Security Architect

Lead Security Architect - Permanent - Reading/2 days per week onsite

Job context

The role of Lead Security Architecture Consultant is a senior role within the Security Architecture and Consulting team in the UK, which is responsible for providing subject matter expertise and guidance to business units across the Network and Enterprise domains to enable the business to deliver its outcomes in a secure manner, building customer trust in a reliable network which matches the best, whilst ensuring compliance to regulatory requirements, company policy and standards.

In this role you will have a broad and challenging remit, you will therefore need to be flexible and agile in your approach, switching between different security disciplines within the team as necessary. You will be engaging in the delivery of multiple business initiatives by introducing baseline and enhanced security requirements and supporting their implementation through guidance and advice. You will also be recommending security solutions and then providing design input and technical approvals, assurances, and governance of deliveries that the project carries out with our colleagues and partners. Within the Security team itself, as a senior member you will be expected to support the wider team by providing technical expertise and guidance, improving technical security standards, patterns and the team processes, as well as supporting the leadership team with resource and budget planning.

You will be working with colleagues and partners to deliver outcomes and you will need to be able to successfully challenge and govern partner activities and have an awareness of partner contracts.

Experience Required:

• Must have at least 5 years of experience working in Cyber Security within a technical field.
• Must have a mix of security consulting, architecture/design, and professional services experience.
• Must be able to lead the design and review of secure system architectures using or developing patterns and principles, where necessary challenging to create precedents and set direction.
• Must be able to work at multiple levels within the organisation from technical delivery to senior management.
• Must have a strong knowledge of system architectures and be able to understand and articulate the impact of vulnerabilities on existing and future designs and systems, and how easy or difficult it will be to exploit these vulnerabilities.
• Must be well versed in the application of security policies and standards, governance, compliance, risk management and technical assurance practices.
• Should have experience of using common information security management frameworks, such as NIST, PCI, GDPR, ISO Series, OWASP the IT Infrastructure Library (ITIL), the ISF Standards of Good Practice (SoGP) and ISACA's Control Objectives for Information and related Technology (COBIT) frameworks.
• Must have expertise in defining and then governing the delivery of security contractual/business outcomes and know how to influence/negotiate technical outcomes with 3rd parties, including conflict resolution due to changing priorities.
• Must have experience of documenting and implementing processes, procedures and architecture/design/decision templates required to structure and govern an architecture, design and delivery lifecycle.
• Must have expertise and experience in one or more of the following technical domains:Cloud/Hybrid security/ Infrastructure and data centre security/ Network security / Application security/ Identity and access Management/ Vulnerability Management

If sounds suitable, Please share your CV on rohit.chavda@projectpeople.com

Project People is acting as an Employment Agency in relation to this vacancy.