Junior Security Architect

We are looking to recruit a Security Architect / Engineer to join us on fast moving, innovative and influential work that is underway in the Defence and Security Sector.

You will have a challenging, vastly interesting, and technically diverse role.

Key Responsibilities and Tasks

• Risk Management within a Defence and Security Sector;

• Security / Cyber architectures are proportionate to the GSC of the systems;

• Apply security design specifics to develop the security architecture;

• Strategic direction of Security projects;

• Managing security risk for projects;

• Producing evidence to meet various MOD regulations;

• Designing options and solutions to mitigate vulnerabilities;

• Understanding the security implications of bringing cutting-edge technology to government;

• Working with various teams across the business including Software Engineering, DevSecOps Engineering, Infrastructure Engineering, Agile and Cyber Security.

Essential requirements

• Experience of working on risk assessments using industry approved methodologies (such as NIST, ISO 27005).

• Identification of suitable risk management activities (technical, physical, or procedural) to treat /mitigate the identified risks;

• Creation of security documentation to support the development of an information system, these could include: security Aspects, Risk Assessment, Risk Management, Security Policies, Security Test Plans/Results;

• High standards in written report and/or design documentation;

• Experience of working at the highest level of classified government systems;

• You must hold UK nationality (British Citizenship). You must be a sole British national;

• Valid DV Clearance with more than 6 months remaining.

Experience (Nice to have)

• Support development in a secure-by-design methodology;

• Working at a technical low level design level with the project team;

• Hands-on engineering experience (such as SIEM building, vulnerability management tooling deployment);

• Identification / design / selection of appropriate security components to provide security enforcing functions (e.g. network, endpoints, cryptography, authentication, authorisation, data inspection etc) for a variety of infrastructures including cloud environments;

• Legal and regulatory topics that merit consideration when conducting various activities in the field of cyber security;

• Knowledge of MOD policies (JSP 440, 604, 892)

• Knowledge and experience of Agile, DevSecOps, CI/CD principles and their application in secure environments

• Appreciation of the constraints and requirements imposed on development within secure, safety critical environments

• Concepts and technologies that are used to engineer systems which inherently protect systems;

• Understanding of MOD and other departmental IT in defence and security

• Experience of working with MOD Accreditors; and

• Knowledge of project tech stack includes but is not limited to Hyper-V, VMware stack, Docker, Kubernetes, etc.

Environment and Benefits

We have modern offices in Cody Technology Park and have well established remote working arrangements.

For potential employees we offer an attractive range of benefits, including:

• Exciting and interesting work

• Bonus scheme

• Casual dress

• Free hot and cold drinks in our own, modern kitchen/break-out

• Secure, on-site parking, cafe, restaurant and gym facilities

• Company events & social hours

• Professional Development Opportunities

• Perkbox Employee Benefits system

• Bike to Work scheme

• Competitive Salary & Benefits Package

• Contributory Pension Scheme

• Maternity / Paternity Pay

• Friendly & Supportive Team

Our SiXworks team is a fusion of brilliance, featuring senior operational, technical, and business leaders from various industries and the armed forces.

We're also powered by a league of extraordinary IT engineers, architects, developers, and project managers. Together, we're an unstoppable force of innovation!

SiXworks' expertise includes secure-by-design, cloud computing and services, advanced network, platform and infrastructure design, rapid application development, cross-security domain systems, multi-source data platforms, cyber vulnerability mitigation and intelligence systems.

SiXworks provides supplier-agnostic, technical and business consultancy to customers, and champions opensource and best of breed technologies.

To date we have worked exclusively in the Defence and Security Sector, providing IT innovation projects and programmes, analysis and output-based consultancy.

SiXworks is an IBM subsidiary which has been acquired by IBM and will be integrated into the IBM organisation. SiXworks will be the hiring entity. By proceeding with this application, you understand that SiXworks will share your personal information with other IBM subsidiaries involved in your recruitment process, wherever these are located. More Information on how IBM protects your personal information, including the safeguards in case of cross-border data transfer, are available here: https://www.ibm.com/privacy

To be eligible for the role, you must hold UK nationality (British Citizenship).

It would be advantageous if you have sole UK nationality, but if you hold dual nationality with one being British, you will still be considered. Please could other nationalities held be disclosed.