Lead Security Architect

Social network you want to login/join with:
AVEVA is creating software trusted by over 90% of leading industrial companies.
Job Title: Lead Security Architect
Employment Type: Full-time, permanent
The job
In the AVEVA Group’s Security function, the Director of Security Architecture leads on second line technical assurance to support the function’s Governance Risk and Compliance team in our three lines of defence model. The Lead Security Architect will be responsible for managing a team of security architects within this technical assurance team. They will be also be responsible for driving continuous improvement in the technical security assessment of the lifecycles of product and projects. They will work with GRC to develop the technical assurance and risk management processes.
Key responsibilities
Work with the Director of Security Architecture to refine existing product and project lifecycles by reducing friction in the technical assurance process and increasing automation.
Coordinate the running of the technical security Communities of Interest, a regular series of meetings that will draw together security specialists across the Group.
Provide support and guidance on technical aspects of policy, risk, and strategy to first line teams (eg. IT, products, and other functions). Contribute to the ongoing development and maintenance of a policy and standards library.
Lead investigations into technical security issues and track remediations as part of ongoing process improvement exercises. Root cause analysis will include people, process and technology, not just the technological aspect.
Leadership and mentoring
Ability to identify cyber security risks and propose remediations
Strong technical knowledge, combined with an understanding of industry frameworks and best practices
Excellent communication and interpersonal skills, with the ability to effectively communicate complex security concepts to both technical and non-technical audiences combined with good time management skills
The candidate’s experience & qualifications for this role should include the following:
Previous team leadership experience
Previous security architecture experience, or enterprise architecture/ solutions architecture with strong security angle.
Senior position in prior role with significant exposure to security and enterprise technology used in global business, particularly cloud technologies.
Experience with common information security and risk management frameworks, such as Mitre ATT&CK, International Organization for Standardization (ISO) 2700x and 31000, the ITIL, COBIT and National Institute of Standards and Technology (NIST) or Centre for Internet Security (CIS) frameworks.
A broad knowledge and understanding of the cyber security threat landscape and research.
The desirable experience and qualifications include the following:
5+ years of full-time dedicated experience in cyber security
Previous architecture experience, preferably with experience in a variety of sectors.
Exposure to working in or with Software Development teams is beneficial.
Familiarity with operations and security in industrial sectors such as, Energy, Manufacturing, Marine and Pharmaceutical industry sectors would be beneficial.
Familiarity with predominant public cloud providers (Azure, AWS, GCP)
Understanding of Industry trends in cloud technologies for public, private and hybrid cloud deployments
Bachelor’s degree in Computer Science, Engineering, Mathematics, related field; or equivalent combination of education/professional experience in a similar role
One or more technical security certifications, or being able to demonstrate significant progress towards. Eg:
CCSP – Certified Cloud Security Professional
CISSP – Certified Information Systems Security Professional
CSSLP – Certified Secure Software Lifecycle Professional
TOGAF – The Open Group Architecture Framework
SABSA – Sherwood Applied Business Security Architecture
Desired skills
Lead and inspire a team of technical experts
Have the curiosity to identify cyber security risks and propose remediations
Excellent communication and interpersonal skills, with the ability to effectively communicate complex security concepts to both technical and non-technical audiences
Customer focused mindset and is capable of flexing and delivering security solutions to meet the business needs by still achieving the high security standards
Growth mindset who is passionate to learn and use new/emerging technologies
Must work well independently and with others as part of larger team and be able to collaborate on cross-functional teams
Security at AVEVA
AVEVA is one of the oldest software companies, and yet remains at the forefront of bridging Industrial Technologies with Cloud and AI systems. AVEVA provides solutions which allow digitally connected communities to accelerate efficiency, agility and sustainability by building connected information ecosystems.
For our customers security is paramount, and we use the three lines of security approach to check and recheck that our people, process and technology can all be entrusted with our customers’ assets. This vacancy is to work in the Security Function, which acts as Second Line, assuring the digital, physical and human security of the AVEVA Group.
UK Benefits include:
Flexible benefits fund, emergency leave days, adoption leave, 28 days annual leave (plus bank holidays), pension, life cover, private medical insurance, parental leave, education assistance program.
It’s possible we’re hiring for this position in multiple countries, in which case the above benefits apply to the primary location. Specific benefits vary by country, but our packages are similarly comprehensive.
Find out more: aveva.com/en/about/careers/benefits/
By default, employees are expected to be in their local AVEVA office three days a week, but some positions are fully office-based. Roles supporting particular customers or markets are sometimes remote.
Hiring process
Interested? Great! Get started by submitting your cover letter and CV through our application portal. AVEVA is committed to recruiting and retaining people with disabilities. Please let us know in advance if you need reasonable support during your application process.
Find out more: aveva.com/en/about/careers/hiring-process
About AVEVA
AVEVA is a global leader in industrial software with more than 6,500 employees in over 40 countries. Our cutting-edge solutions are used by thousands of enterprises to deliver the essentials of life – such as energy, infrastructure, chemicals, and minerals – safely, efficiently, and more sustainably.
We are committed to embedding sustainability and inclusion into our operations, our culture, and our core business strategy. Learn more about how we are progressing against our ambitious 2030 targets: sustainability-report.aveva.com/
Find out more: aveva.com/en/about/careers/

#J-18808-Ljbffr