide cyber security advice and guidance to digital and transformation projects throughout their lifecycle.
* Support early-stage scoping and risk assessment activities for new and evolving services.
* Interpret security policies, standards, and accreditation requirements to define appropriate controls.
* Conduct threat modelling and risk assessments to identify and mitigate vulnerabilities.
* Review solution architecture and detailed designs to ensure alignment with security requirements.
* Maintain and document security design assessments for new services.
* Carry out hands-on security checks (e.g. configuration reviews), and coordinate independent penetration testing.
* Provide recommendations to support stage gate reviews and go-live decisions.
* Own and manage all security-related delivery evidence required for project assurance.
* Contribute to the development of secure operational processes, including SecOps practices and automation.
Key requirements:
* Strong experience in cyber security and risk assessment within enterprise-scale digital environments.
* Proven track record of contributing to the secure delivery of new digital services.
* Good understanding of current cyber threat landscape, security standards, and best practice.
* Experience working within agile delivery teams alongside internal stakeholders and third-party suppliers.
* Ability to take ownership of security deliverables and drive them through to completion.
* Strong communication skills, with the ability to translate technical risks and controls to non-technical stakeholders.
* Technical experience across:
* Enterprise security tooling such as email filtering, antivirus, firewalls, WAF, and Microsoft Defender
* Security testing approaches including SAST and DAST
* Enterprise platforms including Active Directory, PKI, SCCM, Microsoft 365, and Azure (including Entra and Intune)
* Virtualisation and operating systems, including Windows Server and Hyper-V
* Cloud environments, particularly Microsoft Azure
* Application platforms such as Microsoft Dynamics and Power Platform
Desirable experience:
* Experience working with Azure, Microsoft Dynamics, and Power Platform environments
* Experience managing external penetration testing activities
* Relevant certifications (e.g. MCSE, ITIL) or equivalent experience
* This is an excellent opportunity to join a high-profile programme, contributing to secure and resilient service delivery within a complex and evolving environment.
* For more information or to express interest, please get in touch.
This role requires someone onsite 1-2 days per week in the Edinburgh office.
Guidant, Carbon60, Lorien & SRG - The Impellam Group Portfolio are acting as an Employment Business in relation to this vacancy.