Job Type:
Permanent
Build a brilliant future with Hiscox
Position: Cyber Security Architect
Reporting to: Delivery Team Leader (Cyber Fusion Centre)
Location: York (UK) or Lisbon (Portugal)
Type: Permanent
Band: II
Company description
Hiscox is a diversified international insurance group with a powerful brand, strong balance sheet and plenty of room to grow. Listed on the London Stock Exchange and headquartered in Bermuda, Hiscox has over 3,000 staff across 14 countries and 34 offices.
The Role
The Cyber Security Architect works in our Cyber Fusion Centre, responsible for ensuring the safety and security of our business assets and interests. You will design, build, and implement security solutions to protect against sophisticated cyber threats. You will translate business needs into security requirements, ensuring that systems and data are protected from unauthorized access and potential breaches.
You will work closely with our Red and Blue Teams to identify vulnerabilities and control gaps, turning these into a pipeline of continuous improvement for our cyber defenses. You will collaborate with our Cyber Security Engineers to design, build, implement, and maintain the security controls needed to manage our cyber risks. You will also engage with project delivery teams across our business, providing expert security advice and guidance in support of their objectives. A strong technical background and experience with various architecture and delivery methods are essential.
Key Responsibilities
1. Gather, analyze, and prioritize requirements for security architecture and systems design.
2. Develop and maintain a robust roadmap of security controls based on agreed objectives and priorities.
3. Evaluate current security measures, analyze vulnerabilities and control gaps, and recommend improvements to mitigate risks.
4. Perform technical risk and control assessments in support of the overall risk management lifecycle.
5. Design and implement operational security capabilities, and measure the effectiveness of controls over their lifecycle.
6. Support the development and maintenance of technical security policies, standards, and processes.
7. Research emerging cyber security trends, threats, and technologies to improve our security posture.
8. Define and govern delivery pipelines and plans to ensure controls are delivered on time and within budget.
9. Maintain detailed documentation relating to security systems design, including traceability to requirements and control assurance evidence.
10. Ensure compliance with all relevant statutory and regulatory security commitments.
11. Support the incident response lifecycle with measures to contain the impact of a breach and prevent future incidents.
12. Deliver education and training initiatives to raise awareness of cybersecurity across our business.
Candidate Profile
1. 5+ years experience in a security architecture or security operations role.
2. Excellent knowledge of capability-oriented security architecture and design.
3. Excellent knowledge of Agile delivery methods, including DevSecOps models.
4. Excellent knowledge of requirements analysis and systems engineering.
5. Strong analytical skills with the ability to work independently.
6. Proven experience in governing and delivering security projects.
7. Comprehensive knowledge of the latest tactics, techniques, and procedures to mitigate risks.
8. Good presentation and technical design writing skills.
9. BSc or MSc in Cybersecurity is desirable.
10. Cybersecurity architecture qualifications from bodies such as SANS, CREST, and ISC2 are desirable.
11. Industry-recognized vendor certifications in security technologies are desirable.
Diversity & Benefits
At Hiscox, we care about our people. We hire the best people for the job and are committed to diversity and creating a truly inclusive culture. Our hybrid working model encourages a healthy work-life balance, allowing you to manage your own personal work-life balance.
Our benefits package includes a bonus, contributory pension, 25 days annual leave plus 2 Hiscox days, and a 4-week paid sabbatical after every 5 years of service, private medical for all the family, and much more. #J-18808-Ljbffr