Lead Security Analyst

Job Description

Lead Security Analyst:1. Lead on Security Architecture and Assurance, thinking and strategic direction within the HSF.2. Develop and maintain an expert level awareness of the Hera architecture and risks from a security perspective. Covering all SaaS, PaaS and IaaS platforms, integrations and configurations.3. Develop and maintain an expert level awareness of the Hera Role Based Access Control (RBAC) model, implementation, use cases and control processes.4. Impact Assess proposed changes to the architecture, including RBAC, related responsibilities and ways of working. Identifying the impact risks and potential mitigation approaches, solution designs and implementation plans.5. Promote and maintain an ethos of agile but risk managed perpetual change. An anti-pattern would be a "avoid all risk by avoiding all change" mindset that impedes service change and evolution.6. Establish and maintain productive and effective relationships and collaborative ways of working with other members in the service. In particular:* Other Hera architects, who will specialise in other areas of Hera but have some crossover of skills and responsibilities;* Product Owners and Managers, who identify and prioritise the needs and demands from the customer and users of Hera* Delivery Managers, who mage delivery teams and suppliers and the balance between service change demand and supply.7. Build close working relationships with other architecture roles and forums within IDD, FCDO and HMG led communities.8. Collaborate with the Information and Cyber Security Unit (ICSU) to provide a wider shared understanding and application of security standards and good working practices.9. Actively scan the horizon, attend events and forums, read articles to gain an awareness of current and emerging government and private sector digital security practices, tools and use cases relevant to the technologies, products and Shared Service supportedby HSF.10. Take ownership of existing Hera security artifacts, models and documentation. Maintain these artifacts and ensure they are updated as the product and service evolves. (Excludes Master Data Management artifacts, which are owned by the Data Architect).11. Ensure HSF Security is maintained and evolves in line with good practise including Government Functional Standards GDS shared service strategies; Hera technical standards; FCDO Cyber Security architecture and standards.12. Develop personal and team capability and skills, with reference to DDaT Role Profiles, specialist skills standards and Civil Service behaviours.13. Engage and participate in HSF continual service improvement, service optimisation, customer satisfaction.14. Work collegiately and collaboratively with colleagues (including contractors), stakeholders, partners, customers and related organisations.Mandatory* Expert level knowledge and experience of security architecture standards and considerations* Demonstrable skills and experience aligned with the DDaT Role Profile for "Lead Security Architect" (Annex A); or equivalent Certified Cyber Professional skills ands experience.* Experience of working with Oracle Fusion in an architecture roleDesirable* A relevant architecture or cybersecurityIf this job appeals to you please apply here or on the NonStop Consulting website or send it to me, Jason Dineen, on my Linkedin. If you are not available but you know someone that would be interested, please forward this to them and helpthe people in your network.

Keyskills :
Oracle FusionAnnex A or equivalent Certified Cyber Professional skills ands experience