Overview
hackajob Glasgow, Scotland, United Kingdom
Application Cybersecurity Lead
Location: ScottishPower HQ, Glasgow. Flexible & Hybrid Working.
The Application Cybersecurity Lead will work within the Digital Transformation team, across all ScottishPower businesses, with the objective of rolling out the Global Application Security Model to ensure best practices for secure software development. The role coordinates and collaborates with the global business, defining projects, initiatives and standards, and ensuring they are adopted across the business.
What You’ll Be Doing
A key focus of this role will be to implement and evolve the application security model, aligning it to the Global Application Cybersecurity team, ensuring standards and best practices are fully integrated into the Software Development Lifecycle.
Role
Within this role, you’ll lead on vulnerability management, promoting the adoption and execution of the global vulnerability management processes and controls. This includes:
* Inventorying of logical components and dependencies of business solutions
* Proactively discovering vulnerabilities
* Coordinating the execution of scanning, pen testing, or the activities and services of vulnerability identification
* Vulnerability assessment
* Remediation and mitigation of vulnerabilities
* Solution verification
* Reporting
* Contributing to the evolution of the process for vulnerability management
* Lead security assessments of commercial packages
You'll continually evolve the implementation of cybersecurity, implementing new measures and optimising those already in place. You’ll act as the owner and subject matter expert for the Secure Software Development Standards, methods and tools, with overall accountability to:
* Work with global teams to influence, direct and understand Iberdrola defined standards
* Take overall accountability for governance, oversight and adoption of these standards within ScottishPower
* Lead the education, training, and awareness of standards
* Implement governance and control mechanisms to ensure compliance
What We’re Looking For
* Detailed knowledge of the Secure Software Development Life Cycle (S-SDLC)
* Knowledge and understanding of cybersecurity threats and associated attack techniques
* Design knowledge: modelling of components, data, interfaces, etc.
* Threat analysis and modelling
* Knowledge of web application security
* Vulnerability discovery techniques and vulnerability lifecycle scanning and management
* Knowledge of application security architecture: segmentation, API Gateway, Encryption, Privileged Account Management, WAF, publishing, event collection tools and alert management
* Stakeholder management, with the ability to work across multiple projects and teams
What’s In It For You
As well as a competitive salary which is reviewed annually, you can enjoy a number of benefits. With our pension scheme, we’ll double match your contribution up to a company contribution of 10%.
Benefits
ScottishPower benefits include:
* 36 days annual leave
* Holiday purchase - extra annual leave
* Share Incentive Plan and Sharesave Scheme
* Payroll giving and charity matched funding
* Technology Vouchers
* Count us in - pledge to reduce carbon emissions
* Electric Vehicle Schemes
* Cycle to Work scheme and public transport season ticket loans
* Options to purchase dental, private medical insurance, health cash plan and annual health assessments
* Life Assurance (4x salary)
* Access to financial wellbeing support
* Discounts on shopping, leisure, restaurant, gym, travel insurance and more
Why ScottishPower
ScottishPower is part of the Iberdrola Group, a world leader in wind energy, committed to renewable energy and Net Zero. We invest in internal talent and offer diverse opportunities across our businesses in a global organisation. We are committed to inclusion and providing reasonable adjustments in recruiting for candidates with disabilities, long-term conditions, mental health conditions, neurodivergence, or pregnancy-related support.
Seniority level
* Mid-Senior level
Employment type
* Full-time
Job function
* Information Technology
* Industries: Software Development
Referrals increase your chances of interviewing at hackajob by 2x. Get notified about new Application Lead jobs in Glasgow, Scotland, United Kingdom.
#J-18808-Ljbffr