This job is no longer available.
You can view related vacancies or set-up an email alert notification when similar jobs are added to the website using the buttons below.

Senior Security Architect

08/02/19_1549634368
Negotiable

Managing this Role

image

Charlee Ryman

Consultant - Cyber Specialist 0207 759 7878

Spending seven years in the Royal Navy as a warfare technician, Charlee uses his comprehensive military network and his deep technical expertise to quickly pinpoint the best cyber security professionals for leading employers of all shapes and sizes.

 

Roles recruited: SOC managers/analysts and cyber security analysts/consultants

Seniority: Junior-Senior

Job Type: Permanent

Geographical coverage: London

Market: Cyber security operations within MSSPs

Are you looking for a position of importance? My client is looking for a Senior Security Architect to help provide resilience across their Cyber teams to ensure they maintain operational capability in the current security landscape.

This role you will be reporting to the Director of Security Architecture and Engineering and you will be responsible for the growth and management of my client's architecture enterprise. You will use your expertise to help support the Architecture goals of the business.

The Role

  • You will work in close proximity to other security teams to help establish system boundaries and weaknesses, current or potential risks and their impact.
  • Ensure principles that support the current life Cycle
  • Support the development of risk management processes and program protection planning
  • Implement service management concepts for networks and related
  • Apply the methods, standards, and approaches for describing, analyzing, and documenting an organization's enterprise information technology
  • Develop and apply cyber security, privacy principles, and organizational requirements.
  • Develop cross domain solutions for multi-level security systems that support confidentiality, integrity, and availability requirements.
  • Collaborate in the development of cloud service models and effectively communicate possible limitations for an incident response Network Security
  • Apply network security architecture concepts including topology, protocols, components, and principles
  • Collaborate with the appropriate entities to determine how a security system should work and how changes in conditions, operations, or the environment will affect these outcomes
  • Assist in the development of network design processes, to include communication of security objectives, with consideration to operational objectives, and trade-offs.
  • Perform capabilities and requirements analysis.
  • Develop information security rules and enterprise security requirements that describe baseline and target architectures.
  • Translate operational requirements into protection needs
  • Determine and communicate cyber threats and vulnerabilities, and any operational impacts of cyber security lapses
  • Implement vulnerability assessment tools
  • Apply Personally Identifiable Information data security standards in accordance with laws, regulations, policies, and ethics as they relate to cyber security and privacy.

This is a unique opportunity to be apart of a global organisation and help implement changes that will secure the future of not only the Architecture team but of the entire enterprise. If this sounds like you apply now!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.


This job has now been filled but you may be interested in:

 

Information Security Analyst

The Role

Our client is currently looking for an Information Security analyst to join a fast paced and expanding organization in the financial sector. Reporting to the IT Director you will be responsible for establishing and coordinating information security governance, monitoring and enhancing security efforts.

As the Information Security Practitioner, you will be responsible for evaluating the existing IT Security operations, driving forward the Information Security operation based on local and group requirements and obligations.

You will also work closely with the IT team to identify relevant information security risks and keeping track of measures, to help protect against Information Security threats.

Key responsibilities

  • Ensure that the Company's security policy is maintained in line with business requirements.
  • Drive an evolution of the firm's IT security policies to maintain best practice when compared to both industry peers and stakeholder expectations
  • Own the lifecycle of IT Security initiatives from inception and design through to completion and transition into business as usual. Track and demonstrate progress at all stages
  • Act as subject matter expert on matters of security relating to legal and regulatory compliance
  • Where necessary ensure that processes are documented and communicated in language that is relevant and understandable to all audiences.
  • Deliver initiatives as needed and be in a position to demonstrate and track progress to stakeholders.
  • Co-ordinate response to security incidents and breaches to ensure any impact is contained and relevant information obtained to facilitate analysis and improvement plans.
  • Raise the profile of security within the organisation by being proactively involved with stakeholders and customers. Provide consultation and/or education as needed and drive the adoption of security as a value add / best practice.
  • Ensure key documents that record permissions and exceptions are maintained for review for example third party connectivity.
  • Facilitate the IT involvement in any external security audits.
  • Manage the risk of unavailability of services by ensuring that Disaster Recovery and Business continuity planning are considered as part of implementation and change, and that constant review and testing takes place to ensure solutions are effective and meet requirements.

REQUIREMENTS

Key Requirements

  • Information Security / Cyber Security experience within a growing organisation.
  • Experience with business continuity, risk management and incident management
  • Proven track record of project management skills

Experience Requirements

  • 3 years of information security experience
  • Experience of delivering IT Security solutions
  • Preferably two or more years of experience working with information security in a multi-office environment with cross-functional teams and enterprise programs
  • Appropriate industry certifications, and experience with NIST and ISO standards is an advantage

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Information Security Manager - Contract - 3 months - £500 pd

Contract - 3 months - £500 per day

We are working with a leading professional body that are looking to bring on an experienced Information Security Manager who can contribute to the achievement of their business plan objectives, whilst dealing with internal and external clients. You will be reporting directly to the Chief Technology Officer and be the focal point of all security issues.

Responsibilities

Data protection

  • Ensure that the DPA registration is renewed annually in line with business requirements
  • Oversee the processing of DSR's and DP complaints
  • Report any breach of the GDPR to the relevant director and where appropriate the ICO
  • Maintain Data Breach register from initial response through to completion of data breach report developing an action plan to address any key risks
  • Provide advice and guidance to staff on GDPR matters including SARs (subject access requests), data breach management and notification and DPIA (data protection impact assessment)
  • Define the process for identifying and making required changes to the PDPI (personal data processing inventory)
  • Develop processes to ensure the Personal data retention policy is kept up to date and reviewed annually

Security Policies and procedures

  • Develop & create appropriate and relevant ICT security policies
  • Ensure Data Protection policies and procedures are updated in accordance with changes of legislation.
  • Oversee the dissemination of new & amended policies to all staff
  • Conduct an annual review of all security policies to ensure they are fit for purpose amending where appropriate
  • Implement process/procedural changes in order to reduce the risk of a data/security breach
  • Maintain and monitor PCI DSS compliance advising on any changes necessary to maintain compliance
  • Maintain and monitor Cyber Essentials Plus accreditation advising on any changes necessary to maintain compliance
  • Develop and administer a framework that ensure staff acceptance of all security policies, standards and procedures which can be validated and measured for understanding and acceptance
  • Itemise and prioritise all existing data protection policies that require updating including any new policies required

Operational

  • Provide advice to Project and ICT managers ensuring that any changes to systems/data collected are the subject of a DPIA where appropriate
  • Oversee the programme of external and internal penetration tests of AAT's ICT systems
  • Attend DPA seminars/training to keep up to date with data protection, security & compliance best practice and guidelines particularly those relevant to AAT systems
  • Induct all new staff with an introduction to major security policies
  • Provide monthly reports to the relevant director detailing security/data breaches and SARs

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Information Security Analyst

Are you looking for a technical role that will allow you to show your skill set? We are looking for a passionate and energetic Information Security Analyst who can work alongside our client's security teams. Reporting to the Head of Security and working with the Senior Security Architect, Senior SOC Analyst and GRC team, you will be assisting on all security matters relating to operational and technical security. This is a great chance to work with a company who grew by 40% last year.

You will have a vast skill set that you are eager to improve. Your primary responsibility will be to monitor, maintain, and develop in all aspects of our security operations; however you will also be assisting with:

  • Implementing protections for my clients production and corporate environments
  • Including monitoring networks and systems, conducting network scans,
  • Incident and event analysis and implementing security plans and policies.
  • Report writing.
  • Coordinating customers pen tests and security audits.

Your skill set:

  • Identifying risks and vulnerabilities
  • Report Writing and SOP's
  • Implementing security measures for the IT function
  • Recommending solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks

Your Essential skills

To be successful in the role you will have demonstrable experience in the following areas:

  • Knowledge of risk assessment tools, technologies and methods
  • Disaster recovery and business continuity
  • Anti-malware software, intrusion detection and content filtering
  • ISO27001 and/or SOC II experience
  • Security configuration of Windows and Mac
  • Malware analysis
  • Endpoints protection software and configuration
  • Web technologies, SaaS, AWS/AZURE, email servers, DNS, SSL/TLS etc.
  • SPLUNK or SIEM experience desirable
  • Awareness of Java based web applications and their security configurations is desirable.

Qualifications:

  • 2.1 degree or MSc in a security related discipline or a good STEM degree and relevant professional experience.
  • Hold or working toward professional certifications and memberships eg CISSP, CISM, CISA, ISO27001
  • At least 5 years working in an information security role

This is a great opportunity to work with a team of enthusiastic professionals in a fun working environment and to also improve your own skill set. Go ahead and apply now.

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Security Architect

Our client are the global leaders in electronic payments, therefore cybersecurity is at the beating heart of their business. It's down to diligence and expertise that makes them the undisputed leader in electronic payments. It is their top priority to create a top-tier Security Architecture team, poised to defend against any potential cyber threats.

We're looking for those of you who are inherently driven and fascinated by the art and science of cyber defence. We'll equip you with the very best tools and tech so that you can deliver top notch results.

The Role:

The Security Architect will work as a member of the Global Cybersecurity organization - Security Architecture team, which is focused on improving technology and architecture decision-making through collaboration with management, staff and customers on technology strategy, enterprise architecture, and investments in strategic security technology.

The individual, with a broad cybersecurity plus systems and network architecture knowledge and experience, will provide overall direction, lifecycle management and leadership for security architecture and technology. Leading and contributing to the security posture of our client's networks and systems, data centre infrastructures, cloud architectures and solutions.

  • Developing, contributing and management of Security Architecture Specifications, Security Architecture Analysis, Threat-Modelling, Security Requirements, Security Standards and Design Patterns, Reference Architectures, Security Strategies and Roadmaps
  • Applying security design principles to develop security solutions architectures
  • Providing strategic points of view for security solutions
  • Developing and/or carrying out the strategic direction of security projects to enable execution of the information security strategy
  • Driving security technologies evaluations, proof-of-concepts, and production pilots
  • Building strong cross-organizational relationships and effectively influencing staff across the IT organization and product groups
  • Working closely with the other technology architects to ensure that security is properly embedded in their technology domains architectures

Key Skills

  • Moderate to significant Cybersecurity, engineering and design experience in Networks, Data Center Systems, and Cloud Infrastructure and Platforms
  • Good experience in threat-modelling of complex systems
  • Experience in delivering comprehensive architecture specifications for complex infrastructure security solutions
  • Experience with creating technical documentation: product documentation, technology and systems/network architecture, and technical whitepapers.
  • Working experience with the following security technologies: Firewalls, Intrusion Detection/Prevention Systems, Vulnerability Scanning, WAF, Wireless LAN, NAC, DLP, DDoS Mitigation, WAN security, SIEM, Content Filtering, Cloud Security gateways, Secure Proxies, SSL crypto solutions
  • Strong knowledge and working experience with SDN (Software-Defined Networking), NFV (Network Function Virtualization), and network virtualization/overlays; microsegmentation
  • Strong hands on cloud architecture, with knowledge and working experience in: OpenStack, Cloud Foundry, Server Virtualization hypervisors (KVM, Xen, Hyper-V, VSphere), Linux Containers technologies (Docker, Mesos, Kubernetes), and distributed computing
  • Strong expertise and experience with Linux and Linux security
  • Hands-on experience and strong understanding of technology and enterprise security

If you believe you are a heavy hitter in the Security Architecture arena, then you could add true value to our clients already world class team. Apply within!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.