Cyber Security Architect


Premium Job From JLR

Recruiter

JLR

Listed on

29th November 2021

Location

Manchester

Type

Contract

Start Date

2021-11-29

This job has now expired please search on the home page to find live IT Jobs.

A leading premium automotive business and leading to move towards electric autonomous vehicles.

WHAT TO EXPECT

We are looking for someone who will help us realise our business vision for a cloud-agnostic IoT platform that will provide our customers, suppliers and partners with seamless connected services delivered through an industry-leading global platform that will generate new income streams for our business and also help drive down costs through the use of data analytics.

We are looking for someone who will work closely with stakeholders to define and evolve a system security architecture that is secure by design. You will be a valued member of our Global Digital Development Centre team, contributing to the strategic direction of the technology and solutions delivered.

* Providing consultation to product teams in security architecture and design, and conduct security reviews of new and existing products and services
* Ensuring that solutions are secure by design and are aligned with corporate security policy
* Conducting and reviewing threat models to identify security risk
* Continual collaboration with stakeholders with a view to being a key part of the product delivery teams success
* Maintaining strong knowledge of current security threats, mitigations and operational security best practices
* Providing security training, outreach, and guidance to our internal development teams
* Supporting the analysis of business requirements and their interpretation into security deliverables



WHAT YOU'LL NEED

* Ideally from a software engineering background with strong knowledge of DevOps and DevSecOps
* Strong knowledge of application security threat modelling and security risk management
* Experience implementing SDLC process, technology, and automation in a DevOps environment; ideally making use of OWASP best practice
* Experience of security architecture within agile delivery frameworks e.g. scaled agile or scrum
* Experience with large-scale web applications and backend services, including API design, access management, authorization, authentication, data protection and encryption
* Solid understanding of common application and infrastructure security vulnerabilities and mitigations
* Solid technical foundation (Computer Science / Engineering degree or equivalent) with a business-savvy mindset and an ability to translate technical vulnerabilities into business risks for senior leadership

You are currently using an outdated browser.

Please consider using a modern browser such as one listed below: