Information Security Analyst

SRUC Scotland's Rural College
40437.00 - 45807.00 GBP Annual
28 Mar 2024
16 Apr 2024
Employer Sector
Technology, IT & Telecoms
Contract Type
Full Time

Title: Information Security Analyst

Type: Permanent

Hours: Full–Time

Salary: GBP40,437 – GBP45,807 per annum

Location: Edinburgh/ Flexible

Closing Date: 14 April 2024

Ref: CFPS/IDS/001/24

About The Team:

SRUC is unique in Scotland and one of the largest organisations of its kind in Europe. Our ambitious and exciting vision is to work at local, national and international levels, leading innovation and sustainable development in agriculture and rural sectors.

The services that the Information and Digital Systems (IDS) team provide are wide and varying. We maintain the IT infrastructure that runs all the systems that you need to work at home or within the office.

Information security is becoming a bigger and bigger problem for all organisations. One of the largest risks of all to organisations is the unintentional loss or exposure by staff. New GDPR laws will attract fines of up to 40million euros if data breaches occur, not to mention the reputational damage to SRUC.

The Opportunity:

The post holder evaluates and develops SRUCs cyber security maturity to evaluate risks in answer to current and emerging global threats, to align with Scottish and UK Government objectives and SRUCs risk appetite and ensure these measures are continually monitored and improved.

The post holder is responsible for the design and implementation of projects aimed at increasing SRUC's cyber maturity, reducing the risk and/or impact of successful cyber–attacks. This will involve managing others, project planning, reporting to, and working with, the IDS management team, internal senior stakeholders, external stakeholders and suppliers, and within agreed budgets.

The post holder undertakes risk analysis, monitoring internal and external systems for vulnerabilities, providing management reports and recommendations to IDS senior management, ensuring they are aware of the operational and security risks to business operations and mitigations.

The post holder has responsibility for the infrastructure (compute, storage and networks) that SRUC's core business functions rely on. They are involved in the security decisions during the full life cycle of these systems, from design to development, implementation, operation and eventual decommissioning ensuring systems meet SRUC's security standards.

Minimum Qualifications and Experience:

The ideal candidate should be educated to SCQF Level 9 or above.

For full person specification, please read the Job Particulars document.

Why work for SRUC?

Generous annual leave

• Enhanced pension contributions (5% employee and 10% employer)

• Cycle to work scheme

• Discounted RAC Membership

• Generous family leave

• Flexible working patterns

• Hybrid working solutions (in some areas)

• Tailored investment in and individuals' learning and development

Further information

Please read the Job Particulars Document before proceeding with your application.


To apply for this role, please use the SRUC online application system. CVs will not be accepted without a completed application form.