[ To skip navigation click here ]

Senior Security Architect

Job summary

Grade C1: £48,930- £61,006
DDaT Pay Supplement* £4,000 per annum pro rata
Around 37.00 per week
Closing Date
03 February 2021 at midnight
Employment Type
Permanent Employee

We are currently seeking applications for two Senior Security Architects within the Directorate for Digital based in Edinburgh. These are permanent and pensionable appointments and new entrants will normally start on the minimum of the pay range. Candidates with a disability who meet the essential criteria below will be invited to the assessments.

DDat Pay Supplement

This post attracts a £4,000 Digital Data and Technology Pay Supplement after a 9 month competency qualifying period. Pay supplements are temporary payments designed to address recruitment and retention issues caused by market pressures and are subject to regular review.

The Digital Strategy for Scotland, Realising Scotland's Full Potential in a Digital World, was published in March 2017 and it sets out our plans for ensuring that we put digital at the heart of everything we do. A key part of this is improving service users' access to services and eliminating unnecessary duplication, including through the implementation of common platforms, processes and standards. This commitment is re-enforced in the current consultation on updating the Digital Strategy in the light of the coronavirus pandemic.

Within the Scottish's Government's Digital Directorate two platform programmes, Identity and Payments, are each looking for a Security Architect to join their teams.

The Digital Identity Scotland Programme sits within Scottish Government's Digital Directorate, and reports in through the Strategy & Business Management Division. The Programme is central to achieving the aims of the Digital Strategy for Scotland, and its mission is to improve service users' access to and experience of public services by providing them a safe and easy way to prove who they are or that they are entitled to a service.

Within the Product and Commercial division, a team are working on transforming the way the Scottish Government facilitates payments across government and the wider public sector, with a long-term vision to design a continually improving and reliable shared payment service. All across the public sector, there is a need to plan, execute and measure financial transactions. This includes paying money out to, and receiving money from, businesses, charities and citizens, and across other parts of central government, government agencies and local government.

Both teams are now growing to support our next phases of development. The post holders will be key parts of both teams as we work to deliver an operational service, undertaking the necessary user engagement, development and support arrangements to develop and deliver services that meet the needs of service users and public sector organisations.

As Security Architect you will play a key role in designing the security for the service. You will be working with a multi-disciplinary team to support the delivery of a complex digital programme, in particular other technical and security colleagues across the Digital Directorate and with other internal and external suppliers.

Essential Criteria
1. Broad and deep technical knowledge covering application, data, technology and security domains in digital Cloud services with associated experience in designing secure solutions using industry standard tools, techniques and security architecture frameworks.
2. Strong knowledge of government and industry data/cyber security legislation, policy, patterns, standards (including but not limited to ISO27001, CSA STAR and NIS Directive), guidance and risk management techniques as well as demonstrable experience in interpreting and applying this knowledge in an agile way, working with development teams to deliver digital Cloud services.
3. Experience of reviewing security architecture designs, including from 3rd parties, ensuring adherence to agreed policies, standards, and design patterns and explaining clearly to a wide range of internal and external stakeholders (including senior officials, customers and suppliers) how decisions have been reached, with the ability to understand and resolve security related disputes across varying levels of complexity and risk.
4. Experience of reviewing system architectures to: identify single points of vulnerability and common architectural flaws; identify security issues relating to configuration of components in an architecture; validate and explain how common attack methods are mitigated by the design and identify areas where detailed technical analysis will be required to understand important nuances that could have significant security implications.

Important Information Regarding Interviews
In recognition of the Scottish Government's ongoing measures and guidance in its response to Covid-19 (Coronavirus), we would like to advise applicants that a decision has been taken that all interviews must be conducted in a virtual/remote setting.

In order to facilitate this new way of working, we are asking all applicants to ensure that they have a suitable space to complete the virtual interview. In addition, a personal device of choice, which has the Skype for Business application downloaded. This will allow candidates to undertake the interview/assessment if selected. We are also asking you to ensure that your personal Wi-Fi/Broadband capacity will be sufficient to carry both audio and video feeds.

Further Information
For further information on this vacancy please download and review the "Person Specification and Further Information for Job Applicants" which you will find below. To learn more about this opportunity, please contact Carron Macnab who can be reached at Carron.Macnab@gov.scot.

To apply for this post, you will need to provide the information requested below via the online application process. These must be combined into one document as the system can only accept a single document upload per application.

A CV (no longer than two pages) setting out your career history, with key responsibilities and achievements. Add to your CV your personal statement (no longer than 750 words) explaining why you consider your personal skills, qualities and experience suitable for this role, with particular reference to the criteria in the person specification.

Failure to submit a single combined document (CV and personal statement) will mean the panel only have limited information on which to assess your application against the criteria in the person specification.

When considering how your experience relates to the role, please tailor your CV and personal statement to reflect the role and the essential skills/criteria as described in the job description/person specification.

If you experience any difficulties accessing our website or completing the online application form, please contact the resourcing team via recruitment@gov.scot.

Apply for this job

You should read each of the Essential Criteria and think about a time or an example that can help demonstrate your knowledge/skills. Remember, this must be evidence based and your answers should be clear, concise and reflect what actions you undertook. You may want to use the STAR(R) approach to respond to each criterion.

Other things you can do with this job


Get Acrobat Reader You will need Adobe Acrobat Reader to view PDF documents. To download it for free please click on the logo.