Our client has an opportunity available for a Security Architecture Engineer located in the city of London. This role will be responsible for the security element of on-prem and cloud-based new and evolving global engineering solutions, product roadmaps and standards. Delivering Infrastructure Engineering solutions to the business and technology functions.
Must be an EU Citizen or eligible to live and work in the UK. Some travel may be required.
Project tasks:
- Manage the development, evolution and delivery of Infrastructure Engineering Security product roadmaps
- Keep up-to-date with industry developments and initiatives to ensure they are incorporated into the product roadmap when approved
- Ensuring Security is built into the On-Prem and Cloud designs from inception and throughout the solution's lifecycle
- Working across all Engineering towers to ensure a consistent approach to developing and deploying solutions from a security perspective
- Proactively work with Architects, Security teams, Risk and Compliance teams to develop enterprise security principals and strategies that support the business development initiatives
- Incorporate operational ‘lessons learnt’ into designs and standards
- Work with Application Development colleagues to advise upon Authentication and Authorisation standards and how these should be incorporated within applications
- Work with teams within Infrastructure Operations to transition solutions into the operational run status
- Work with Infrastructure Engineering leads to develop a security architecture for Cloud-hosted service, incorporating mobile, IaaS, PaaS etc.
- Provide ‘Level 3’ operational support to infrastructure services in the event of major incidents or complex technical issues
- Support Project Managers with technical input for project initiation documents
- Support IT and Business Change projects in collaboration with Infrastructure Architecture teams, as required
- Research and develop solutions and technologies that may further drive innovation or efficiencies
- Manage key vendor relationships involved in the delivery of security and identity services and technologies, including understanding vendor product roadmaps and promote these within the overall infrastructure Engineering product roadmaps
- Maintain leading-edge product knowledge and assist in ensuring business value is derived from applying engineering excellence and exploiting evolving functionality
- Manage technical delivery of engineering projects to the agreed scope, on time and budget. Ensure that engineering projects satisfy governance criteria
- Ensure the Engineering organisation conducts its activities in accordance with all relevant external regulators and company policies
Key skills/experience
- Degree/Masters degree in any subject
- Industry recognised Security Qualifications e.g. CISSP
- Experience with Engineering designs i.e. HLD / LLD
- Understanding of how Changes are raised, executed in Production along with what happens if the change goes wrong. This is less important for this role than other Engineering roles
- Understanding PKI
- Understanding Identification / IAM
- Understanding Privileged Access Management
- Understanding Encryption, different algorithms, types of encryption etc
- OWasp
- Authentication
- Understanding Security team basics e.g. SIEM, SoC, DLP, CASB, Red team+, Firewalls (from an Eng Perspective)
- Network stack
- Network Security
- Network Security Devices
- Network Protocols that pertain to security subjects
- Network Host solutions i.e. what might you use to secure a host device e.g. Server
- The modern security perimeter
- Security Controls (including anything above}
- Baseline Security
- Directory Security inc AD
- Understanding the mindset of an intruder and methods commonly used
- *Azure Security
- *o365 Security
- Ability to produce concise and well-written documentation
- Be very considered and clear with verbal and written communication
- Can-do attitude
- Ability to research a solution
Must have AZ500 + CISSP certifications