Principal Web Security Architect (45992)
Principal Web Security Architect (45992)
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
As a valued employee of the British Council you already help us deliver our mission to support peace and prosperity by building connections understanding and trust between people in the UK and countries worldwide. For over 90 years we have shaped brighter futures through education arts culture language and creativity.
You are part of our organisation in over 200 countries and territories and where we are on the ground in more than 100 countries.
We connect. We inspire.
Principal Web Security Architect
The Role:
We are looking for seasoned Principal Web Security Architect to join our Cyber Security team to work in tandem with the Principal Web Security Engineer to lead the strategy implementation and management of the corporate Content Delivery Network (CDN) and Web Application Firewall (WAF) to protect British Council assets from internet-based threats. This role ensures the security scalability and optimisation of web applications protecting them against cyber threats such as DDoS attack and other OWASP Top 10 vulnerabilities. It will collaborate closely providing expert guidance with technical business teams application development and other teams to strengthen the organisations cyber security posture.
Accountabilities:
The role involves leading the strategic implementation and management of web security measures to protect the British Councils digital assets from internet-based threats.
Working closely with the Principal Web Security Engineer the individual oversees a global team managing Akamai services (CDN WAF Bot Manager) ensuring secure onboarding and migration of services. They guide system owners on implementing effective controls ensure compliance with the Information Security Policy Framework and respond to penetration test findings. Responsibilities also include managing external DNS monitoring alerts from the National Cyber Security Center and overseeing secure certificate handling and domain scanning.
The role requires strong stakeholder engagement advising on risk assessments collaborating with internal teams and third-party suppliers and evaluating cloud service providers using established security principles. The individual drives service improvements through enhanced proxy protection traffic monitoring API security and automation initiatives. They also ensure external-facing systems are safeguarded against malicious IPs and non-human threats.
Expertise includes deep knowledge of Akamai services DNS systems SSL security and web archive solutions. The role demands a strong grasp of proxy protection vulnerability scanning and national cybersecurity frameworks. Additionally the individual manages and develops a Web Security Officer fostering growth and operational excellence within the team.
Requirements of the role:
- Significant experience working in a global IT related environment with WAF tool.
- Good understanding of the cyber security risks and potential mitigations associated with cloud and on-premises systems and services.
- Strong understanding of cyber security architecture design and web solution.
- Proven experience working in global IT environments with direct technical supplier management of large-scale vendors
- Maintenance of an Akamai CDN & WAF across a large global organisation with hundreds of websites and web applications
- Working with organisations to onboard websites and web applications onto an Akamai CDN & WAF
- Experience and understanding of the core components of digital networks and products/services that can used to protect them
- Good understanding of programming skills (C Phyton PHP JS Java .NET).
Closing Date: Applications will close at 23:59 IST/ 20:29 Poland time on Thursday 29 May 2025
You must have the legal right to work in Poland at the time of application.
Important Information:
Department:Information Governance and Risk Management
Contract type:Indefinite (Permanent) Contract
Pay band: 9
Location: Warsaw Poland
Requirements:
Please note that candidates must have the pre-existing legal right to work in Poland.
Mobility / relocation / visa sponsoring support will not be provided.
British Council supports working in new ways such as hybrid working subject to full approval by line management and conditional upon our ability to provide the appropriate level of service. This may not be appropriate for all roles but can be explored at interview.
A connected and trusted UK in a more connected and trusted world.
Equality Diversity and Inclusion Statement
We are committed to equality diversity and inclusion and welcome applications from all sections of the community as we believe that a diverse workforce gives added depth to our work. The British Council is a Disability Confident Employer. The Disability Confident scheme helps challenge attitudes increase understanding of disability and ensure staff are drawn from the widest possible pool of talent. We guarantee an interview for disabled applicants who meet the minimum role requirements. We welcome discussions about specific requirements or adjustments to enable participation and engagement in our work and activities.
Safeguarding Statement
The British Council is committed to safeguarding children young people and adults who we work with. We believe that all children and adults everywhere in the world deserve to live in safe environments and have the right to be protected from all forms of abuse maltreatment and exploitation as set out in article 19 UNCRC (United Nations Convention on the Rights of the Child) 1989. Appointment to positions where there is direct involvement with vulnerable groups will be dependent on thorough checks being completed in line with legal requirements and with the British Councils Safeguarding policies for Adults and Children.
If you experience any difficulties with submitting your application please email
Required Experience:
Staff IC
Employment Type
Contract
