We are seeking an experienced Security Architect.
As the Security architect, you will play a critical role in defining
and driving the technical vision, ensuring that the solution aligns with our Enterprise
and Security architecture principles, best practices, and methodologies.
You will collaborate closely with other architects, IT stakeholders, and business teams
to ensure seamless integration and solution alignment. Additionally, you will act as a
key liaison between the business and our technology partners, driving accountability
with suppliers and ensuring successful project execution. Your expertise will be
instrumental in designing a secure, scalable, and efficient architecture, leveraging AWS
services, networking, and IoT-based devices deployed in the field.
The Security Architect will work on their own initiative to ensure the confidentiality,
integrity, and availability of information by determining security requirements, planning,
implementing, and validating system platform security, while preparing security
standards, policies, and security by design principles. The role will provide advisory
across many technologies including, and not exhaustive… Cloud servers, AWS Lamba
functions, Security controls on API Gateways, Firewalls and Web Application Firewalls,
through to Network Segmentation and Application Architecture.
Project Background:
This role expects a good level of understanding with PCI DSS v4.0.1, NIST
Cybersecurity Framework, ISO27001:2022, General Data Protection Regulation and
Directives such as the imminent NIS2 along with the EU AI Act, and any other
directive or regulation that may fall into scope over the duration of the project.
What you need:
- Good base in AWS - GuardDuty, CloudWatch, APIs, Lambda Functions, IAM
- Good networking and cloud familiarity (VPNs, transit gateways, Segmentation,
Remote Access, Firewalls and Cellular Network Wifi)
- Application Deployment: Zabbix, Prometheus, IoT tooling
- Kubernetes design and deployment from a Security Perspective
- Identity Access Management: AWS, Entra ID, KeyCloak and third-party tooling
- Strong English and people skills - client-facing role
- Governance Risk Compliance: ISO27001:2022, NIST CSF, PCI DSS
understanding, GDPR.
Nice to have:
- CompTIA A+, Network+, CCNA
- Experience with the Fortinet security stack, strong working knowledge of the
Fortinet suite, including FortiGate, FortiManager, and FortiAnalyzer
- Experience with ticketing systems or asset management
- Understanding of cybersecurity principles
- Understanding of ticketing technology and pole mounted validators
A suitable candidate will also
- Strong leadership and communication skills.
- Demonstrated ability to hold suppliers accountable and ensure high-quality
design artifacts.
Data Classification: Public
- Proven success in driving positive change and improving cloud-based solutions.
- Ability to identify and resolve issues in collaboration with business leaders.
- Experience operating under pressure and delivering results.
- Strong project management skills, with the ability to prioritise multiple projects
and meet deadlines.
- Self-motivated, able to work independently while maintaining composure in
high-pressure situations.
- Approachable and supportive of junior personnel.
- Strong analytical ability with a logical approach to problem-solving.
- Attention to both high-level strategy and fine details.
- Strong capability in writing and reviewing of Architecture, high-level design and
low -level design documents
- Experience in participating in Design Authority and Architecture Review Boards
