Security Architect

This job has now expired please search on the home page to find live IT Jobs.

Security Architect

West London

£500 per day

3 Days P/W - Initial 2 month contract

THIS IS AN URGENT REQUIREMENT!! Candidates must be immediately available or close to end of contract.

Key responsibilities:

* Documenting all IT Security aspects of projects under development. Our clients has a specific, internal standard document that captures business and IT risk associated with each client application. Documentation must be maintained during all agile iterations and releases to the client production environment.

* Providing pro-active security audits of all project developments. This will include checks on adherence to best secure IT development guidelines on the part of the Clients developer community.

* Maintaining and enhancing secure IT project guideline documents for use both by our Client and also their client.

* Being the single point of contact between for all IT security-related topics.

* Being the single point of contact for our clients projects teams to handle all IT security-related topics and enabling sharing of knowledge and best practice across all project teams.

* Providing standards for data governance and ensuring our client is fully compliant with the client, UK and European data management GDPR regulations.

* The definition of on-going IT security assurance processes to continually monitor the security of applications, users' and developers' accounts and privileges in the cloud environment.

* The definition of on-going penetration testing of the client cloud environments and applications in collaboration with the client IT Security team.

Experience and skills required:

* Strong experience of information security and/or IT risk management with a focus on security, performance and reliability.

* Formal IT Security qualifications from IBITGQ, ISACA, or ISC.

* Some experience of UK Government security projects.

* Previous experience of web application development and expertise in countering all web application vulnerabilities.

* Experience of penetration testing of web applications (including cloud-hosted applications) and ethical computer hacking.

* Solid understanding of security protocols, cryptography, authentication, authorisation and security.

* Good working knowledge of current IT risks and experience implementing security solutions.

* Experience implementing multi-factor authentication, single sign-on, identity management or related technologies.

* Experience in working in a mixed on-shore, off-shore application development organisation.

* Ability to interact with a broad cross-section of personnel to explain and enforce security measures.

* Up-to-date knowledge of the latest security standards, systems and authentication protocols, particularly in cloud and Microsoft office environments.

* Excellent written and verbal communication skills as well as business acumen and a commercial outlook.