£55K/yr to £83K/yr
Perth, Scotland
Permanent, Variable

OT Security Officer - Vulnerabilities

Posted by SSE PLC.

OT Security Officer - Vulnerabilities

  • 549605
  • Closing at: Aug 13 2024 at 23:55 BST

SSE has big ambitions to be a leading energy company in a low carbon world. Following our commitment to invest £20.5 billion in low carbon projects to 2027, we have significant growth plans and are well on our way to achieving our ambition to build a world that's more sustainable and inclusive for you, your family, the community you live in and for generations to come.

Join us on our journey to net zero and help us power change.

About the Role

Base Location: Flexible, however our preference is that you will be based in one of our key Scotland sites, which includes but is not limited to:- Perth, Aberdeen, Inverness.

Salary: £55,200 - £83,000 (depending on skills and experience) + performance-related bonus + a range of benefits to support your finances, wellbeing and family.

Working Pattern: Permanent | Full Time | Flexible First options available

This role will lead the assurance and testing of the existing security controls within SSE Transmission to ensure they remain effective. This will include checking adherence to processes, monitoring and reporting on software vulnerabilities and directing audits, inspections and penetration testing. This is an opportunity to be part of a growing security team with a clear mission to protect critical infrastructure and keep the lights on.

Key responsibilities for this role will include:

  • Leading and prioritising a programme of audits and security assurance to identify vulnerabilities within existing controls. Including:
  • Monitoring and auditing our supply chain to ensure security requirements are included within contracts and that suppliers deliver against these commitments.
  • Ensure that all vulnerabilities are triaged, prioritised, tracked/reported and remediated appropriately within documented SLAs.
  • Development of processes and standards to monitor and verify the efficacy of security controls across the OT estate.
  • Contracting external resources to undertake independent control reviews and audits, including control maturity assessments, supply chain assessments and penetration tests.
  • Monitoring the configuration and settings of security devices.
  • Reviewing the effectiveness of Identity and Access Management processes and systems.
  • Assessment and prioritisation of software vulnerabilities.

What do I need?

To be considered for this role, we would love you to have:

  • Experience undertaking control and maturity assessments ideally with the NCSC Cyber Assessment Framework (CAF). An understanding of other control frameworks such as NIST CSF and ISA/IEC62443 is desirable.
  • Experience working within an operational technology environment, preferably for a large, regulated utility.
  • Understanding of how cyber security threats may disrupt Operators of Essential Services.
  • Experience applying security controls within an operational technology environment.
  • Experience in a greenfield role where you have produced new tools and process to enhancing the maturity of a new team.

About our Business

SSE IT underpins the technology needs of all the different businesses that make up the SSE group. From emerging technologies to data and analytics to cyber security - we power SSE's growth and enable it to generate value, while keeping it secure. As a trusted business partner that helps SSE lead in a low carbon world, we are proud of our service. Working for SSE IT is all about equipping SSE for now and the future.

What's in it for you?

We offer an excellent package with 34 days annual leave entitlement. Enhanced maternity/paternity leave, discounted healthcare, salary sacrifice car leasing and much more, view our full benefits package on our careers site.

As an equal opportunity employer we encourage diversity and are committed to creating an inclusive environment for all employees. We encourage applicants from all protected characteristics and commit to providing any reasonable adjustments you need during the application, assessment and upon joining SSE. Search for 'Inclusion & Diversity at SSE' to find out more.

Further actions

All applications should be made online, and I'll be back in touch after the vacancy closing date to let you know the outcome.

If you would like to discuss any working flexibly requirements or adjustments you may require throughout the recruitment and selection process, please contact Laura on / .

Before commencing your role with SSE, you'll need to complete our pre-employment screening process. This will consist of a criminality and credit check.

#LI-LM2

#LI-Hybrid

#LI-TRM

Related

We use cookies to measure usage and analytics according to our privacy policy.