Security Architect

Full Job Description

Security Architect // Up to 90k // Flexible Working Arrangement (London) // Enterprise level bus & rail business // AWS & Azure

Job Summary

My client is seeking a dynamic and motivated individual to join their team in the role of Security Architect. As one of the leading transport operators in the UK and North America, my client is committed to providing safe, reliable, and efficient transportation services to millions of passengers every day.

As a Security Architect, you'll play a pivotal role in shaping our security landscape by defining and communicating a cohesive technical and architectural vision across the group's organisations. You'll be responsible for developing enterprise security architecture roadmaps, guiding them from their current state to their desired future state while addressing transitional phases.

Key Responsibilities

• Architectural Leadership: Lead the design efforts in creating end-to-end security architectures, particularly in establishing new security capabilities within the organisation and streamlining our technological infrastructure. This includes initiatives like implementing pen testing services and simplifying systems such as HR systems consolidation and infrastructure modernisation.
• Risk Assessment: Conduct thorough security risk assessments to identify potential vulnerabilities and threats to our systems and designs, ensuring proactive measures are in place to mitigate risks effectively.
• Project Support: Actively participate in project design stages, providing strategic guidance to ensure security considerations are integrated into the development process. Additionally, assure the development process for security architectures to align with best practices.
• Governance Framework: Contribute to defining the IT Governance Framework by establishing architectural principles, policies, and standards. Participate as an active member in architectural boards to uphold these standards.
• Decision Making: Make informed technical decisions regarding security solutions and designs, articulating the impact on the organisation to various stakeholders. Ensure alignment among business teams, domain architects, and suppliers throughout the delivery process.
• Impact Assessment: Assess the impact of proposed technology changes on security, providing recommendations, scope statements, and engaging with suppliers to evaluate changes. Develop cost and benefit models for generating business cases for change.
• Technical Audits: Conduct technical audits on existing solutions, vendor capabilities, and potential new ventures to ensure compliance with security standards and best practices.
• Innovation and Collaboration: Act autonomously to propose ideas and recommendations for improving our security technology landscape. Collaborate with cross-functional teams to identify and structure technical security requirements in tenders and contracts, consolidating suppliers and technologies.
• Community Development: Foster the development of the architecture community by inspiring and coaching other architects and IT teams to align their efforts with organisational goals.
• Horison Scanning: Stay abreast of industry trends through horison scanning, identifying emerging technologies and their potential impact and opportunities for the organisation.
• Cloud Technologies: Azure & AWS.