Role Purpose:
Responsible for the organisation's technical activities to implement and manage security
infrastructure, defining and assessing the organization's security strategy, architecture, and
practices. Identifying the IT Security risks and constraints, translating into technical control
requirements and specifications, and managing the outcomes to deliver the required
objectives.
Salary and Benefits:
Along with a competitive salary of up to £70,000 depending on experience, we also offer
great benefits including:
• Up to 15% annual performance bonus
• Annual leave of 25 days + bank holiday entitlement
• Agile working arrangements with up to 2 days per week working from home
• Enrolment into our Pension Scheme, with a generous company contribution
Key Responsibilities:
• Ensures that security measures are incorporated into strategic IT plans and that
service expectations are clearly defined during IT project planning initiatives.
• Develops and maintains security architecture artifacts (e.g., models, templates,
standards and procedures) that can be used to leverage security capabilities in
projects and operations,
• Consult with IS architects, management and security staff, and relevant business units
to ensure that security is factored into the evaluation, selection, installation and
configuration of hardware, applications, online services and software.
• Continuously improve processes and ways of working within IT and the business in
relation to IS Security, leading and managing on-going initiatives to improve business
and IT compliance with legislative and regulatory instruments.
• Develops and maintains a security architecture process that enables the enterprise to
develop and implement security solutions and capabilities that are clearly aligned
with business, technology, regulatory and threat drivers
• Advise business stakeholders and support teams in their development of effective
security strategies for their areas, providing proper advice and counselling on security
policies and practices
• Define the principles, guidelines, standards, and solution patterns to ensure solution
decisions are aligned with the enterprise's future-state architecture vision.
• Assist the Lead Architect in producing multi-year architectural roadmap forecasts,
reflecting this in the IT plan/annual budgets and forecasts.
Skills, Knowledge, experience and Qualifications:
Essential:
• Minimum of 5+ experience in at least two IT solution development disciplines,
including technical or infrastructure architecture, application development, or cloud
development
• Previous experience developing architecture blueprints, strategies, and roadmaps.
• Documented experience and a strong working knowledge of the methodologies to
conduct threat-modelling exercises on new applications and services.
• Practical knowledge of the information security standards domain.
• Experience of working with external audit and certification organisations
• Familiar with the ISO27001 standard
• Knowledge of the NIS regulation and NCSC cyber assurance framework (CAF)
• Knowledge and understanding of digitalisation in a regulated environment.
Experience of scoping and managing competing and complex projects.
• Understanding and knowledge of system development life cycle methodologies (such
as waterfall, piral, agile software development, rapid prototyping, incremental,
synchronize and stabilize, and DevOps)
Desirable:
• Bachelor's degree in computer science, information-technology, engineering, system
analysis or a related study, or equivalent experience
• Previous experience of working as part of a Distribution Network Operator.
