Information Security Architect

Job Description

Were looking for an Information Security Solution Architect to join us! You will be joining the Digital Technology Architecture team, responsible for aligning technology strategy with business goals and for the delivery of high-quality, governed solutiondesigns.Youll work in close collaboration with the Information Security team, playing a significant role in defining our information security roadmap as part of the overall technology strategy and improving the security posture of N Brown. Youll be the authorityand trusted advisor for all Information Security solutions, ensuring any proposed changes to the estate are aligned with the wider enterprise technology direction and concepts. In addition youll be responsible for the application of necessary solution governanceand quality assurance, including proactive contribution to both our Technology Design Authority and Architecture community of practice.Whats in it for you

• Hybrid working
• 24 days holiday (+ 8 bank holidays) with the option to buy an additional 10 days
• Annual bonus scheme
• Enhanced maternity and adoption leave
• Access to Apricity, a self-funding IVF benefit at a reduced rate
• Company pension with up to 8% N Brown contribution
• Mental Health support both internally and externally, including access to our wellbeing champions and counselling services
• A range of financial wellbeing support
• Colleague discount across all N Brown brands
• Onsite café with subsidised rates and local restaurant discounts!
• Life Assurance and Private Medical Insurance
• Paid volunteer time - all our colleagues can take a full day paid to volunteer for a charity of their choice

What will you do as anInformation Security Solution Architectat N Brown

• Develop and articulate current state physical and logical architectures - specifically for infosec and related functional areas.
• Evangelise the adoption of future state technology architectures becoming the authority in this space.
• Coordinate the assessment of new technologies and how they can be effectively introduced to the enterprise.
• Work closely with stakeholders across functions, becoming a strong partner to the business and influencing outcomes from ideation through to implementation.
• Cultivate relationships with all levels of technical stakeholder to ensure architectural governance is applied in a uniform fashion.
• Influence Information Security direction and strategy.
• Govern system designs to ensure that appropriate patterns and standards are applied effectively.
• Question the status-quo to drive better outcomes across the enterprise.
• Work with the rest of the Architecture community and business stakeholders to build transformation roadmaps.
• Participate in the creation of RFI/RFP documentation and assessment of bid responses from external technology vendors.
• Represent the wider Architecture function.
• Work with IT stakeholders and contribute the evolution and delivery of our IT strategy
• Perform threat modelling of solutions to identify threats and countermeasures, articulating threats and countermeasures in both technical and non-technical terms to address multiple audiences.
• Define secure technical patterns for newly identified components.
• Verification of secure patterns through different means of testing.

What skills and experience will you have

• A good understanding of cloud security controls and tooling, ideally in AWS but GCP and Azure will also be beneficial.
• Understanding of secure coding and application design principles. - Good knowledge of the ecommerce threat landscape and a pragmatic approach to applying relevant controls to mitigate those threats.
• Experience of building strong security governance into guard rails. - Experience of applying security controls and mitigations iteratively in an agile/DevSecOps environment where all requirements will not be delivered on day one.
• Excellent communication skills and a proven ability to influence outcomes - strong interpersonal skills are essential.
• Practical experience of governing solutions in an architecture function.
• Flexibility and a desire to learn.
• Awareness of IT industry trends and being vendor and technology neutral to enable best-fit solutions to be found.The ability to plan and rationalise project goals working from limited information and ending in a holistic design.
• Decisiveness - be capable of presenting proposed solutions with confidence, providing clear guidance for outcomes.

Desirable Skills:

• One or more of the following IT Security Certifications- (CompTIA Security, Certified Information Security Manager (CISM) - Certified Information Systems Security Professional (CISSP)Certified Ethical Hacker (CEH) - Offensive Security Certified Professional(OSCP) andCertified Cloud Security Professional (CCSP)
• AWS Certified Solutions Architect / GCP Cloud Architect / Azure Solutions Architect
• A broad understanding of current techniques and tooling including API-first design, Cloud Native, Containerisation and PaaS on AWS, Azure or GCP.
• Experience of working with Product or Agile teams at the same time, effectively governing architectural designs to enable continuous delivery.
• Retail / Ecommerce experience

Our promise to you:Were an equal opportunity employer and value diversity. We do not discriminate based on race, religion, colour, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status.What happens when you apply to a role at N BrownAs soon as we receive your application, well send you an email to let you know. We always aim to come back to you as soon as possible with an update and we really appreciate you taking the time to apply for a role with us. Good luck!

Keyskills :
TOGAFcyber security