We are AMS. We are a global total workforce solutions firm; we enable organisations to thrive in an age of constant change by building, re-shaping, and optimising workforces. Our Contingent Workforce Solution (CWS) is one of our service offerings; we act as an extension of our clients' recruitment team and provide professional interim and temporary resources. We are looking for a Lead Cyber Architect for a 12 Month contract based in Bristol on behalf of our globally respected client who develop cutting-edge technologies that deliver clean, safe and competitive solutions to meet the planet's vital power needs.
To be eligible for this position, applicants must be free of any known factors that could prevent them from obtaining Security Clearance (SC).
Role Outline:
We are looking for a Cyber Architect to lead the cyber technical delivery team through a highly secure programme. The Cyber Lead Architect will be required to work with the other architects on the programme to develop the security architecture for secure solutions at multiple government security classification levels. They will ensure that security is imbedded into all solution designs so we require a candidate who has experience in delivering under the Secure by Design framework and application of NIST controls.
The role requires someone who is detail oriented and has strong communication skills to be able to communicate the security needs for the solutions and ensure the solutions are designed and built to the right standard for its classification. The role requires someone who will take ownership of activities to drive them through to completion, escalating where necessary to obtain the correct level of support.
Role Objectives:
1. Take the overall lead on the Cyber Architecture for the programme and direct the Cyber Architect team on cyber strategy and solutions
2. Work with the Cyber Architect team to define the Identity, Manufacturing, Data, SecOps and Tooling solutions for the project
3. Work closely with Cyber business stakeholders to align with Rolls-Royce Cyber strategy and tooling
4. Work with the Compliance and Information Assurance lead and Project Security Officer to ensure Cyber solution meets the defined cyber security standards and controls for the project
5. Ensure the Cyber solution is in a position to be accredited by the MoD, must understand accreditation process and Secure by Design principles
6. Liaise and support architects in other project workstreams to ensure they are incorporating Cyber requirements and considerations
7. Take overall responsibility for the Cyber Solution Architecture for the project
8. Understand Secure by Design principles and help ensure they are being considered in the solution design
9. Review design documentation created by the Cyber Architect team and assess suitability against the requirements of the business
10. Provide technical guidance to ensure compliance with JSP 604 and other relevant policies, standards, and regulations
What we require from the candidate:
Essential Criteria:
11. 5+ years technically leading a Cyber Programme in the MOD space
12. Knowledge and understanding of UK government protective marking standards; industry standards, including ISO/ IEC 27001, NIST, CIS, CESG etc.
13. Experience delivering under the Secure by Design framework
Desired Qualifications:
14. Industry recognized security qualification (e.g., CISSP, CISM, CISMP, SSCP, CISA, ISACA, CEH, CompTIA Security+, etc.)
15. Demonstrable experience with security compliance regulations, such as UK Gov classification, GDPR, HIPAA, EAR / ITAR
Desired Candidate Characteristics:
16. Significant experience working as a Cyber Architect with proven experience working in the Defence sector having implemented a SECRET Level implementation, if not a higher classification
17. A depth of information technology and information security experience
18. Solid grasp of information security requirements and capabilities across different industries
19. Ability to provide oversight and guidance to engineering teams through the deployment where required; ability to review design documentation and provide governance to the delivery process
20. Ability to manage significant ambiguity, i.e. when contractual requirements change, or things are yet ratified to make reasonable assumptions to then allow a course of action to be chosen
21. Disciplined, self motivated, and able to work on own initiative once clear objectives have been set
22. Awareness of common exploits and vulnerabilities and how these may be prevented
Next Steps:
If you are interested in applying for this position and meet the criteria outlined above, please click the link to apply and we will contact you with an update in due course.
Please note that due to recent changes in Off Payroll (IR35) legislation, our client only operates with contractors that operate via a PAYE or Umbrella model. We are unable to accept applications from candidates wishing to operate under their own Limited Company.
AMS, a Recruitment Process Outsourcing Company, may in the delivery of some of its services be deemed to operate as an Employment Agency or an Employment Business.