Security Architect

This job has now expired please search on the home page to find live IT Jobs.

Job Desricption

The role reports to the Head of Enterprise Security Architecture and the applicant must have the ability to influence multiple diverse stakeholders such as networking, security delivery teams and Architects. The Security Consultant has responsibilities for security oversight of key enterprise initiatives; particularly identifying gaps to key security controls, identifying threats and designing compensating controls. In addition the Security Consultant will be required to develop security standards, patterns and guides.

Key Accountabilities

* Security leadership and accountability for assigned project activities.

* Leadership and accountability for assigned technical security reviews and assessments.

* Creation of re-usable documentation, artefacts and processes to assist in streamlined delivery of BAU services to projects and Business As Usual (BAU).

* Engender a strong team ethic and spirit to deliver timely, fit for purpose security deliverables against business requirements.

* Act as a security champion to further the direction and strategy set by the Security Senior Leadership Team including influencing senior level customers and project teams through change

* Management initiatives, ensuring that professional standards are maintained

* Ensure all deliverables are of the highest standard and quality.

* Work closely with Security 'Build' teams for the safe delivery of projects into the operations arena through QA / OAC processes.

* Secure Architecture Development Standardisation. Promoting and supporting the establishment and embedding of security best practise in architecture development processes.

Key Activities

* Prioritise and balance engagements and workloads.

* Ensure appropriate teams operate and deliver within PCI compliance requirements and to internal OLA / SLAs

* Identifies and responds to the key business drivers and those areas of business need which are not adequately supported by current and planned IT, within the strategic planning time frame.

* Develops the strategic response to the business requirement, and produces business cases for recommended new applications of information and communications technologies.

* Assist with and communicate the engagement model and delivery process for Project Assurance.

Expected Experience This role requires a broad understanding and demonstrated practical experience which is likely to include the following:

* Education in a relevant technical subject to at least master's degree level (MSc Information Technology or similar).

* At least 5 years' experience in IT Security and thereby able to demonstrate a high level of technical ability in implementation, design and review roles, along with at least 5 years' experience in another I.T. Discipline.

* Preferable prior experience in large / blue chip organisations or financial background.

* High technical knowledge of security across multiple platforms and current understanding of how to exploit them and thereby ensure appropriate protection.

* Ideally, financial services experience (particularly in payments).

* Familiar with industry standard methods, and security practices.

* Familiar with current assessment techniques and toolsets e.g. OWASP practices, etc

* Worked with industry standard processes relating to service, change management and governance, such as ITIL incident and change management, Prince, Patch Management, Data Centre processes, PCI DSS,GDPR and COBIT / COSO based controls.

* Broad and demonstrable experience of working with a diverse set of stakeholders, applying technology capability for business benefit.

* A good understanding of key business platforms, operating systems and file systems including those used on *nix and MS platforms

* Previous experience of working in a highly available, performance critical technology environment

* Familiar with industry standard methods, tools and processes to support an Security Architecture function, such as SABSA, TOGAF etc. and the embedding of security principles within this

* Worked with industry standard processes relating to change management and governance, such as Prince, COBIT, ITIL

* Broad and demonstrable experience of working with a diverse set of stakeholders, applying Security capability for business benefit

To find out more about Computer Futures please visit www.computerfutures.com

Computer Futures, a trading division of SThree Partnership LLP | Registered office | 1st Floor, 75 King William Street, London, EC4N 7BE, United Kingdom | Partnership Number | OC387148 England and Wales