Job Description
The Cybersecurity and Cloud Architect in the Enterprise Security team is a key member of the security leadership team, reporting directly to the Chief Information Security Officer (CISO). This strategic role is responsible for defining the architecture requirements of our cybersecurity solutions and ensuring they are being adhered to. Further, they will be accountable for defining and leading the company's cloud security posture, ensuring that security solutions are aligned with business, technology, and threat drivers.
Responsibilities:
* Responsible leader for the cloud security strategy across a large and complex multi-cloud environment, ensuring the right people, process and technologies are in place.
* Create and lead technical security strategy plans and roadmaps for all environments, including cloud and on-premise infrastructure.
* Develop and maintain security architecture artefacts, including models, templates, standards, and procedures.
* Establish baseline security configuration standards for operating systems, network, infrastructure etc.
* Understanding of AI and Automation across Enterprise Security to deliver improved efficiency and security outcomes.
* Perform security reviews, identify gaps, and develop a risk management plan.
* Track changes in the digital business and threat environments to ensure they are addressed in security strategy plans and architecture artefacts.
* Validate IT infrastructure and reference architectures for security best practices and recommend changes to enhance security and reduce risks.
* Conduct threat modelling of services and applications.
* Perform technical risk assessments on business initiatives and requirements, balancing business enablement and security risk.
* Review network segmentation to ensure the least privilege for network access.
* Define and document how new systems or interfaces impact the security posture of the current environment.
* Evaluate Statements of Work (SOWs) to ensure adequate security protections are in place and assess providers' audit reports for security-related deficiencies.
Required skills and experience:
* Experience in developing and maintaining security architecture processes and strategies for cyber security solutions.
* Experience with cloud and on-premise infrastructure security.
* Ability to perform security reviews, identify gaps, and develop risk management plans.
* Experience in threat modelling and secure coding practices.
* Superb communication, collaboration and documentation skills.
* Knowledge of privacy regulations and data flow documentation
Nice to Have Skills and Experience:
* Experience within Technology or Engineering sector
In return:
* Opportunity to work in a dynamic and collaborative environment.
* Access to the latest security technologies and trends.
* Professional development and growth opportunities.
* Competitive salary and benefits package