Security Architect

Role Overview

This is a fantastic opportunity for a Security Architect to play an integral role in defining the organisation’s security strategy, architecture and technical capabilities. You will be required to effectively translate business objectives and Information Security risk management requirements into specific security processes or architectures underpinned by security technologies, services and frameworks.

As a Security Architect, you will work closely with other architects in the Enterprise Architecture team and also have a close business relationship with the organisation’s Information Security team. This relationship must afford a ‘segregation of duties’ approach to ensure that objective review between the Security Architect and the Information Security team is both possible and effective.

Additionally, you will be expected to liaise with project managers and IT staff and have the ability to influence and persuade regarding technical security artefacts (technologies and practices) that will improve the security posture of the organisation. P rioritising and developing the overall security architecture (including roadmaps) approach for the organisation and communicating security architectural direction is also a key element of the role.

Main Duties and Responsibilities

• Develop and maintain a security architecture that enables the enterprise to develop and implement security solutions and capabilities that are aligned with business, technology and threat drivers. Examples include, but not limited to:
  • • Microsoft Cyber Reference Architectures
    • Cyber Essentials (Plus)
    • Cisco infrastructure architectures
    • CIS 18 (Centre for Internet Security)
• Develop security strategy plans and roadmaps based on sound enterprise architecture practices possibly TOGAF aligned . Roadmaps include, but not limited to
  • • Endpoint solutions
    • Identity & Access including PKI
    • Operating systems
    • Cloud services especially MS Azure & SaaS principles
    • DLP
• Develop and maintain security architecture artefacts (Reference architectures, Technical Roadmaps, Business friendly communications and Business Cases) that can be used to leverage security capabilities in projects and operations.
• Track developments and changes in the business and threat environments to ensure that these are adequately addressed in security strategy plans and architecture artefacts.
• Participate in projects to provide security advice. This includes architecture reviews.
• Implement baseline security configuration standards for operating systems (e.g., operating system hardening) and network configuration.
• Conduct threat modelling of services and applications that tie to the risk and data associated with the service or application.
• Advise and promote the security elements of a secure Software Development Lifecycle (SDLC)
• Validate IT infrastructure and other reference architectures for security best practices, and recommend changes to enhance security and reduce risk where applicable.
• Liaise with the internal Information Security team to review and evaluate the design and operational effectiveness of security-related controls.
• Liaise with other security practitioners to share best practices and insights.
• Liaise with the business continuity management team to validate security practices for both disaster recovery planning (DRP) and business continuity management (BCM) testing and operations when a failover occurs.

Candidate Overview

If you are the right candidate for us, you will hold the following qualifications and experience:

• Degree level candidate ideally in computer science, information systems, cybersecurity or a related field or experience equivalent to.
• Ideally CISSP, CISM
• Ideally, but not necessarily, SC clearance
• Significant experience in at least three disciplines below:
• Direct, hands-on experience managing security infrastructure such as firewalls, IPSs, WAFs, endpoint protection, CASB
• Direct experience designing IAM technologies and services (e.g., Active Directory, LDAP) including relevant protocols e.g., SAML
• Experience of designing the deployment of applications and infrastructure into public cloud services (e.g. Microsoft Azure)
• Significant and demonstrable experience of Microsoft Office 365 (O365) architectures & techniques
• Significant business experience in strategic and operations planning and/or business analysis

What can we offer you?

• Agile working i.e. the opportunity to work from home, subject to diary commitments;
• 25 days’ annual leave entitlement and the opportunity to purchase or roll over 5 days;
• The ability to claim up to 5 days towards parental or caring responsibilities;
• Contributory pension of up to 5%;
• Private healthcare;
• Death in service cover (4 x base salary);
• Eligibility to apply for an interest free season ticket loan, an interest free gym membership loan and/or an interest free rental deposit loan;
• Cycle to work scheme;
• We envisage this role being full time, however, we are open to considering flexible working arrangements.

For any queries or for a copy of the full job description, please contact our in-house recruiter, Sim Dhonsi. Please note we only accept CVs that are logged on the Recruitment portal.

At Pinsent Masons we value diversity and inclusion. We are committed to creating a better workplace where all our talent can succeed and feel like they belong. We want to attract, retain and develop people at all levels and encourage applications from all suitably qualified candidates whatever your ethnicity, religion, age, physical or mental disability/ long term condition, sexual orientation, gender identity or expression or any other characteristics protected by local law in the jurisdictions in which we operate