31 May 2017


£34,919 - £42,220 ICT Pay Supplement* £4,000 per annum pro rata



The Security and Information Risk Advisor is a key role in the Scotland’s Census programme, providing security advice to a range of internal and external stakeholders in a business context. This includes:

  • Providing a focal point for resolution of security and information risk matters 
  • Identifying, analysing and evaluating information risks and providing advice on options to mitigate those risks
  • Advising risk owners and other stakeholders on the causes, likelihood and potential business impacts of information risks throughout the information system lifecycle 
  • Providing guidance on information risk management and assist in checking compliance with applicable regulations, standards, policies and guidance

Qualifications Required

For jobs in Bands B and C, you must hold a minimum of 3 SCE Higher or A Level qualifications (grades A-C) with one being English. Other qualifications equivalent to these may also be acceptable, if you are in any doubt please contact the Resourcing Officer named at the end of this advert to discuss.

Essential Criteria

  1. ICT related knowledge and skills in order to be able to identify the most appropriate security solutions in any given situation and must be able to stay abreast of new ICT developments and security best practices.
  2. Technical knowledge of both traditional on-premise type IT solutions coupled with knowledge and understanding of newer external cloud technologies including hybrid models which combine both.
  3. Knowledge and application of Government or International Security standards e.g. ISO 27001 (Information Security Standard).
  4. Experience of the use of formal approaches for assessing and articulating information risks on projects and programmes and recommending effective and practical security controls for risk mitigation.
  5. Ability to communicate effectively with colleagues, external stakeholders and delivery partners providing expert advice and guidance on complex risk issues

Desirable Criteria

  1. Knowledge of Information Security products particularly in relation to Information Technology
  2. Knowledge of Data Protection Legislation and other legislative requirements around protecting information

For further information on this vacancy please download and review the “Person Specification and Further Information for Job Applicants” which you will find below. To apply, you must fully complete and submit an online application via this website before the closing date. To learn more about this opportunity, please contact Anne Courtney on 0131 314 4563 or via This email address is being protected from spambots. You need JavaScript enabled to view it..

If you experience any difficulties accessing our website or completing the online application form, please contact Ricky Carter on 0131 244 3987 or by email This email address is being protected from spambots. You need JavaScript enabled to view it..

*ICT Pay Supplement 

This post attracts a £4,000 ICT pay supplement after a 9 months ICT Competency qualifying period. Pay supplements are temporary payments designed to address recruitment and retention issues caused by market pressures and are subject to regular review. 

Apply for this job

You should read each of the Essential/Desirable Criteria and think about a time or an example that can help demonstrate your knowledge/skills. Remember, this must be evidence based and your answers should be clear, concise and reflect what actions you undertook. You may want to use the STAR(R) approach to respond to each criterion.

Apply now

Scroll to top