Security Architect
Security Architect
Posted on :
07-04-2025
Employer Active
1 Vacancy
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Share
Send me jobs like this
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Job Description
We are currently recruiting for a Security Architect on behalf of a leading Global SATCOMS company based in the UK. So if you are a Security Architect and are looking for a new opportunity where you can make your career take off Quite Literally then look no further!
Key Responsibilities:
- Develop and maintain a security architecture process that enables the enterprise to develop and implement security solutions and capabilities that are clearly aligned with the business technology threat and customer drivers
- Develop security strategy plans and roadmaps based on sound enterprise architecture practices
- Develop and maintain security architecture artefacts (e.g. models templates standards patterns & procedures) that can be used to leverage security capabilities in projects and operations
- Track developments and changes in the digital business and threat environments to ensure that theyre adequately addressed in security strategy plans and architecture artefacts
- Participate in application and infrastructure projects and commercial product/service development activities to provide security design and consultancy advice
- Draft security procedures and standards to be reviewed and approved
- Determine baseline security configuration standards for operating systems (e.g. OS hardening) network segmentation identity and access management (IAM) and cyber products and services
- Develop standards and practices for data encryption and tokenization in the organization based on the organizations data classification criteria
- Conduct or facilitate threat modelling of services and applications that tie to the risk data and industry drivers associated with the service or application
- Validate IT infrastructure and other reference architectures for security best practices and recommend changes to enhance security and reduce risks where applicable
- Validate security configurations and access to security infrastructure tools including firewalls IPSs WAFs and antimalware/endpoint protection systems for both internal and commercial utilisation
- Review network segmentation to ensure the least privilege for network access
- Liaise with the Procurement team to conduct security assessments of existing and prospective vendors especially those with which the organization shares intellectual property (IP) as well as regulated or other protected data:
o Cloud/infrastructure as a service (IaaS) provider
o Managed service providers (MSPs)
o Payroll providers
- Evaluate the statements of work (SOWs) for these providers to ensure that adequate security protections are in place. Assess the providers SSAE 16 SOC 1 and SOC 2 audit reports (or alternative sources) for securityrelated deficiencies and required user controls and report any findings to the Director Security Engineering and Procurement teams
- Support the testing and validation of internal and commercial security controls as directed by the Director Security Engineering
- Review security technologies tools and services and make recommendations to the broader security and product development teams for their use based on security financial operational and commercial metrics
- Liaise with other security architects and security practitioners to share best practices and insights
Essential Knowledge and Skills:
- A bachelors or masters degree or equivalent in computer science information systems or another related field; or equivalent work experience is desired
- Professional security management certification such as a Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) Certified Information Systems Auditor (CISA) or other similar credentials is desired
- Formal training in a relevant enterprise architecture methodology (for example the Zachman Framework or TOGAF)
- Combined IT and security work experience with a broad exposure to infrastructure/network and multiplatform environments
- Expert knowledge of security issues techniques and implications across all existing computer platforms including datacentre networks cloud (IaaS/PaaS/SaaS) microservices and emerging/maturing technology platforms
- Experience in using an enterprise architecture methodology (for example Zachman TOGAF and Gartner frameworks)
- Knowledge of a securityspecific architecture methodology (for example SABSA).
- Knowledge or exposure to Cloud technologies such as IaaS SaaS & PaaS deployments with detailed knowledge of Azure & AWS being highly desirable
- Experience or exposure to projects involving the UK MoD and/or HMG Standards
- Individuals with SC clearance or who are eligible to apply for SC are highly desirable
Employment Type
Full Time
Key Skills
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
