Enterprise Security Architect

Cyber Security Architect

Ref: 1532Monday 1 July 2024

Sorry, this advert is now closed. Click here to view our live vacancies.

Net Talent are delighted to have partnered with a global engineering technology provider with a rich history spanning 3 centuries.

As the brand has grown over this period, the technology has evolved with a major focus on providing the best products and machinery to drive the world towards a net zero zero emissions. Given their role is to provide the tools to access the minerals required to do so, they couldn’t be any closer or have more influence in driving this goal.

Like all businesses with a global reach, every so often they consolidate their tech stack to either align acquisitions or move the business on to a platform better suited to their evolving way of working. In doing so, they have created a need for a Enterprise Security Architect to join the fold as part of the Enterprise Architecture function, being the link between Security and Architecture.

The Security Architect holds a pivotal role in shaping and evaluating the security strategy, structure, and practices within the organisation. This coincides with the business launching a comprehensive multi-year initiative aimed at achieving operational excellence across manufacturing and supply chain operations. Concurrently, it involves transitioning functional services to a global business services model.

A cornerstone of the program is the implementation of a Target Enterprise Architecture roadmap. It involves streamlining a complex IT landscape and migrating to a unified ERP ecosystem based on SAP.

Our client’s mission is to consistently innovate, adapt swiftly, and continuously discover superior, more efficient, and sustainable methods to access vital resources for global prosperity. Each of us plays a crucial role in delivering our finest work. While it's a substantial challenge, it's also incredibly exhilarating.

 

Responsibilities;

  • Establishes and manages a robust security architecture framework, incorporating patterns that empower the enterprise to develop and deploy secure solutions and capabilities.
  • Formulates security strategy plans and roadmaps grounded in solid enterprise architecture principles.
  • Develops and updates security architecture artifacts, including models, patterns, standards, and procedures, to enhance security capabilities across projects and operations.
  • Collaborates with technical teams to establish baseline security configuration standards for operating systems, network segmentation, and identity and access management.
  • Works closely with technical teams to define standards and procedures for data encryption and tokenisation, aligning with the organisation's data classification criteria.
  • Drafts security procedures and standards for review and approval by executive management and/or formal authorisation by the CISO.
  • Monitors developments and shifts in the digital business and threat landscapes to ensure alignment with security strategy plans and architecture artifacts.
  • Facilitates or conducts threat modelling exercises for services and applications, focusing on assessing associated risks and data.
  • Prioritises safety by demonstrating unwavering commitment to our zero harm behaviours, contributing to the cultivation of a world-class safety culture.

 

Skills Required:

  • Proven expertise in leading and mentoring teams in "secure by design" principles, with a deep understanding of methodologies for conducting threat-modelling exercises on new applications and services, as well as proficient knowledge in identity management and securing CI/CD pipelines.
  • Direct, hands-on experience or robust working knowledge of pertinent security patterns, vulnerability management tools, and securing public cloud applications.
  • Comprehensive understanding of IT infrastructure across the full stack, encompassing applications, databases, operating systems, hypervisors, networks, storage, and containers.
  • Possession of relevant certifications such as CISSP, CISA, TOGAF, GIAC, or CISM, demonstrating proficiency and expertise in the field of information security and enterprise architecture.

 

What’s on offer?

  • Competitive Salary (up to £110k plus company bonus)
  • Hybrid and flexible working for that work/ life balance
  • Training and development
  • Company pension
  • Private healthcare