Skip to main content

This job has expired

Security Architect

Employer
Barclay Simpson
Location
Glasgow / Remote
Salary
£600- £700 per day (Outside IR35)
Closing date
27 Aug 2021

Technical Security Architect required for a central Scottish government department. The role will be focused on providing security architecture for a digital transformation programme for critical public service.  

Key responsibilities:

  • Design security controls in cloud-based web applications and cloud infrastructure to support business objectives
  • Work with stakeholders in an agile environment to refine security-control implementations
  • Educate and upskill colleagues in best practices
  • Assist in defining and executing security best practices in engineering and software design
  • Contributes to security architecture policy, standards and design
  • Advises stakeholders and suppliers on compliance with IT security policy and controls
  • Contributes to IT service level definitions
  • Contributes to Cyber Assurance maturity assessments, or other audit/compliance activities
  • Supports the development of business cases for investment to improve IT security controls
  • Ensure compliance with Codes of Connection/Memorandums of Understanding

Required competencies:

  • Experience in working with agile engineering teams and designing security controls for cloud-based web applications, ideally with Java and AWS
  • Experience in working with demanding security standards, ideally to standards that comply with Home Office NPRIMT controls
  • Experience in creating security controls, with working knowledge, to advise on cloud implementations (Azure, AWS, GCP etc.)
  • Some understanding of application architectures, patterns, and the ability to interpret technical designs
  • Strong knowledge of government and industry data/cyber security legislation, policy, patterns, standards (including but not limited to ISO27001, CSA STAR and NIS Directive) and guidance.
  • Experience in reviewing system architectures to identify single points of vulnerability and common architectural flaws
  • Experience in identifying security issues relating to the configuration of components in an architecture
  • Validate and explain how common attack methods are mitigated by the design and identify areas where detailed technical analysis will be required to understand important nuances that could have significant security implications.
  • Strong knowledge of Government and industry risk management techniques
  • Demonstrable experience in interpreting and applying this knowledge in an agile way, working with development teams to deliver digital Cloud services.

As an ideal candidate, you will have an industry certification such as CISSP/CISM/CRISC and SABSA/ TOGAF and have expert knowledge of Security Architecture. You will also have a proven track record of delivery in a similar role and meet all the required competencies. Experience within government departments is highly advantageous. Must have existing BPSS clearance and be willing to undergo SC clearance. Work will be mostly remote, but you will be expected to be in the office in Glasgow on occasion.

Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert