Cyber Security Architect

Cyber Security Architect

T00:00:00.000Z

London

Capabilities

full

Since our establishment in 1990, Methods has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK.

Our mission is to improve and safeguard public-facing services. We apply digital thinking to ensure the future of our public services is centred around our citizens.

Our human touch sets us apart from other consultancies, system integrators and software houses - we have a customer-centric value system whereby we focus on delivering what is right for our clients.

We passionately support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them.

Methods are experts in delivering secure, resilient cyber and information services - keeping systems and data safe.

We help reduce risk and vulnerabilities from cyber-attacks by developing a security road-map tailored to your unique needs.

We help organisations improve processes such as threat management by building an identity management programme, and establishing prevention, detection and response capabilities to cyber-attacks.

The Cyber Security Consultant will have the following responsibilities:

• Effective business acumen and an understanding of the cyber security challenges faced by client, with the ability to interact with senior stakeholders across departments
• Experience of identifying and applying security risk and familiarity with common control frameworks
• Managing, delivering and leading cyber security and cyber risk assignments, including producing documentation, reports, recommendations and quality assuring the work produced by team members.
• Working as a subject matter expert in your particular field to support a team and managing a larger team in delivering engagements at scale, with the appropriate reach and influence a across the teams and communities.
• Maintaining awareness of key business and industry trends and understanding how they impact responses to cyber risk.
• Ability to research, articulate and pitch complex and innovative architecture and security advice, at both business and technical levels, for new or existing problems and be able to justify and communicate design decisions directly to key customer stakeholders including senior management
• Working in a particular field as subject matter expert, to support a team in delivering engagements at scale, which may require subtle security needs
• Develop vision, principles and strategy for security architects for one project or technology
• Providing our clients with trusted advice, rooted in a pragmatic and agnostic understanding of their business situation and objectives, to help them navigate complex, risk-driven Cyber decisions.
• Able to understand and comprehend the impact of decisions, balancing requirements and deciding between approaches
• Investigating major breaches of security and recommending appropriate control improvements.
• Contributing to development of information security policy, standards, procedures and guidelines.
• Be the point of escalation for architects in lower grade roles, with the ability to lead the technical design of systems and services

Essential Skills and Experience:

• An experienced consultant with a background in Cyber Security

• Minimum 3-5 years of experience in Information Security related positions

• Minimum 2-3 years of experience in security architecture

• Certification in AWS or Azure for Architecture and Security or similar

• IASME / Cyber Essentials Plus Certified

• Knowledge of secure network architecture and technical design

• Experience in creating secure architecture in either AWS either/or Azure

• Experience providing expert strategy, risk and technical advice, guidance and support on cyber security, both in business-as-usual and for live and planned projects within our clients' business.

• Broad range of cyber and information security skills, knowledge and experience such as security threats and vulnerabilities that impact/and/or emanate from system hardware, software and other infrastructure components, and relevant strategies, controls and activities to prevent, mitigate, detect and resolve security incidents affecting system hardware, software and other infrastructure components.

• Able to gap analysis for specific domains, identify gaps in existing capabilities, service maturity. Identify missing cybersecurity and cyber-resiliency capabilities in alignment with changing business needs, threat land scape and technical requirements to increase the quality of the selected solutions also including topics such as products' convergence over time and products decommissioning

• Knowledge of identifying, developing and communicating threat modelling

• Demonstrably experienced in working as an effective member of a multi-disciplinary team

• Excellent stakeholder management, presentation and communication skills.

• Pro-active approach to personal and professional development.

• Must hold, or be able to hold, an HMG Security Check (SC) clearance.

• Ability to apply standards, practices, codes and assessment of certification programmes relevant to the IT industry and the specific organisation or business domain.

• Knowledge of the IT/IS infrastructure (e.g databases and LANs) and the IT applications and service processes used within own organisation, including those associated with sustainability and efficiency.

• Ability to use any tool or system which provides security access control (e.g Active Directory)

• Showing proficiency in the principles and application of cloud/virtualisation (including ownership responsibilities and security implications) and be able to use tools and systems to manage virtualised environments e.g Server/desktop virtualisation and SDDC (Software Defined Data Centre).

• Experience in writing and creating Cyber Security documents i.e. Risk Assessments, ESRM, DPIA etc and produce particular patterns and support quality assurance

Desirable Skills & Experience:

• Certification in AWS or Azure for Architecture and Security or similar
• Security Certification e.g ISC2 CISSP, ISC2 CCSP, ISACA CISM or similar
• Knowledge of evolving digital technology/applications e.g. AI/Digital twins/IoT
• Knowledge of principles, practices, tools and techniques of IT auditing.
• Experience working on central government, local government and public corporations projects and deliverables
• Experience in the discipline associated with data sets so large and/or...