Security Architect

Location: London, 4 days a week on site

Outside IR35 contract - (Apply online only) a day

We are looking for an SC, preferably DV cleared self-motivated and experienced Security Architect to lead in bringing enhanced and new services into what is key government asset. Working within a specialist services company you will drive and/or create the necessary artefacts to help the client organisation deliver rapid change. You will have excellent interpersonal skills and a pragmatic approach to getting change through delivered successfully through the internal Security Governance group.

Key Responsibilities:

The ideal candidate will have come from a strong technical background, and have an understanding of attack vectors for high threat environments, across both proprietary and open-source technology stacks. You will advise and enable technical teams to make security decisions and provide advice and guidance, ensuring the effective use of common tools and patterns. You will have a proactive responsibility to deliver secure systems and implement proportionate controls to enable successful business outcomes.

This role offers the opportunity to play a critical part in protecting some of the UK''s most sensitive information. If you thrive in an exciting and complex environment and can bring experience and delivery into the team then you will be able to make a real difference in this role.

What will you be doing?

- You will deliver technical security design, and/or provide assurance of technical security design, and be able to justify and communicate design decisions. Working closely with the Security function, you will be responsible for the design of architectures utilising leading edge technologies.

- Working to deliver some key enhancements and new services operating in the Tier2/3 security space, you will assist in setting the strategic direction for security architecture, including the development and implementation of frameworks that will assist in maintaining acceptable level of technical risk.

- You will recommend security controls and identify solutions that support business objectives.

- You will work out subtle security needs and understand the risk impact of vulnerabilities on existing and future designs and systems.

- You will advise on important security-related technologies and assess the risk associated with proposed changes.

- You will provide specialist advice and recommend approaches across teams and various stakeholders. You can manage stakeholders'' expectations and be flexible, adapting to stakeholders'' reactions to reach consensus.

Candidate Qualities.

Essential

- SC, willing to undertake DV Clearance

- Proven experience in Security Architecture within the Government cleared environments.

- You will have practical hands-on experience in security architecture and design and assessments including within programmes, projects or a product-centric organisation.

- You will have a good understanding of a broad range of industry-standard technologies, both proprietary and open source, across a diverse range of Microsoft and Linux-based deployments, across physical, virtual and containerised compute.

- You will have experience in securing Mobile devices and their services including device management (MDM) and their policies and Identity solutions.

- You will have experience in working in an architecture function and developing the vision, principles and strategy for security architects for a set of products, projects and technologies.

- You will have experience of working to, and assisting in the creation of, security standards, blueprints, reference architectures, roadmaps, transition states and target solutions across multiple services.

- You will have direct experience of interacting with, and influencing, senior stakeholders and a wide range of people across large teams, departments, suppliers and customers.

- Experienced process owner and team player

- Good communicator across all levels

Desirable

- You will have experience designing solutions utilising leading-edge security NDR, IDS and IPS tools like Corelight, Corvil (IPS/IDS), FireEye, Cisco Secure Network Analytics.

- You will have experience designing/assessing security architectures across a range of modern deployment technologies, including containerised workloads in Kubernetes and Docker Swarm/Enterprise, virtualised platforms such as VMware, and CI/CD pipelines using tools like Jenkins and Azure DevOps

- You will have strong networking experience including Mobile Networks (4G etc)

- You will have experience with non-Microsoft Operating Systems including iOS for Mobile

- You will have experience of providing security design and architecture expertise across the development lifecycle utilising both waterfall and agile methods.

- You will have experience of adopting security standards and frameworks (such as NIST Cybersecurity Framework, CIS Controls, MITRE ATT&CK) within public or private sector.

- You will have experience in creating/managing User and System usage policy documentation (SyOps ConOps etc for Government Systems.)