Cyber Assurance Lead

Overview

Provide cyber assurance, audit and risk advice across SSE's technology landscape.

Key Responsibilities

• cyber assurance
• risk audit
• action tracking
• report preparation
• management reporting
• risk advice

Tasks

-Balancing robust and pragmatic cyber assurance and advice - Using the understanding gained from relationships across the Group, support the scoping, delivery, and reporting of assurance via audit for key cyber risk areas. Provide practical risk and assurance advice that recognises business risk and impact, as well as the level of current cyber security maturity. -Ensure actions are completed - Undertake follow-on activities to ensure agreed audit actions are completed in-line with the audit reports and that any changes are clearly documented. -Prepare reports, communicate results and agree action - As part of delivering cyber audits, this role will regularly report to management at all levels. Prepare draft reports for review and discussion with management, agree achievable and proportionate actions for all relevant Management Disclosures and Findings ensuring clear responsibility and due dates are set.

Requirements

• siem
• firewalls
• iam
• zero trust
• incident response
• risk assurance

What You Bring

-Strong communication, organisational, and influencing skills to engage with stakeholders and deliver audits effectively and in a timely manner -Demonstrable operational experience in at least two of the following security disciplines: SIEM/Security Operations, Firewalls/IDS/IPS, Threat and Vulnerability management, Identity & Access Management and Privileged Access Management, Zero Trust Networks, Endpoint Protection, Incident Response, Supplier Assurance and Web Proxy/CASB -Understand the business and impact of cyber risk - Through building trusted relationships with the business, IT, and Cyber Risk teams, develop a close understanding of the business, the technology that supports key processes, and impact of strategic change on the cyber risk profile. -Ability to operate objectively and demonstrate professionalism & integrity throughout the audit lifecycle -Demonstrable knowledge of Cyber or IT Operations for Cloud environments -Robust understanding of risk-based assurance processes and cyber security frameworks, controls, and standards across different types of technology (e.g. Cloud, database, network, operating system)

People Also Searched For

About Sse Plc

-SSE is a pioneering force in the energy sector, committed to delivering sustainable energy solutions. -Founded with a vision to revolutionize the energy landscape, SSE has grown into a major player in both energy generation and infrastructure development. -With a focus on wind, solar, and other renewable energy sources, SSE has consistently led the way in sustainable energy production. -The company is known for undertaking large-scale projects, including renewable energy plants and energy transmission networks. -SSE also plays a significant role in infrastructure development, working across multiple sectors including utilities, transport, and commercial sectors. -A standout achievement for SSE was the completion of one of the largest offshore wind farms in Europe. -The company’s dedication to reducing carbon emissions and contributing to the global shift toward clean energy is evident in its portfolio of green projects. -SSE’s expansion into international markets has further solidified its position as a leader in the renewable energy space.

Sector Specialisms

Security Clearance

-criminality check required -credit check required