Accessibility Links
This vacancy has now expired.

Security Information Risk Advisor

  • Job reference: 2091sira
  • Location: Liverpool, Merseyside
  • Job type: Temporary
  • Area of Expertise: IT
Closes in:
d h m s
Hurry ending soon!
Send jobs like this to my email
Job description: A position from our client has arisen for a Security Network Architect. As our architects are spread across various functions within the Information Directorate and our Portfolio Architects and other functions are already allocated to support other projects there is a requirement to find additional resource to support this request.

Reporting to the Head of Security within the Information Directorate, the primary purpose of the Security Architect is to lead the development, and implementation of an Enterprise Security strategy and architecture that satisfies the requirements of the business whilst ensuring that it is aligned with Enterprise Architecture principles and guidelines. The successful applicant will cover all security aspects in core technology areas including data, networking, infrastructure, software development, mobile, cloud and digital platforms.
The post holder will be required to work alongside architecture, delivery, technical, commercial and security staff, central Home Office and supplier communities, relating to the contracts, projects and programmes within the portfolio.

The key responsibilities of the role include:
1. Lead the organisational Cyber Security Strategy implementation using sound enterprise architecture practices, assessing risk and identifying appropriate security solutions and capabilities that deliver continuous improvement and ongoing compliance (regulatory, HMG and best practice).
2. Undertake assessments of the Enterprise Security architecture to establish the gap between as-is and to-be defining the road map to address the changes required
3. Develop and maintain a security architecture process and artefacts (models, patterns, templates) to ensure technology initiatives are designed and built with the correct levels of security and compliance.
4. Provide security architecture subject matter expert advice to and liaison with suppliers, Technology, Data, Digital and Change teams.

skills (including specialist skills) and/or knowledge required:
1. Extensive experience of delivering security design and deployment
2. Extensive experience of developing security strategies and technologies including the definition of security architectures and road maps at an organisational level and on Government projects from strategy to implementation, Working to HMG Policy and NCSC guidance.
3. Extensive experience of implementing a wide range of security products such as audit tools, IDS, IPS, DLP, SoC, Firewalls, End Point Security, encryption, proxies, DDOS protection to inform technical security architectural design, particularly using cloud (type 1 & 2 virtualisation/ containerisation) and digital technologies.
4. Extensive experience of Systems Engineering doctrine such as Operating Systems, Active Directory, Group Policy, Network Protocols, access management, including System Development Life Cycle (SDLC) approaches and their application.
5. Use of Enterprise Architecture tools and approaches to model business processes and functions in the context of security assurance
6. Experience of PRINCE2, KANBAN or other related management approaches including the AGILE manifesto working as security architect SME. This includes championing and guiding the project development function to achieve the requisite security outcomes in the most efficient manner.
7. Experience of developing, implementing and working within cyber risk framework such as NIST or ISO27001-13.

Qualifications and Experience required
1. SCCP SIRA, Ex CLAS and or similar demonstrable experience working for or on HMG Contracts as a technical security/risk advisor, within complex IT environments;
2. CISSP/ CISM / ISO27001 Lead Auditor or similar certification, and or demonstrable security experience covering these security domains, within complex IT environments;