Security Architect - Information Security


Premium Job From Next

Recruiter

Next

Listed on

7th August 2018

Location

LE19 4AT

Salary/Rate

Competitive

Salary Notes

Competitive

Type

Permanent

Start Date

ASAP

This job has now expired please search on the home page to find live IT Jobs.

Summary of Role

The Security Architect will play a key role in the evolution of Next’s security architecture and functions. This individual will provide security guidance for the IT environment with the aim of maturing the company’s infrastructure security policy, process and technology frameworks, improving overall security posture and company-wide security awareness. The Security Architect is responsible for providing security related subject matter expertise around a wide range of technologies, applications and business initiatives.

This individual will be a security specialist advising key stakeholders and service owners on risk management as well as how to balance security and business requirements. They will also provide expert advice in relation to security incidents and recommending mitigation strategies.

Key Responsibilities

-Provide expertise and guidance on information security for the organization

-Work closely with Infrastructure and Application Architects to define security requirements, build secure architecture designs, and drive security initiatives

-Provide guidance and direction in all aspects of design, creation, and testing approaches

-Maintain and enhance knowledge, ensuring continually up to date with the latest security risks, threats and solutions as well as business and industry trends

-Recommend and design security infrastructure, supporting security engineers with the implementation

-Help support compliance, PCI/DSS , IS Security policies, standards and controls

-Act as incident escalation for security incidents providing expertise to address issues, support and advise analysts, conduct post incident investigations to resolution, and help amend any processes or procedures to enhance protection against future exploits/vulnerabilities

Criteria

Essential

-Hold or working towards a recognised and relevant Information Security certification (i.e. CISSP, SSCP)

-8+ years of proven Information Technology experience with strong understanding of network protocols, server infrastructure and system design

-Solid and demonstrable comprehension of Information Security including malware, emerging threats, attacks, and vulnerability management

-Knowledge of information system architecture and security controls (i.e. firewalls and border router configurations, operating systems configurations, wireless architectures)

-Project delivery experience

-Ability to convert high level requirements into technical designs that are commercially viable and suit their operating environment

-Able to convey a technical solution to senior management in a clear and concise manner

-Strong interpersonal and communication skills

-Strategic thinker with proven analytical and problem solving abilities

-A team player who is hardworking and self-motivated

-Ability to effectively plan and priorities workloads, and to measure and report on current progress

-Must adhere to and promote team standards including documentation

Desirable

-Experience of working with recognised IT Security standards and frameworks such as PCI-DSS or ISO27001

-Application development and/or testing experience

-Understanding and experience of working for a Retail company

-Experience mentoring other team members

You are currently using an outdated browser.

Please consider using a modern browser such as one listed below: