27th April 2022
2 x Security Architects
Architecture
London
£755 - £775 per day (inside IR35)
2 x Senior Security Architects (6 month contract initially)
London, Canary Wharf – Hybrid working
£755 – £775 per day (inside IR35)
On behalf of a Leading financial services organisation, we are looking for 2 highly experienced Senior Security Architects who are able to operate with a high level of autonomy to conduct the required architectural analysis and design in line with the enterprise security strategy.
Responsibilities:
- Supporting the Security Architecture team to implement the Security Architecture Strategy and Framework across the business.
- Collaborate with Enterprise Architecture/Technology to provide and recommend effective solutions meeting requirements of the business through effective control of security risks and countering the threat landscape.
- Partner with multiple divisions and technical managers to maximize the effectiveness of Security Architecture requirements in the implementation of products, environments and services.
- Supporting the analysis of potential weaknesses and identifying recommendations to improve the security of all services across the business.
- Provide technical security advice, guidance, design and review in support of all business-related products and services, reporting to a Security Architecture Manager.
- Work closely with Enterprise Architecture in the effective delivery of solutions
- A high-level knowledge of all key areas of Information Security Technology and an ability to apply them appropriately
- Work with other Security Architects to build security into infrastructure and architecture designs
- Provide direction and advice on projects related to security portfolio to strengthen the overall cybersecurity posture
- Assess SaaS and IaaS cloud services and virtualization technologies and provide direction and input for the maturation of the Cloud Security Framework where necessary
- Foster relationships with key functional teams such as IT, Compliance, Operations, Finance, HR, Internal Audit, and Enterprise Risk to support current and future initiatives
- Keep informed of new and updated industry frameworks and regulations: GDPR, ISO 27001/2, SANS Top 20 Critical Security Controls, NIST CSF, SP 800-53, PFMI, CPMI ISOCO and FFIEC handbook, SABSA
- Keep informed of new and emerging security threats & assess effectiveness of current controls to identify opportunities for program improvement.
Experience/Skills required:
- 5+ years security architecture expertise with broad understanding of multiple security domains
- Ability to collaborate effectively with others to drive forward key security objectives
- Knowledge of policy frameworks and understanding of policies, procedures, guideline structure
- Knowledge of Firewalls, IPS, DLP, proxies, SEIM, & endpoint protection software
- Security certifications such as CISSP, CISA, CRISC, SABSA, GIAC, CCSP, CCSK or equivalent is preferred
- Knowledge of Risk Management life cycles based on an established framework: ISO 27001, SANS, NIST SP 800-53
- Working knowledge of the following frameworks and regulations: ISO 27001/2, SANS Top 20 Critical Security Controls, NIST CSF, and FFIEC handbook, Cloud Security Alliance CCM
- Degree in a technology discipline (Computer Science, Information Management, Computer Engineering, Cybersecurity or equivalent)
Consultant - Richard Sharp
Telephone: 0207 392 7507
Email: richard.sharp@spencer-rose.com
Share This Position