Cyber Security Architect-London,UK- Contract(Outside IR35)! at Infinity EMEA, London, 6 Months, £325 per day

£325 per day
  • Outside Spy
  • London, UK
  • Nov 20, 2020
6 Months or more

Contract Description

Role Purpose:

  • To design, develop and maintain a robust cyber security architecture, recommending appropriate security controls and requirements in support of business objectives; ensuring that security controls are appropriate and documented, and supporting the project delivery portfolio through ensuring that new technology is designed and delivered in line with security and compliance standards.

Required Skills:

  • Expert knowledge of IT/Information/Cyber security standards, frameworks and architectural patterns. (ISO27001, NIST, CIS, PCI DSS, etc.)
  • Broad knowledge of the security product market and toolsets (SIEM, PAM, MDM, Vulnerability Management, Antimalware, etc.)
  • Security/architecture qualifications highly desirable; eg CISSP/CISM, TOGAF/SABSA or similar
  • Experience working across multiple projects and managing workload accordingly in conjunction with Project Managers.
  • Security architecture experience, preferably with knowledge of Enterprise Architecture and knowledge across all architecture domains.
  • Communication and negotiation skills - Able to effectively translate and communicate security controls, concepts, and risk implications to both technical and non-technical stakeholders at all levels. Responds well to challenge and is able to adapt to stakeholder reactions to negotiate to a consensus.
  • Secure systems design - Able to design and review system architectures through the application of security knowledge, patterns and principles; applying an innovative approach to overcome complex challenges.

Key accountabilities:

  • Development, design, and documentation of cyber security architecture standards, artefacts, and best practice; including target architectures, principles, and non-functional requirements
  • Represent Cyber Security at the Technical Design Authority forum; providing subject matter expertise working closely with the wider architecture team, project managers and product owners to ensure the project delivery portfolio aligns with business, security, and compliance objectives.
  • Review and evaluate existing security tools and solutions, identifying and recommending areas for improvement, opportunities to reduce technical risk, and ensuring controls and solutions maintain best-fit to SRL's requirements
  • Conduct and document technical risk assessments and threat modelling to support the identification and design of technical controls.
  • Adhering to IT governance, controls, methodologies and compliance standards and expectations