Security Architect

Role : Security Architect
Location : London
Contract Role

Job Description:

1. Strong experience in building secure web and mobile apps
2. Experience with Security architecture, Application Security assessments, penetration testing, vulnerability assessment, Secure SDLC, and Static code reviews
3. Certified Secure Software Lifecycle Professional (CSSLP) (desirable)

Responsibilities:

- Design, develop, and implement security frameworks and solutions to safeguard company's assets and infrastructure.
- Conduct regular security audits and risk assessments to identify and address potential vulnerabilities.
- Develop and maintain security policies and procedures in accordance with industry standards.
- Configure and manage security tools, such as firewalls, intrusion detection systems, and encryption technologies.
- Monitor network traffic and system logs for suspicious activity and respond to security incidents in a timely manner.
- Stay updated on the latest security threats and trends to anticipate potential risks and adapt security strategies accordingly.
- Collaborate with IT teams to ensure that security measures are integrated into all aspects of technology development and implementation.
- Conduct employee training programs to promote awareness of security best practices and protocols.

Requirements:

- Bachelor's degree in Computer Science, Information Technology, or a related field.
- Minimum of 5 years experience in IT security with at least 2 years in a Security Architect role.
- In-depth knowledge of network security, authentication protocols, encryption technologies, and other security tools.
- Experience in conducting security audits, risk assessments, and creating security policies.
- Strong understanding of industry standards, regulations, and best practices (e.g. ISO, NIST, GDPR).
- Excellent problem-solving and analytical skills with the ability to think critically and adapt to changing situations.
- Excellent communication and interpersonal skills with the ability to collaborate effectively with cross-functional teams.
- Industry certifications such as CISSP, CISM, or similar are desired.