Cyber Security Analyst - Risk

Perth and Kinross, Portsmouth, Reading, Renfrewshire
Full time
employer logo
SSE plc
Mining, resources & energy
10,001+ employees
Compare top employers
Apply on company site

SSE has big ambitions to be a leading energy company in a low carbon world. Following our commitment to invest £20.5 billion in low carbon projects to 2027, we have significant growth plans and are well on our way to achieving our ambition to build a world that's more sustainable and inclusive for you, your family, the community you live in and for generations to come.

Join us on our journey to net zero and help us power change.

About the Role

Candidates for this role will be required to obtain vetting to SC level through UK Government. The criteria normally includes 5 years UK residency, further information can be found here: United Kingdom Security Vetting: Applicant - GOV.UK (

Base Location: Reading, Havant, Glasgow or Perth

Salary: £55,573 - £63,643 and a range of benefits to support your finances, wellbeing and family.

Working Pattern: Permanent | Full Time | Flexible First options available

Reporting to the Governance, Risk and Assurance Lead, the Cyber Security Analyst - Risk will support the development and implementation of a cyber security risk management programme to evaluate SSE's cyber security posture in support of its cyber security risk appetite and in line with legislations such as the Network & Information Systems Regulations, General Data Protection Regulation etc. Some of the key objectives are below:

- Perform risk assessments to ensure legislative, regulatory, continuity and SSE cyber security standards are adhered to.

- Record and report risks identified and any control findings and, where required, a list of recommendations to Business Unit stakeholders to inform their cyber risk management.

- Perform control testing of activities delivered by internal service providers in support of our obligations to identify risks.

- Collaborate with business unit staff, external business partners and key Information Systems (IS) staff members for the purpose of planning, directing, controlling and maintaining an effective risk management plan.

- Contribute to periodic reviews of risk methodologies, work instructions and process documents to ensure they remain relevant, and updates are published on documentation libraries where required.

What do I need?

To be considered for this role, we would love you to have:

- Understanding of risks and threats to UK energy sector, smart metering, network, consumer technologies and customer data.

- Understanding of relevant legal and regulatory requirements, such as the Network and Information Systems Regulation, DECC/OFGEM/CPNI.

- In-depth knowledge of technologies utilised in Information Systems (IT and OT).

- In-depth knowledge of risk assessment methods and technologies.

- Team-oriented interpersonal skills, with the ability to interface effectively with a broad range of people and roles, including vendors and IS and business personnel.

About our Business

SSE IT underpins the technology needs of all the different businesses that make up the SSE group. From emerging technologies to data and analytics to cyber security - we power SSE's growth and enable it to generate value, while keeping it secure. As a trusted business partner that helps SSE lead in a low carbon world, we are proud of our service. Working for SSE IT is all about equipping SSE for now and the future.

What's in it for you?

We offer an excellent package with 34 days annual leave entitlement. Enhanced maternity/paternity leave, discounted healthcare, salary sacrifice car leasing and much more, view our full benefits package on our careers site.

As an equal opportunity employer we encourage diversity and are committed to creating an inclusive environment for all employees. We encourage applicants from all protected characteristics and commit to providing any reasonable adjustments you need during the application, assessment and upon joining SSE. Search for 'Inclusion & Diversity at SSE' to find out more.

Further actions

All applications should be made online, and I'll be back in touch after the vacancy closing date to let you know the outcome.

If you would like to discuss any working flexibly requirements or adjustments you may require throughout the recruitment and selection process, please contact David on / 01738 275846.

Before commencing your role with SSE, you'll need to complete our pre-employment screening process. This will consist of a criminality and credit check.