Senior Security Solution Architect

Job description

Leeds or Edinburgh – 2 days a week, onsite

As a Solution Architect with a security specialism, you will:

• Work with Product Owners, Platform Leads, Enterprise Architects and Engineers within CSO to develop and maintain the architecture that underpins our regulatory and compliance monitoring capability

• Design, build and drive end-to-end solution designs that are not only technically sound, but also include regulatory, commercial and organisational aspects when appropriate

• Use industry best-practice, frameworks, standards and policies to create opportunities and value for our teams and customers

• Elicit requirements, shape and validate designs or prototypes that deliver customer outcomes that align to our target architecture for compliance and regulatory monitoring

• As a subject matter expert, set guiding principles and solution success criteria and provide oversight in building quality, decoupled and modernised architectures

• Support Product Owners and Platform Leads in identifying, articulating and impact assessing software and infrastructure currency risks or issues

• Confidently offer options and recommendations on action planning and continuously ever-greening solutions/systems

What you’ll need

• Join the Secrets Management team within the Chief Security Office (CSO)

• Assess and understand the current use of our secrets management solution

• Lead efforts to use of solutions in appropriate environments to align with client's risk appetite

• Collaborate with stakeholders to gather and validate existing requirements for Secrets Management

• Evaluate and recommend alternative Secrets Management solutions suitable for Disconnected use cases within client

• Ensure proposed solutions meet security, compliance, and operational standards.

• Established systems engineering or solution architecture experience in multi-disciplinary product, feature or platform teams

• Knowledge of secure configuration and deployment practises such as Infrastructure-as-Code and tools such as Terraform, Harness and GitHub

• Strong knowledge of regulatory and compliance frameworks

• Strong knowledge of Google Cloud Platform (GCP) and Azure and both their security services

• Superb communication skills - especially visually and through “telling the story”, using the data to communicate complex messages in an accessible and compelling way

• Be able to distil sophisticated information and present in a succinct and clear format through both written and oral presentation, allowing you to influence collaborators with little or no technical knowledge, guiding their thinking on the art of the possible through technology

• Established experience partnering with other collaborators such as Enterprise, Security, Data and Infrastructure architects

• Hold proficient experiences leading activities associated with Architectural Governance, Risk Management and Compliance processes

If this position sounds like something you'd be interested in, we'd love to hear from you!