Security Architect

Social network you want to login/join with:

• Searchability NS&D has a permanent opportunity for an Security Architect to work across an exciting range of projects
• Must have active MOD DV Clearance
• Day rate up to £675 Outside IR35
• Role is based in Farnborough – 3/4 days on site per week

WHAT WILL THE SECURITY ARCHITECT BE DOING?

• Risk Management within a Defence and Security Sector;
• Security / Cyber architectures are proportionate to the GSC of the systems;
• Security architectures are delivered in conjunction with other IT Architects and SMEs;
• Apply security design specifics to develop the security architecture;
• Strategic direction of Security projects;
• Producing evidence to meet various MOD regulations;
• Designing options and solutions to mitigate vulnerabilities;
• Working with various teams across the business including Software Engineering, DevSecOps Engineering, Infrastructure Engineering, Agile and Cyber Security; and
• Either holds or has recently held government security clearance already, or is suitable for and willing to go through the vetting process (suitability would include an absence of a serious criminal record, a right to work and live in UK and, preferably, a record of 5 years’ UK residency),

SKILLS & EXPERIENCE DESIRED:

• Able to perform Risk management using industry approved methodologies (such as NIST 800-53). Identification of suitable risk management activities (technical, physical, or procedural) to treat /mitigate the identified risks;
• Support development in a secure by design methodology;
• Be able to work at a technical level with teams;
• Identification / design / selection of appropriate security components to provide security enforcing functions (e.g. network, endpoints, cryptography, authentication, authorisation, data inspection etc) for a variety of infrastructures including cloud environments;
• Legal and regulatory topics that merit consideration when conducting various activities in the field of cyber security;
• Creation of security documentation to support the development of a system, these could include: security Aspects, Risk Assessment, Risk Management, Security Policies, Security Test Plans/Results, Evaluation documents;
• Knowledge of JSP 604 / 453 and creation if assurance artefacts; and
• High standards in written report and design documentation.

DESIRABLE:

• Knowledge and experience of Agile, DevSecOps, CI/CD principles and their application in secure environments
• Appreciation of the constraints and requirements imposed on development within secure, safety critical environments
• Concepts and technologies that are used to engineer systems which inherently protect systems;
• Understanding of MOD and other departmental IT in defence and security
• Experience of working with MOD Accreditors; and
• Knowledge of Onsite / project tech stack includes but is not limited to Azure, AWS, Docker, Kubernetes, Apache (NiFi, Kafka), NodeJS, Typescript, MongoDB, AI, Machine Learning etc.

Please either apply by clicking online or emailing me directly to [emailprotected] - I can make myself available outside of normal working hours to suit from 7am until 10pm. If unavailable, please leave a message and either myself or one of my colleagues will respond. By applying for this role, you express consent for us to process & submit (subject to required skills) your application to our client in conjunction with this vacancy only. Also feel free to connect with me on LinkedIn, just search Shaun Varley. I look forward to hearing from you.

SECURITY ARCHITECT

KEY SKILLS:

SECURITY / ARCHITECT / DEFENCE / GOVERNMENT / SECURITY CLEARED / SECURITY CLEARANCE / SECURITY CHECK / DEVELOPED VETTING / DEVELOPED VETTED / DV CLEARED / DV CLEARANCE / DEEP VETTED / DEEP VETTING