Truly unique opportunity for an experienced Security Architect to take a lead role in a fast-growing SME on their Cyber Security uplift program, working as the sole Security Architect in the business and advising the CISO as their technical SME. You will support other teams in their quest to move to a 'Secure by Design' approach, enable DevSecOps and ensure their cloud-native environment is secure. In addition there are a number of key projects on the roadmap for this year.
The business has been investing heavily in Tech in the last 2 years after being acquired. They are moving *away* from an offshore IT capability and now building this up in-house to support their rapid growth into new markets. Cyber Security uplift is at the forefront of this investment - in just 18 months the Security team has grown from 1, to 6 people! They are running some of the latest Security tooling, PCI-DSS and ISO27001 compliant, and have an outsourced SOC.
Day-to-day:
- Develop and implement Security Architecture patterns, frameworks and strategies
- Advise Engineering and other technical teams on ensuring their solutions and designs are secure
- Ensure IT architecture and environment is compliant with PCI-DSS and ISO27001
- Report on key Cyber Security program metrics and statistics up to executive level
- Build strong relationship other teams, stakeholders and vendors
- Provide training and mentorship to junior security team members
You have...
- Experience in a dedicated Security Architect position
- A technical background is preferred, likely in Security, Infrastructure or Network Engineering (but not a ‘must’)
- In-depth knowledge of security frameworks, standards, and best practices
- A solid understanding of Cloud Security, in particular AWS is essential given the organisation cloud-native environment
- Ability to adapt your communication style to both highly technical engineering teams, but also non-technical stakeholders at a senior level up to C suite