Security Architect
Our client is seeking an experienced Security Architect to join their major transformation programme on a 6 month contract. The Security Architect will be instrumental in developing, integrating, and assuring secure architecture across systems and networks.
The Security Architect will work closely with stakeholders to ensure all deliverables align with organisation-specific cybersecurity architecture principles, manage risks effectively, and support secure system engineering throughout the programme delivery life cycle.
This is a hybrid role with the need to be onsite in the office 2-3 days per week.
Key Responsibilities for the Security Architect
- Support Architecture Development: Aid the transformation programme in developing and integrating appropriate cybersecurity architecture and designs for systems and networks.
- Manage Complex Data: Architect solutions for systems with multilevel security requirements and those processing multiple classification levels of data across multiple geographic regions.
- IAM Guidance: Provide expert advice and guidance on the architecture of an appropriate Identity and Access Management (IAM) solution.
- Determine Protection Needs: Collaborate with the programme to determine and document necessary protection needs (security controls) for all in-scope information systems and networks.
- Evaluate Security Designs: Assess security architectures and designs delivered by the programme against functional and non-functional requirements (BRDs and NFRDs).
- Security Reviews & Assurance: Perform thorough reviews of programme deliverables, identifying architectural gaps, areas of unacceptable security risk, and instances of non-compliance.
- Supplier Collaboration: Support the primary supplier in developing and delivering a robust Security Risk Management Plan.
- Impact Assessment: Define and document how the implementation of new systems or interfaces impacts the security posture of the current IT and business environment.
- Provide Documentation: Deliver comprehensive documentation addressing information security, cybersecurity architecture, and systems security engineering requirements at key points in the life cycle.
- Secure Configuration: Ensure the transformation programme strictly employs secure configuration management processes.
- Business Prioritisation: Collaborate with stakeholders to identify and prioritise critical business functions.
- Principle Alignment: Ensure all acquired or developed systems remain consistent with internal cybersecurity principles and guidelines
Key Requirements & Qualifications for the Security Architect
- Experience: Proven track record as a Cybersecurity Architect or Security Consultant within large-scale transformation programmes.
- Technical Depth: Deep understanding of multilevel security requirements, multi-classification data management, and cross-border geographic security frameworks.
- Framework Knowledge: Strong familiarity with secure configuration management, Identity & Access Management (IAM) architecture, and systems security engineering.
- Risk & Assurance: Expert ability to evaluate designs against BRDs/NFRDs, perform gap analyses, and assist suppliers with Security Risk Management Plans.
- Communication: Exceptional stakeholder management skills, with the ability to collaborate on business prioritisation and translate complex technical risks to business impacts.
Please apply as directed!