Senior Security Architect
Be among the first applicants.
Mindworx Consulting
Johannesburg
ZAR 600 000 - 1 000 000
Be among the first applicants.
Today
Job description
- Develop and maintain the security architecture frameworks, reference model, standards, principles and guidelines in line with the Company enterprise architecture and information and communication technology (ICT) strategy.
- Monitor compliance and implementation of the security architecture as per the approved design.
- Research and stay abreast of the threat landscape and the latest developments to mitigate cybersecurity risks to ensure that they are adequately addressed in security strategy plans and architecture artefacts.
- Develop and maintain security reference material (security reference architectures, patterns and standards) to be referenced as part of the enterprise and solution architect deliverables.
- Establish and maintain an inventory of security controls and mechanisms and classify inventory according to the security reference model.
- Develop security strategy plans and roadmaps based on sound enterprise architecture practices.
- Review security technologies, tools and services, and make recommendations to the broader security team based on security, financial and operational metrics.
- Liaise with the Company cyber security team members to share best practices and insights.
- Act as an advisor within the Company’s business units to ensure adherence to the security architecture principles, standards, patterns and guidelines.
- Coordinate with other ICT stakeholders to document data flows of sensitive information in the Company and recommend controls to ensure that this data is adequately secured (e.g. encryption and tokenisation).
- Provide regular reporting on the state of the security landscape and posture and make recommendations on addressing the threats and mitigating risks.
- Validate the IT infrastructure and other reference architectures for security best practices and recommend changes to enhance security and reduce risks, where applicable.
- Review architecture definitions and ensure the inclusion of security controls and mechanisms therein, in accordance with security architecture patterns, standards and principles.
- Participate in the relevant architecture governance structures to ensure due consideration of threats, vulnerabilities and risks in assessing submissions and appropriate mitigation through the reference and application of security controls and mechanisms.
- Ensure compliance with the Company’s policies, procedures and other legislative requirements, and ensure that risks within the function are identified, assessed and mitigated.
- Provide technical guidance, oversight, coaching and mentoring to team members in the enterprise architecture environment regarding security architecture to ensure delivery of integrated results.
- Provide guidance to service providers, contracted resources and internal staff on security architectures and the integration of appropriate security controls and mechanisms in solution architectures and designs.
- Govern and track the implementation of the security roadmaps.
- Ensure alignment between enterprise architecture, solution architecture, architecture principles, ICT standards and security architecture to ensure standardisation and reduce risk.
- Develop and evaluate requests for information (RFIs) and requests for proposals (RFPs), where required.
- Establish, build and maintain collaborative working relationships with relevant internal stakeholders.
- Build and maintain positive and value-adding relationships with relevant external stakeholders.
- Scan the environment to ensure a clear understanding of stakeholder needs.
- Proactively interact with stakeholders to determine their needs and deliver on them accordingly.
- Engage with both internal and external stakeholders to identify and evaluate performance barriers and success in order to continuously improve on the service delivery.
- Work in collaboration with colleagues in the centre to ensure timeous delivery of the work and manage service level agreements (SLAs).
Education and Experience
- Information technology-related Diploma or Degree and professional certification in the architecture and security fields (i.e. TOGAF, Cloud Based Certifications, Azure, CEH, Security+).
- The resource must have at least five years (5) of experience as a Senior Security Architect and possess expertise in the following security architecture components:
- Security Architecture Principles
- Security Policies and Standards
- Security Risk Assessment and Threat Model
- Identity and Access Management (IAM) Architecture
- Data Security and Privacy Architecture
- Network Security Architecture
- Application Security Architecture
- Cloud Security Architecture
- Endpoint and Mobile Security Framework
- Incident Response and Security Operations Plan
- Compliance and Regulatory Mapping
- Cyber Resilience and Business Continuity Plan (BCP)
- Security Architecture Roadmap and Zero Trust Architecture (ZTA) Blueprint.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Land a better
job faster
job faster
