Senior Security Architect

Job Description

Lead Security Architect (Cyber)

9-Month Contract

Inside IR35

£650

This role requires SC Clearance

The successful applicant will be responsible for:

• Analyse and assess cyber vulnerabilities at scale for their potential business impact, using your own skill and experience, and in consultation with business owners and other security specialists.
• Develop and maintain a comprehensive knowledgebase of guidance to enable technical and less technical people fix any cyber vulnerabilities they may have.
• Directly engage with stakeholders across the Public Sector to ensure they fix any cyber vulnerabilities we find, according to priority.
• Develop and maintain good working relationships with stakeholders across the Public Sector to help prevent cyber vulnerabilities. Actively support the implementation of Secure by Design principles.
• Work closely with the Government Cyber Coordination Centre (GC3), the UKs government’s focal point for cross-government collaboration on operational cyber security, and the Cyber Security Centre (NCSC) to ensure that we “Defend as One”
• Identify gaps in our capability and improve ways of working within the team to quantity and reduce the level of cyber risk that Public Sector bodies are exposed to.
• Train and upskill other members of the team to establish a lasting and functioning capability.
• Work with the service owner and customer organisations to identify gaps in our monitoring capability and improve and expand the scope of the vulnerability and threat data we can provide.

Who you are

At this role level, your skills include:

● Analysis

● Communication (security architect)

● Designing secure systems

● Enabling and informing risk-based decisions

● Research and innovation

● Security technology

• Knowledge of current cyber security threats, vulnerabilities and risks, including knowledge of the Open Web Application Security Project (OWASP).
• Ability to capture and quantify the potential business impact of successful cyber attacks to UK Public Sector bodies.
• Ability in specifying and implementing security controls and design patterns for infrastructure, network and applications, including within cloud architectures.
• Ability to interact with a broad range of people with different levels of technical skill, including senior stakeholders, to explain and encourage the implementation of security measures, and to work together to find solutions.
• Knowledge of the security advantages and vulnerabilities of common products and technologies.
• Knowledge of the marketplace of cybersecurity products and services
• Ability to write actionable cybersecurity advice, keep it current and relevant, and continually improve it based on user feedback.
• Ability to train and upskill other members of the team.

Professional qualifications:

Certified Cyber Professional (CCP),

CREST Registered Technical Security Architect,

BCS Practitioner Certificate in Information Assurance Architecture,

ISC(2) Information Systems Security Architecture Professional,

ISO27001 Lead Implementer.