Security Architect

Job Description

Security ArchitectRole OverviewThis is a fantastic opportunity for a Security Architect to play an integral role in defining the organisations security strategy, architecture and technical capabilities. Youwill be required to effectively translate business objectives and InformationSecurity risk management requirements into specific security processes or architectures underpinned by security technologies, services and frameworks.As a Security Architect, youwill work closely with other architects in the Enterprise Architecture team and also have a close business relationship with the organisations Information Security team. This relationship must afford a segregation of dutiesapproach to ensure that objective review between the Security Architect and the Information Security team is both possible and effective.Additionally, you will be expected to liaise with project managers and IT staff and have the ability to influence and persuade regarding technical security artefacts (technologies and practices) that will improve the security posture of the organisation.Prioritisingand developing the overall security architecture (including roadmaps) approach for the organisation and communicatingsecurity architectural direction is also a key element ofthe role.Main Duties and Responsibilities

• Develop and maintain a security architecture that enables the enterprise to develop and implement security solutions and capabilities that are aligned with business, technology and threat drivers. Examples include, but not limited to:
  • • Microsoft Cyber Reference Architectures
    • Cyber Essentials (Plus)
    • Cisco infrastructure architectures
    • CIS 18 (Centre for Internet Security)
• Develop security strategy plans and roadmaps based on sound enterprise architecture practices possibly TOGAF aligned. Roadmaps include, but not limited to
  • • Endpoint solutions
    • Identity & Access including PKI
    • Operating systems
    • Cloud services especially MS Azure & SaaS principles
    • DLP

• Develop and maintain security architecture artefacts (Reference architectures, Technical Roadmaps, Business friendly communications and Business Cases) that can be used to leverage security capabilities in projects and operations.
• Track developments and changes in the business and threat environments to ensure that these are adequately addressed in security strategy plans and architecture artefacts.
• Participate in projects to provide security advice. This includes architecture reviews.
• Implement baseline security configuration standards for operating systems (e.g., operating system hardening) and network configuration.
• Conduct threat modelling of services and applications that tie to the risk and data associated with the service or application.
• Advise and promote the security elements of a secure Software Development Lifecycle (SDLC)
• Validate IT infrastructure and other reference architectures for security best practices, and recommend changes to enhance security and reduce risk where applicable.
• Liaise with the internal Information Security team to review and evaluate the design and operational effectiveness of security-related controls.
• Liaise with other security practitioners to share best practices and insights.
• Liaise with the business continuity management team to validate security practices for both disaster recovery planning (DRP) and business continuity management (BCM) testing and operations when a failover occurs.

Candidate OverviewIf you are the right candidate for us, you will hold the following qualifications and experience:

• Degree level candidate ideally in computer science, information systems, cybersecurity or a related field or experience equivalent to.
• Ideally CISSP, CISM
• Ideally, but not necessarily, SC clearance
• Significant experience in at least three disciplines below:
• Direct, hands-on experience managing security infrastructure such as firewalls, IPSs, WAFs, endpoint protection, CASB
• Direct experience designing IAM technologies and services (e.g., Active Directory, LDAP) including relevant protocols e.g., SAML
• Experience of designing the deployment of applications and infrastructure into public cloud services (e.g. Microsoft Azure)
• Significant and demonstrable experience of Microsoft Office 365 (O365) architectures & techniques
• Significant business experience in strategic and operations planning and/or business analysis

What can we offer you

Agile working i.e. the opportunity to work from home, subject to diary commitments;

25 days annual leave entitlement and the opportunity to purchase or roll over 5 days;

The ability to claim up to 5 days towards parental or caring responsibilities;

Contributory pension of up to 5%;

Private healthcare;

Death in service cover (4 x base salary);

Eligibility to apply for an interest free season ticket loan, an interest free gym membership loan and/or an interest free rental deposit loan;

Cycle to work scheme;We envisage this role being full time, however, we are o