Senior security architect

Job type Home based

An exciting opportunity to join our client team within a growing ICT Services company with a global portfolio, as a Lead Security Architect in our Engineering and Solutions team.

With an extensive history that extends over 125 years, our client has nearly 4,500 employees in 22 countries across Europe, Asia Pacific & Latin America, and has a complete portfolio of integrated ICT services for the large enterprise and public sector markets. This includes Workspace, Applications, Unified Communications, Data Centre, Cloud, Consulting, Partner Technology, Managed Services and Security.

Also, our client is a leading member in the Global Workspace Alliance, a unique model that provides customers with a consistent IT service throughout the world, with one single point of contact and billing entity, delivering services to over 100 countries. The GWA manages 9.9m workspace assets globally, and was ranked number 3 by OVUM among other leading global vendors for workplace management.

Last but not least, our client support its employees to become experts in their field though development by an in house University and an internal recruitment program.

 

Team Purpose

As an IT Service Provider, our client is increasingly required to demonstrate security capability and Compliance to gain the trust and confidence of our clients. The security team is tasked to be able to respond to this position, to give our clients the assurance that their services are secure and to be a trusted advisor on all matters relating to security.

 

Job summary

As a Security Architect you will be a part of an architecture team within the Office of the CISO that sets the vision and overall design of our solutions. You will work and develop opportunities with sales, vendors and internal stakeholders to improve the security posture of existing and new technologies and procedures.

 

Job details

This is a new role within the team and is a highly skilled and client facing role being established in order to develop a trusted partner reputation for Our client in dealing with client IT security requirements.
The successful candidate will need to lead Pre-sales opportunities for Our client on all security matters to its clients.
The role requires the ability to engage in opening discussions with stakeholders, rapidly identify their issues and both outline and effectively communicate solutions appropriate to resolving their issues.
In addition to delivering high value to both clients and our client, this role will play a key part in shaping and delivering the security roadmap that will encompass revenue growth, profitability, and proposition innovation.
The candidate must ensure a high level of proactive security processes are maintained across the our client proposals to customers.
The Senior Security Architect is responsible for leading the solution design, compliance requirements and adding the security wrappers to all solutions proposed by our client.

 

WHAT YOU’LL DO & Responsibilites
  • Be the Authoritative voice on Security matters for our client Services.
  • Be conversant with modern Security requirements and processes including ISO, PCI DSS and Data Protection
    standards.
  • Be aware of and conversant with the security services marketplace and developments.
  • Respond and create standard responses to RFQ Security Questions, RFPs,etc.
  • Work closely with the Group Security team to continually develop the Security Profile for our client.
  • Working in collaboration with our client International to continue to develop and document the Security
    portfolio offering generating all portfolio readiness collateral, propose and manage external security partnerships that
    would allow our client to offer in its portfolio specific security services (SOC, Consultancy, IDS, Pen testing) and map this
    to renewals and pipeline.
  • Partner with multiple projects and initiatives to apply security architecture requirements, develop solutions,
    integrate security into solution designs, access risks of security gaps, and develop architecture remediation.
  • Works with customers to gather requirements and deliver high-level design solutions
  • Work closely with other teams to implement secure design principles, processes, and tools.
  • Building and enhancing the security skills and capability with the Presales Solutions team
  • Design Security Monitoring and Threat monitoring solutions.
  • Ensure processes are in place to ensure actions are taken when threats are identified.
  • Liaise with Client CSO level employees to ensure visibility of Security activities and that they meet client
    contractual requirements and expectations.
  • Manage the governance process for IT security across new opportunities.
  • Create and maintain secure design and architectural processes.
  • Leverage your deep knowledge of cloud architecture and security to guide development teams.
  • Document and communicate architectural decisions via documents and presentations.
  • Provide input on technology selection and help drive best practices.
  • Identity emerging patterns of risk within our solutions and design solutions to mitigate those risks.
  • Drive technical decisions with an eye towards security, scalability, and maintainability.
  • Help define overall architectural principals, frameworks, and standards.
  • Contribute to the architecture strategy as it aligns to cutomers and our client roadmaps.
  • Assist with threat modeling against both existing and proposed solutions.
  • Provide mentorship on security best practices to cients and internally.
  • Commercial understanding

 

Skills/Experience
  • You are well rounded – you understand the nuance between cloud and on-premise solutions, and the security
    implications of each.
  • You strive to make Security a “Secure by Design” solution.
  • You have a wdide variety of security tool knowledge and know the best choice for any particular task.
  • You understand that documenting and explaining security architecture is just as important as designing it.
  • You understand short-term goals, but always keep your eye on the bigger picture.

 

Skills targeted
  • You’ve designed and built enterprise solutions for international orginisations
  • Your designs fit in with our client Portfolio and you will contribute to enhancing the portfolio where required.
  • You understand how to optimize for cost, performance, and time to market – and which one to choose for a
    given situation.
  • You communicate well with all aspects of the business and understand ITIL processes.
  • Understands how to to optimize cloud infrastructure.
  • You understand short-term goals, but always keep your eye on the bigger picture.
  • Preferably educated to degree level in a technology discipline.
  • Deep understanding of Security Operations centre and its capabilities
  • Significant experience in a senior IT security related role in a large multi sector environment.
  • Demonstrates knowledge of IS027001, EU GDPR and PCI-DSS, SOX Sarbanes,HIPPA.
  • Demonstrates thought leadership in all aspects of security
  • Significant experience in information and cyber security domains including Sales, pre-Sales, Projects and
    Service Readiness
  • Ability to manage and deliver projects, including development of project plans, project goals and objectives,
    tasks, required resources, and timelines for completion.
  • Understanding of the Techniques, Tools and Processes in use by hackers.
  • Develop security solutions utilising Cloud Technologies AWS , Azure and hybrids using the cloud frameworks
    such as Cloud Security Alliance (CSA)
  • Design global cloud security solutions that meets the requirements of CIS and NIST controls in multi cloud
    environments
  • Design & Develop Security solutions as Cloud-specific , On prem and Hybrids in at least 3 of these areas
    • Compliance Standards
    • Azure \ AWS cloud solutions
    • Virtualisation platforms
    • Identity and Access Management (SSO, SAML)
    • Privilege Management, Firewall management,
    • EDR
    • NDR
    • SSL/IPSec, Encryption Key Management (BYOK),
    • Security incident and event management (SIEM) together with our SOC,
    • Data protection (DLP, encryption),
    • Vulnerability Management in partnership with our SOC and delivery teams.
    • SETA
    • Data Management \ Data Classification
    • IDS
    • Firewall Technologies
    • ITSM – ServiceNow ideally
    • Kubernetes – Container Security
  • Client facing with an ability to present Cloud solutions during different phases of the lifecycle which can
    include assessments , design, and implementation.
  • Good understanding of security related technology like firewalls, WAFs, IDS/IPS systems, SIEM systems, etc.
    Hands-on experience in one of these domains is always a plus.
  • Analytical thinking and problem-solving skills with focus on results and customers.
  • Flexibility and ability to work in a multinational and multicultural environment.
  • Experience of multi-vendor, managed outsourcing environments.
  • Overseeing and conducting risk management activities (risk assessment, gap analysis, business impact analysis,
    threat and vulnerability evaluations, etc.) to help the enterprise reach an acceptable level of risk.
  • Track record of managing people, financials & projects to time, quality & budget.
  • Excellent Communications skills to C level and senior stakeholders within client organisations.
  • Excellent presentation skills.
  • A confident self-starter

 

Qualification/Certification requirements
  • Educated to degree level with considerable professional experience gained over 10 years’ operating at a senior
    level in private or public sector with a demonstrable track record of managing risk & operational security services is
    essential.
  • Industry accepted IT Security certifications e.g. CISSP- ISSMP, SANS, TOGAF.
  • Cloud certification in Azure Security , AWS Security

 

Useful Languages
  • English
  • Spanish
  • German
  • French