Job Description

The team you'll be working with:

The AWS Cloud Security Architect will be responsible for the architecture and design and ongoing development of the security architecture of the client's IT systems.

The AWS Cloud Security Architect will draw upon Enterprise Security Architecture or Security Solutions Architecture to:

- Identify business objectives, user needs, risk appetite and cyber security obligations

- Identify vulnerabilities, perform threat modelling, undertake risk assessment, evaluate the effectiveness of security controls

- Verify and evidence alignment to 'Secure by Design' principles, corporate security policy/standards as well as industry recognised frameworks and best practice"

What you'll be doing:

Develop, deliver and continually enhance a coherent approach to the design of secure client end-to-end solutions Develop secure conceptual, logical and high level designs by identifying appropriate security controls to be embedded in solutions that meet business requirements whilst evidencing alignment to the target risk appetite. Own the design and be able to articulate and justify design recommendations at security architecture assurance gates Draft design documentation, options papers, risk assessments, stakeholder presentations and be able to effectively communicate these to both senior technical and non-technical stakeholders Contribute to a reference architecture of established patterns, principles and guidelines Research emerging technologies, new products and be able to position these in a coherent manner against the developing threat landscape and client risk appetite Ability to distil complex information and concepts into key discussion points that identifies a path to resolution rather than only the identification of challenges Contribute to the development of the Security Practice skills and capabilities to ensure consistent high quality of service delivery and expertise. Active coaching and mentoring of junior members of the team Strong stakeholder management and relationship building skills at senior levels that will enable consensus building in the shaping of secure client solutions Shaping, leading and delivering value through security advisory consultancy and through guiding secure transformational delivery engagements.

What experience you'll bring:

Proven success in designing secure architectures for large-scale cloud-native applications and hybrid-cloud deployments AWS as principal cloud skill set AWS architecture and solution experience covering a wide range of cloud services and AWS security products for example: AWS security products: IAM, KMS, GuardDuty, Security Hub, Inspecter, Shield, WAF, Config, Macie, CloudTrail, Secrets Manager, Artifact, VPN, Firewall Manager, CloudWatch, Trusted Advisor Design and deployment experience with multi-tier architecture, microservices and serverless (Kubernetes) AWS hands on experience, especially with AWS security services, familiarity with AWS services and features. Note: Role will not include hands-on configuration - but proactitioner skills and experience are essential. (Software or infrastructure engineering for public cloud) Knowledge of CI/CD pipelines and tools. Comfortable working closely with engineering (DevOps) teams to help define architecture Experience with refactoring applications to kubernetes in public cloud (AWS). Using a variey of kubernetes and containerization services with a strong focus on secure by design. Candidate must have strong solution architect background 10 + years in information security, with a focus on cloud security, security architecture & design and DecSecOps A track record of delivering security solutions for large-scale infrastructure, transformation or integration programmes Practical knowledge and understanding of industry security frameworks and guidance such as NIST CSF, NIST 800-53, NCSC CAF and other NCSC guidelines Good knowledge of networking (switching, routing, firewalls) In-depth knowledge of modern security concepts, common attack vectors, malware, security analytics and threat intelligence. A good understanding of security testing and vulnerability management is important (including pen testing/ITHC, CVSS/CVE) Experience working with security standards such as ISO 27001, 27002, 27017, 27108 etc

DESIRABLE SKILLS AND EXPERIENCE

Experience with Azure and GCP Experience of undertaking AWS security design reviews. Ability to document designs, for example HLD and LLD docs. Security and Compliance: experience with security best practices in AWS environments. "AWS certifications (or equivalent experience):

- AWS certified solutions architect

- AWS DevOps engineer

- AWS certified security speciality

- AWS certified sysops administrator"

Experience with non-AWS security technologies: vulnerability management, SIEM, PAM, EDR, IDPS, Firewalls, Treat Intelligence, DLP, Pen Testing, etc Candidate should have some enterprise architect experience CISSP, CISM, CCSP, CRISC or equivalent experience Familiarity with MITRE ATT&CK Familiarity with ITIL

We also work within Public Sector clients where UK Gov. Defence Vetting to such as SC is required, as such you hold or be eligible to hold UK Gov vetting

Who we are:

We’re a business with a global reach that empowers local teams, and we undertake hugely exciting work that is genuinely changing the world. Our advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects.

Our inclusive work environment prioritises mutual respect, accountability, and continuous learning for all our people. This approach fosters collaboration, well-being, growth, and agility, leading to a more diverse, innovative, and competitive organisation. We are also proud to share that we have a range of Inclusion Networks such as: the Women’s Business Network, Cultural and Ethnicity Network, LGBTQ+ & Allies Network, Neurodiversity Network and the Parent Network.

For more information on Diversity, Equity and Inclusion please click here: Creating Inclusion Together at NTT DATA UK | NTT DATA

Back to search Email to a friend Apply now

Apply

Listen to the story of Employee Voice

Alejandro Hernandez

Agile Coach/Digital Strategy Consultant for the Banking Sector

Chile

Read more

Giuseppe Cuciniello

International Business Development and commercial planning

Italy

Read more

Ianca Caroline Nascimento Linhares

Agility Trainee

Brazil

Read more

Apply Back to search results