Security Architect

Role Purpose:

Responsible for the organisation's technical activities to implement and manage security

infrastructure, defining and assessing the organization's security strategy, architecture, and

practices. Identifying the IT Security risks and constraints, translating into technical control

requirements and specifications, and managing the outcomes to deliver the required

objectives.

Salary and Benefits:

Along with a competitive salary of up to £70,000 depending on experience, we also offer

great benefits including:

• Up to 15% annual performance bonus

• Annual leave of 25 days + bank holiday entitlement

• Agile working arrangements with up to 2 days per week working from home

• Enrolment into our Pension Scheme, with a generous company contribution

Key Responsibilities:

• Ensures that security measures are incorporated into strategic IT plans and that

service expectations are clearly defined during IT project planning initiatives.

• Develops and maintains security architecture artifacts (e.g., models, templates,

standards and procedures) that can be used to leverage security capabilities in

projects and operations,

• Consult with IS architects, management and security staff, and relevant business units

to ensure that security is factored into the evaluation, selection, installation and

configuration of hardware, applications, online services and software.

• Continuously improve processes and ways of working within IT and the business in

relation to IS Security, leading and managing on-going initiatives to improve business

and IT compliance with legislative and regulatory instruments.

• Develops and maintains a security architecture process that enables the enterprise to

develop and implement security solutions and capabilities that are clearly aligned

with business, technology, regulatory and threat drivers

• Advise business stakeholders and support teams in their development of effective

security strategies for their areas, providing proper advice and counselling on security

policies and practices

• Define the principles, guidelines, standards, and solution patterns to ensure solution

decisions are aligned with the enterprise's future-state architecture vision.

• Assist the Lead Architect in producing multi-year architectural roadmap forecasts,

reflecting this in the IT plan/annual budgets and forecasts.

Skills, Knowledge, experience and Qualifications:

Essential:

• Minimum of 5+ experience in at least two IT solution development disciplines,

including technical or infrastructure architecture, application development, or cloud

development

• Previous experience developing architecture blueprints, strategies, and roadmaps.

• Documented experience and a strong working knowledge of the methodologies to

conduct threat-modelling exercises on new applications and services.

• Practical knowledge of the information security standards domain.

• Experience of working with external audit and certification organisations

• Familiar with the ISO27001 standard

• Knowledge of the NIS regulation and NCSC cyber assurance framework (CAF)

• Knowledge and understanding of digitalisation in a regulated environment.

Experience of scoping and managing competing and complex projects.

• Understanding and knowledge of system development life cycle methodologies (such

as waterfall, piral, agile software development, rapid prototyping, incremental,

synchronize and stabilize, and DevOps)

Desirable:

• Bachelor's degree in computer science, information-technology, engineering, system

analysis or a related study, or equivalent experience

• Previous experience of working as part of a Distribution Network Operator.