Senior Cyber Security Architect - Health Sector ...

Belfast, Bristol, Edinburgh, London, ManchesterBusiness Line Date published: 17-Mar-2025 Connect to your IndustryDo you want to be at the heart of some of the most interesting andpurposeful projects undertaken to support and protect our country’sHealth & Social Care sector? We are proud of the impact we havewith Health & Social Care clients, the strength of ourrelationships, and the variety of our skills and expertise that webring to help them achieve their mission. We’re growing our teamsacross all of Technology & Transformation and are keen toexpand our expertise in Health & Social Care. If you have anindustry background or expertise in how the Health & SocialCare sector works, we are very keen to hear from you. Connect toyour career at Deloitte Deloitte drives progress. Using our vastrange of expertise, we help our clients become leaders whereverthey choose to compete. To do this, we invest in outstandingpeople. We build teams of future thinkers, with diverse talents andbackgrounds, and empower them all to reach for and achieve more.What brings us all together at Deloitte? It’s how we approach thethousands of decisions we make every day. How we behave, ourbeliefs and our attitudes. In other words: our values. Whatever wedo, wherever we are in the world, we lead the way, serve withintegrity, take care of each other, foster inclusion, andcollaborate for measurable impact. These five shared values leadevery decision we make and action we take, guiding us to deliverimpact how and where it matters most. Connect to your opportunity ASecurity Architect operates as a senior member of the team,responsible for the design of technical security solutions,maintaining documentation, developing architecture patterns andapproaches for new technologies and solutions. As a senior memberof the team, the Security Architect also brings experience inmanaging and supporting people and helps others thrive in theircareers. The Security Architect will lead technical engagements andbring together technical security SMEs such as Identity, SecurityTesting, and Privacy to solve business problems. As a senior memberof the technical team, security architects must developrelationships with key stakeholders, understand a client's securitypolicy framework, and design solutions that will meet our clientrequirements. Our projects vary greatly, and your responsibility asa security architect will differ based on the focus of the clientengagement and your skillset, but could include and may require youto: - Understand clients’ policies and security landscapes andcreate vision, principles, and architecture solutions. -Articulate, communicate, and justify design decisions tonon-technical stakeholders. - Maintain relationships with seniortechnical and non-technical stakeholders. - Learn new technicalsolutions from vendors and articulate how they solve clientproblems by providing the technical design to be adopted(Architecture Patterns). - Collaborate with vendors and third-partypartners to ensure the security of external systems and dataexchanges. - Provide specialist technical advice, recommendedapproaches, recommended security controls, and identify solutionsthat meet client business objectives. - Develop and maintainsecurity architectures, ensuring alignment with business goals,industry standards, established patterns, and regulatoryrequirements. - Stay up to date with emerging security threats,technologies, and industry best practices, and providerecommendations for improvement. - Conduct security audits andassessments to identify gaps and recommend remediation actions. -Conduct risk assessments and scope vulnerability assessments toidentify potential security threats and vulnerabilities. Connect toyour skills and professional experience Candidates will be able todemonstrate relevant knowledge and experience through a combinationof qualifications and evidence of work history such as: -Information Security qualification (or equivalent) e.g. CISSP. -In-depth knowledge of security frameworks, standards, and bestpractices (e.g., ISO 27001, NIST, CIS, DSPT / CAF). - Experience asa Security Architect or in a similar role, with a strong trackrecord of designing and implementing security controls and/orsolutions and leading technical teams. - Experience witharchitecture methodology such as TOGAF or SABSA. - Experience ofthreat and risk modeling. - Strong understanding of networksecurity, encryption, authentication, and access controlmechanisms. - Experience with security technologies such asfirewalls, intrusion detection/prevention systems, securityinformation and event management (SIEM) systems, and vulnerabilityassessment tools, and their configuration options. - Familiaritywith cloud security principles and best practices, includingsecuring cloud-based infrastructure and services (AWS, Azure, orGoogle). - Experience of DevSecOps. - Experience of research intechnology trends and ways to secure those technologies. -Experience with automated deployment techniques and CI/CDpipelines. - Experience working in or with Governmentorganizations, especially within a Health and Social Care setting,including the handling of assets subject to the Government SecurityClassification Policy. - Knowledge of Government cyberrequirements, e.g. Secure by Design, JSP 440, CAF or equivalent. -Experience with public sector procurement and a keen interest inbusiness development. Connect to your business - Technology andTransformation Distinctive thinking, deep expertise, innovation,and collaborative working. That’s what connects us. That’s whatmakes us Deloitte. If you want to help solve some of the biggesttech and transformational challenges around, join us. Together,we’ll make an impact that matters. Cyber The modern world is morecomplex than ever before, and we are navigating an ever-changinglandscape. We help clients to operate with resilience and grow withconfidence to secure success and minimize risk. Personalindependence Regulation and controls are standard practice in ourindustry and Deloitte is no exception. These controls provideimportant legal protection for both you and the firm. We aresubject to a number of audit regulations, one of which requiresthat certain colleagues abide by specific personal independenceconstraints (e.g., in relation to any financial interests andemployment relationships). This can mean that you and your"Immediate Family Members" are not permitted to hold certainfinancial interests (shares, funds, bonds etc.) with audit clientsof the firm, and also prohibitions on certain employmentrelationships (e.g., you are not permitted to hold a secondaryemployment role with SEC audit clients of the firm whilst beingemployed by the firm). The recruitment team will provide furtherdetail as you progress through the recruitment process or you cancontact the Independence team upon request. Connect with yourcolleagues “The opportunities to make a difference here are huge.We’re constantly encouraged to come up with ideas, so a lot of whatwe do to drive change comes from within our own workforce.”“Innovation is at the heart of everything we do, so we’re using thelatest technologies to constantly improve how we deliver ourprojects and bring insights to our clients. It means I’m alwayslearning.” Our hybrid working policy You’ll be based in UK Widewith hybrid working. At Deloitte, we understand the importance ofbalancing your career alongside your home life. That’s why we’llsupport you to work flexibly through our hybrid working policy.Depending on the requirements of your role, you’ll have theopportunity to work in your local office, virtual collaborationspaces, client sites, and remotely. You’ll get the chance to meetface to face when needed, while you collaborate and learn fromcolleagues, share your experiences, and build the relationshipsthat will fuel your career and prioritize your wellbeing. Pleasecheck with your recruiter for the specific working requirementsthat may apply for your role. Our commitment to you Making animpact is more than just what we do: it’s why we’re here. So wework hard to create an environment where you can experience apurpose you believe in, the freedom to be you, and the capacity togo further than ever before. We want you. The true you. Your ownstrengths, perspective, and personality. So we’re nurturing aculture where everyone belongs, feels supported and heard, and isempowered to make a valuable, personal contribution. You can besure we’ll take your wellbeing seriously, too. Because it’s onlywhen you’re comfortable and at your best that you can make the kindof impact you, and we, live for. Your expertise is our capability,so we’ll make sure it never stops growing. Whether it’s from thecomplex work you do, or the people you collaborate with, you’lllearn every day. Through world-class development, you’ll gaininvaluable technical and personal skills. Whatever your level,you’ll learn how to lead. Connect to your next step A career atDeloitte is an opportunity to develop in any direction you choose.Join us and you’ll experience a purpose you can believe in and animpact you can see. You’ll be free to bring your true self to workevery day. And you’ll never stop growing, whatever your level.Discover more reasons to connect with us, our people, andpurpose-driven culture at deloitte.co.uk/careers#J-18808-Ljbffr