Job Description Security Architect - Belfast - Hybrid (2-3 days per week onsite) The Security Architect is responsible for designing, implementing, and maintaining an organization's overall security architecture. This role involves collaborating with various stakeholders to identify security requirements, developing strategies to address potential threats, and ensuring the confidentiality, integrity, and availability of sensitive information. The role requires to be a key stakeholder in any project that this role is a part of, this means being a subject matter in various areas, being able to lead workshops around security solutions and services on your own, highlight areas of improvement for our customers to continuously improve their security posture. Core responsibilities include: Security Architecture Design: Develop and maintain a comprehensive security architecture that aligns with business goals and regulatory requirements. Design and review security solutions, ensuring they meet industry best practices and standards. Planning, studying and designing a security architecture for IT projects Designing, developing, and continuously improving vulnerability assessment, security testing, and risk analysis Designing, developing, and continuously improving the security posture of the company's products Providing developers with remediation guidance and advice Evaluating cloud and security technologies Designing, developing, and continuously improving security operations Recommending and providing technical leadership for the implementation of security measures to protect information systems, networks, and data Risk Assessment and Management: Conduct risk assessments to identify potential vulnerabilities and threats. Develop risk mitigation strategies and work with relevant teams to implement necessary security measures. Security Policy Development: Establish and enforce security policies, procedures, and standards across the organisation. Collaborate with legal and compliance teams to ensure policies align with industry regulations. Security Awareness and Training: Provide security training and awareness programs for employees to promote a security-conscious culture. Keep abreast of the latest security trends, threats, and technologies. Collaboration with IT Teams: Work closely with IT teams to integrate security measures into the overall IT infrastructure. Collaborate with system architects, developers, and administrators to ensure security is incorporated into all aspects of the system development lifecycle. Incident Response and Forensics: Develop and maintain an incident response plans to address security incidents promptly. Conduct forensic analysis of security incidents to identify root causes and prevent future occurrences. Security Audits and Compliance: Perform regular security audits to assess compliance with established security policies. Ensure compliance with industry standards and regulations.