Location: Birmingham Job Type: Contract Industry: Cloud & Infrastructure Job reference: BBBH395445_1738670102 Posted: about 1 hour ago
Solution/Security Architect
4 months
Glasgow - Hybrid
£650 per day inside ir35
We need a solution architect to support the delivery of strategic cyber control solutions within the security governance, risk and compliance (GRC) sub-domain, covering vulnerability and compliance management, security governance and assurance, and risk management. Experience of working with Qualys, ServiceNow SecOps and Cloud Technologies would be an advantage, as well as agile methods and DevSecOps tooling.
Initial work focusing on solution architecture definition, including process, information and component architectures. Responsible for making sure solutions and their non-functional capabilities are defined and delivered (including observability, integration, security, service, domain separation etc). Projects include, but not limited to the following.
Vulnerability issue management supporting Spinnaker workflow Workplace (design assurance) replacement Third party risk management Ariba/ServiceNow spoke integration DevSecOps compliance tooling integration Pre-project sizing to support new initiatives
You will have the following responsibilities
You will lead and/or be accountable for defining security solution architectures as required across the business with a demonstrable level of expertise and capability for solution definition which includes governance, compliance, standards, risk, design patterns, collaboration, metric implementation, and guardrail management You will work collaboratively with the Enterprise Architects, bringing solution specific expertise into decision making You will support strategic architecture projects with detailed security solution architecture input ensuring that solutions are created securely with consideration to business outcomes and value You will always ensure that solutions are created with an absolute focus on overarching usability, and the associated service wrap. All solutions must always make a provable, tangible contribution to the value of a dependent service and integrate and complement one another, where appropriate You will create solution patterns and briefing documents that are reusable, repeatable, and transferable You will work collaboratively with both business and technical teams to help deliver security solutions including overseeing implementations of designs You will develop and own roadmaps for security technologies and processes that align to relevant strategies, policies, standards and practices You will support enterprise architects during vendor selection to help choose vendors that meet business requirement and drive the best value for money You will contribute to research including proof of concept and proof of value initiatives You will need to understand the implications of transformation by working with business technology stakeholders
You will have the following
Experience
Evidence of delivery in solution architecture in large scale complex environments Familiarity of the processes and artefacts associated with EA frameworks such as TOGAF A background that includes cyber security, ideally with operational/delivery /forensics/etc. Experience of contributing to or producing business cases, gaining approval from stakeholders and ensuring delivery of business benefits Have experience in being a subject matter expert in a technology field
skills
Be self-motivated, organised, proactive and flexible in your approach to work Be comfortable both challenging and working to strict deadlines
Ability to visualise, skills
articulate and solve complex problems and concepts Excellent communication and presentations skills with the ability to adapt to the target audience The ability to interpret stakeholders needs, business and technical issues Have an enquiring mind, thirst for knowledge and a willingness to learn
Qualifications
Possess a recognised formal security qualification in security such as CISSP, CISM, or have equivalent experience such as 5+ years in a security role
