Get AI-powered advice on this job and more exclusive features.
Job Title: IT Cybersecurity Enterprise Architect
Location: Coventry, UK
Type: Contract role
Note: Client is not providing any sponsorship here
Role Purpose:
The IT Cybersecurity Enterprise Architect is a senior technical leadership role responsible for defining and maintaining the overarching cybersecurity architecture for Client’s IT landscape. This role will ensure that security considerations are embedded within the enterprise architecture, aligning with business objectives, regulatory requirements, and industry best practices. The architect will provide strategic direction and guidance on cybersecurity matters, working closely with other IT architects, security specialists, and project teams throughout the entire project lifecycle within the established solution delivery framework.
Key Responsibilities:
* Develop and Maintain Cybersecurity Architecture: Define and maintain a comprehensive cybersecurity architecture framework that aligns with the overall enterprise architecture and business strategy. This includes defining security principles, standards, patterns, and target architectures.
* Security by Design: Integrate security considerations into the early stages of system design and development within the delivery methodology. Review and contribute to requirements gathering, design specifications, and architectural blueprints to ensure security is proactively addressed.
* Risk Assessment and Mitigation: Conduct and contribute to security risk assessments of existing and planned IT systems and infrastructure. Develop and recommend mitigation strategies and security controls to address identified risks.
* Security Standards and Compliance: Define and maintain security standards, policies, and guidelines in alignment with relevant UK regulations (e.g., NIS Regulations), industry best practices (e.g., ISO 27001, NIST), and internal policies. Ensure adherence to these standards throughout the project lifecycle.
* Technology Evaluation and Selection: Evaluate and recommend security technologies and solutions that align with the enterprise security architecture and business needs. Participate in vendor selection processes, ensuring security requirements are adequately addressed.
* Security Architecture Governance: Participate in architecture review boards and provide expert security guidance on proposed solutions and projects. Ensure that security architecture principles and standards are consistently applied.
* Collaboration and Communication: Effectively communicate complex security concepts to both technical and non-technical stakeholders. Collaborate with infrastructure teams, application development teams, project managers, and business stakeholders.
* Documentation: Create and maintain clear and concise security architecture documentation, including security principles, standards, patterns, and solution architecture documents.
* Staying Current: Keep abreast of emerging cybersecurity threats, trends, and technologies, and assess their potential impact on the company's IT environment.
Qualifications and Experience:
* Bachelor's degree in Computer Science, Information Security, or a related field. Relevant industry certifications (e.g., CISSP, CISM, TOGAF with Security Architecture specialization) are highly desirable.
* Extensive experience (typically 8+ years) in IT, with a significant focus on cybersecurity architecture and design.
* Demonstrable experience in defining and implementing security architectures for complex enterprise environments.
* Strong understanding of cybersecurity principles, frameworks, and best practices (e.g., defense-in-depth, zero trust).
* Proven experience with a wide range of security technologies and solutions, such as firewalls, intrusion detection/prevention systems, SIEM, vulnerability management, identity and access management, data loss prevention, and cloud security.
* Experience with regulatory compliance requirements relevant to critical national infrastructure in the UK (e.g., NIS Regulations).
* Strong analytical and problem-solving skills with the ability to assess and mitigate security risks.
* Excellent communication, presentation, and interpersonal skills with the ability to influence and build relationships at all levels.
* Proven ability to produce clear and concise technical documentation.
* Understanding of the different phases and security considerations within this framework.
* Experience within the energy or utilities sector is advantageous.
Seniority level
Mid-Senior level
Employment type
Contract
Job function
Consulting and Information Technology
Industries
IT Services and IT Consulting, Outsourcing and Offshoring Consulting, and Business Consulting and Services
#J-18808-Ljbffr