Security Architect in Havant, Hampshire

Security Architect
Hybrid - could be up to 1 day a week
6 months
£650 - £680 p/d INSIDE IR35

This is a security architecture role focused primarily on scoping project cybersecurity requirements and applying cybersecurity protection techniques to project designs.

The role demands specialist information security knowledge, good knowledge of the Azure cybersecurity product range and the ability to think, communicate and write at various levels of abstraction.

(NB: Security operations such as incident detection, response or recovery do not play a major part in this role).

Functional and Technical Skills
* In-depth knowledge and understanding of information security concepts, principles and associated protocols.
* Expert knowledge of security issues, implications and protection techniques across a wide variety of cloud and computer platforms. This includes technical areas such as: network segmentation; identity management and access control; and cryptography and its applications as well as designing for manageability.
* Ability to analyse and contribute to high level architectures and derive security controls commensurate with enterprise security needs.
* Experience using common information security management frameworks - especially National Institute of Standards and Technology (NIST) frameworks.
* Familiarity with relevant legal and regulatory requirements, such as the UK Data Protection Act 2018.
* Highly desirable to have specific knowledge of the Azure cybersecurity product range, especially related to application transformation & packaging
* Ability to work within both waterfall and agile implementation frameworks.
* Formal training and experience in a relevant architecture method (for example: TOGAF) is preferred.
* Appropriate professional security certifications (such as CISSP or SABSA) are helpful.

Key Accountabilities

* Works closely with enterprise architects, enterprise security strategy and other functional area architects to scope security requirements and to define appropriate security controls to be designed into IT systems and platforms: commensurate with identified risks, corporate objectives and regulatory requirements.
* Serves as a security expert in application development, database design, network and/or platform implementations, advising project teams on how to comply with enterprise security strategy, IT security policies, industry regulations, and best practices. The role may also include detailed design of controls.
* Communicates residual security vulnerabilities and possible mitigations to the security officer (who is responsible for formal risk assessment and security acceptance into live operation).

Experience
The candidate is likely to have several years of combined IT and security work experience, with a broad exposure to infrastructure/network and multiplatform environments including cloud (especially Azure).

Disclaimer:

This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.