Cyber Security Architect - DV

Cyber Security Architect

  • Permanent Position

  • Salary - £75,000 - £90,000 + £5400 Car + 10% Bonus

  • Fully Remote based

  • Security Clearance level - DV

*Must hold or have previously held DV

Key Responsibilities:

  • Understands the business and information risk context, and propose architectures and countermeasures to mitigate risks from solutions

  • Works closely with information risk advisors, accreditors, solution architects and system engineers to enable secure definition, delivery and configuration of ICT systems

  • Analyses existing and proposed technical architecture for security risk, applying secure architecture principles and practices to assure technical architectures

  • Assures implementation of security controls to mitigate risks

  • Provides expert technical advice to support the design and development secure architectures

  • Inputs detail on security control implementations and testing into to security risk management tooling

  • Producing high level designs, Security Architecture Designs (SAD) and conceptual architecture documentation, with specific focus on Security and Information Assurance.

  • Consult and contribute to the design of innovative security solutions addressing the needs of our clients.

  • Assisting on bids, proposal for works, as well as on implementations and integrations to provide guidance to our clients through their security issues to practical solutions.

  • Application of the likes of TOGAF, SABSA, NCSC Cloud Security Enterprise Architecture principles to all Architectures.

Essential Technical skills:

  • Information Security experience within a large organisation

  • Ability to articulate and pitch security advice, often at a technical level, directly to key customer stakeholders

  • A clear understanding of UK Government Security Frameworks including the Security Policy Framework and NCSC Good Practice guidance

  • Experience in providing advice on data protection, information security and business continuity

  • Experience of designing and implementation of components of secure systems or services.

  • Proven track record in designing complex solutions within security.

  • IT Security Architecture experience including TOGAF and SABSA.

  • Conversant with security best practices (including ISO27001) and relevant security legislation.

  • Will have achieved certification as a CISSP, GIAC or CompTIA Security+ (or equivalent).

  • Knowledge of Cloud Security or Email or Identity and Access Management Design and Implementations.

Desired Technical skills:

  • Experience working in MOD security delivery projects

  • Security qualification such as CISSP or equivalent experience

  • Experience using security risk management tooling

  • Good working knowledge of security related JSPs

  • Cloud Security Architect or Email Security or IDAM expertise

  • Perform reviews of cloud services, cloud-based applications and data security reviews to confirm that solutions considered for licensing, newly acquired solutions and changes to solutions are compliant with policies and standards, and that the right security controls are applied to applications to keep data secure.

  • Create cloud security solutions designs, and technically oversee/lead security related projects when specialist SMEs are required Own and guide the technical relationship with the customer with specific regard to the security of cloud services.

  • Responsible for advising and helping customers understand and make the most of cloud security and compliance features.

  • Email cyber skills - Exchange on-prem and Exchange Online (+ integration with O365), messaging hygiene like Mimecast and Proofpoint, messaging controls like

  • SPF/DKIM/DMARC, PGP/PKI/SMIME / mail encryption etc.

  • Experience of NIST and the MOD Implementation of NIST.

Desirable Core Skills

  • Desired knowledge of MoD