Security Architect

Job Description:

Job Title: Security Architect
Location: Erskine, with travel to client sites
Salary: Competitive
Security Clearance: MOD SC (willing and able to obtain DV)

About DXC Technology

DXC Technology is a global IT services leader, providing cutting-edge technology solutions to modernize and secure IT infrastructure. With expertise in cybersecurity, cloud computing, and digital transformation, DXC empowers organizations to achieve operational excellence.

Role Overview

As a Security Architect, you will be responsible for enhancing the security posture of DXC's client services by ensuring full compliance with the NIST 800-53 framework. You will evaluate existing security controls, map them to NIST standards, and develop new controls and documentation to improve compliance and overall security.

Key Responsibilities

1. Architect and oversee the implementation of security solutions in compliance with NIST 800-53.
2. Work closely with the customer's architecture team to develop and implement security strategies.
3. Identify security risks, define security requirements, and recommend remediation strategies.
4. Develop and enforce security policy standards to ensure compliance with customer security requirements.
5. Provide technical leadership on security projects and mentor junior team members.
6. Stay up to date with DXC's portfolio of security products and services, recommending best-fit solutions.
7. Support incident investigations and security control enhancements.
8. Ensure security architectures align with industry frameworks such as TOGAF and SABSA.

Key Deliverables

1. Gap Analysis Report: Assessing current security posture against NIST 800-53.
2. Security Control Mapping: Documenting alignment of existing controls with compliance frameworks.
3. Implementation Plans: Designing and deploying new security controls.
4. Updated Security Documentation: Policies, procedures, and system security plans.

Essential Qualifications & Experience

1. BSc/MSc in IT Security or a related field, or relevant industry experience.
2. 5+ years of experience in security architecture, with at least 2 years in a similar role.
3. Strong knowledge of NIST 800-53, ISO27001, PCI DSS, and COBIT.
4. Experience with security frameworks (SABSA, TOGAF).
5. Understanding of threat and risk analysis methodologies.
6. Experience in cloud security (Azure, AWS, Google).
7. Ability to work in high-security HMG and MOD environments.

Desirable Certifications

1. CompTIA Security+, CISSP, CISM, CCSP, TOGAF, SABSA SCF.
2. CESG Certified Cyber Professional (CCP) in Security Architecture or Risk Management.
3. ISO27001 Lead Auditor.

Why Join DXC Technology?

At DXC, you will work on high-profile security projects, collaborating with some of the industry's top professionals. We provide a dynamic, high-security environment where your expertise will directly contribute to national security and business resilience.