Security Operations Manager | Hybrid Working with Glasgow or Dundee Base Location | £57,141 - £71,243 £5,000 DDaT Pay Supplement after 3 month qualifying period | Full or Part Time Hours | Flexi- time | 25 Days annual leave (increasing to 30 after 4 years’ service) plus 11.5 Public and Privilege | Contributory Pension Scheme (employee contributions 5.45% employer contributions 27.1 - 27.9%) We are currently seeking applications for a Security Operations Centre (SOC) Manager within our Cyber Security Team based in Glasgow or Dundee. This is an exciting opportunity to lead a team of Security Engineers who design, build and run our Security Operations Centre. You will own and operate the protective monitoring and threat hunting systems which keep our cloud systems safe. This role sits within the Digital Risk & Security team of the Chief Digital Office. The Digital Risk and Security branch comprises 4 areas; security risk and assurance, security architecture, cyber operations and protective monitoring, and security engineering. As the Security Operations Centre (SOC) Manager you’ll oversee digital security activities, provide guidance during cyber incidents and provide support to stakeholders to ensure the business is secure and compliant. You’ll also lead, coach and develop a talented team of Cyber Security Engineers who design, build and run the protective monitoring and threat hunting systems which keep our cloud systems safe. What D o W e O ffer Y ou? We offer meaningful and engaging careers, a collaborative culture, and support for your career goals, all while nurturing a healthy work-life balance. We provide an employment package that attracts, develops, and retains only the best talent. • C1 salary between £57,141 - £71,243 plus a £5000 annual Digital, Data and Technology (DDaT) pay supplement after a 3 month qualifying period. This supplement is backdated and paid with your monthly salary. • Flexible working arrangements with potential of up to 4 days off per month. • You will have an annual leave allowance of 5 weeks, rising to 6 weeks after 4 years. In addition, the Scottish Government observes 11½ days public and privilege holidays, dates of which are set annually. • Workplace adjustments for everyone that needs them to ensure your comfort and safety in your new role. • Learning and development opportunities to support your personal and professional growth. • Career progression – join a rapidly growing and developing organisation with excellent opportunities for career advancement. • Contributory Pension Scheme (employee contributions 5.45% employer contributions 27.1 - 27.9%). • Health and wellbeing support including 24 hour access to our Employee Assistance Programme, plus counselling support available for all. • Discounts on gym memberships and retail outlets. DDaT Pay Supplement This post attracts a £5,000 DD a T pay supplement after a 3 months DDaT competency qualifying period. The payment will be backdated to your start date in the role. Pay supplements are temporary payments designed to address recruitment and retention issues caused by market pressures and are subject to regular review. This post is part of the Scottish Government DDaT profession. As a member of the profession, you will join the professional development scheme, currently BCS RoleModel plus. Hybrid Working We embrace a hybrid working style where all colleagues will spend time in either our Glasgow or Dundee offices. There is an expectation of a minimum of 2 days per week in your assigned location. Base office location can be in either Glasgow or Dundee. About Us Social Security Scotland, an executive agency of the Scottish Government, is the largest and most complex IT and digital change programme since devolution. With a lifetime budget of over £300m, delivering a social security system that will support the people of Scotland for decades to come. O ur benefits help people from all walks of life. We are committed to recruiting a diverse workforce that is representative of the clients we serve. Find out more about us here • Subject Matter Expert in relation to the Security Logging, Monitoring and Alerting (LMA) environment. • Manage and lead the Security Engineering team responsible for the continual running of the LMA environment in cooperation with the hosting team. • Engage and consult with business areas across Social Security Scotland to design and develop their LMA use cases. • Responsible for the development of the Security Operations capability, working closely with other security and technical teams to ensure security coverage. • Produce relevant and targeted management information in a timely manner to demonstrate effectiveness of security controls and articulation of security risks to Social Security Scotland. • Stay informed of emerging security threats and techniques to ensure proactive security controls in place. No specific qualifications are required for this post. How t o A pply To apply for this post, you will need to provide the information requested below via the online application process. A CV (no longer than two pages) setting out your career history, with key responsibilities and achievements - this is accessed through the candidate profile. In additio n, please record your Personal Statement (no longer than 750 words). This should clearly demonstrate how your skills, qualities and experience meet the following essential criteria: 1. Security Operation management experience with the ability and practical technical knowledge of SIEM solutions, including development of solutions to analyse and search indexed data. 2. Experience of managing a security focussed logging, monitoring and alerting SIEM security solution in a SOC environment (such as Elastic stack or Splunk or similar solutions), with the ability to develop existing and new solutions in support of security and related business areas, such as fraud detection. 3. Experience of leading and managing a team of skilled SOC analysts and engineers. 4. Experience of leading and managing security incidents across all incident response steps. When considering how your experience relates to the role, please tailor your CV and personal statement to reflect the role and the essential skills/criteria as described in the job description. If we receive a large number of applications, we may complete an initial sift on the first essential criteria. If you pass the sift but are not invited to the first round of interviews, you may be invited to a subsequent round. Any queries on this please contact recruitmentsocialsecurity.gov.scot If you are invited to an interview this will be held in person in either Agnes Husband House, Dundee or High Street, Glasgow. We aim to provide feedback on request, however; if we receive a large number of applications it may not be possible for us to provide feedback on your application if you are not invited to attend an interview/assessment. We will provide feedback on request to all candidates that attend an interview/assessment. DDaT Social Security Scotland - Further information - Security Operations Manager Information Session We will be running an online information session on Tuesday 16th April at 12pm. The session will cover: • About Social Security Scotland • The Security Operations Manager role and Digital Risk and Security Team • Our recruitment process • Q&A with the hiring manager Please feel free to join us using the link below to find out more about the role and working for Social Security Scotland. Click here to join the meeting Interview/Assessment Information Here are details of the Competencies required for this role which you will be tested against if you are invited to attend an interview and undertake a digital assessment: • People Management • Communications and Engagement • Improving Performance • Analysis and Use of Evidence • DDaT Technical Skill Assessment Reserve List In the event that further posts are required, a reserve list of successful candidates will be kept for up to 9 months. Recruitment Contact To learn more about this opportunity, please contact Claire Murray who can be reached at Claire.murraysocialsecurity.gov.scot Please note that we will not engage with external recruitment agencies for this post. Further Information This post requires the successful candidate to clear additional National Security Vetting clearance before a start date can be offered. Further information regarding National Security Vetting clearance can be found here - United Kingdom Security Vetting: Applicant - GOV.UK (www.gov.uk) The successful candidate will be expected to remain in post for a minimum of 3 years unless successful in gaining promotion to a higher Band or Grade. Social Security Scotland are a Disability Confident Employer. We will consider and implement any reasonable adjustments you may require throughout the recruitment process and during the course of your employment, should you be successful in securing a post. If you feel you may require assistance with any part of our recruitment process, please contact us at Recruitmentsocialsecurity.gov.scot. Social Security Scotland’s recruitment processes are underpinned by the recruitment principles of the Civil Service Commissioner, which outline that selection for appointment be made on merit on the basis of fair and open competition - Recruitment - Civil Service Commission (independent.gov.uk) If you feel at any time your application has not been treated in accordance with the values in the Civil Service Code and/or if you feel the recruitment has been conducted in such a way that conflicts with the Civil Service Commissioner’s Recruitment Principles, you can make a complaint, by contacting Social Security Scotland at recruitmentsocialsecurity.gov.scot in the first instance. If you are not satisfied with the response you receive you can contact the Civil Service Commissioner. If you experience any difficulties accessing our website or completing the online application form, please contact the Resourcing Team via recruitmentsocialsecurity.gov.scot If you are interested in us contacting you about further available vacancies, please sign up to our mailing list to receive job alerts.