Contract Security Architect (CESG)
Posted 1 week ago by 1749197311
Negotiable
Undetermined
Onsite
UK (Remote)
Summary: The role of Security Architect involves providing specialist information security oversight and guidance on a DV Cleared site for an initial 12-month contract. The position requires full-time on-site work and focuses on risk management and compliance with security architecture across various projects. The architect will collaborate with project managers and the CISO to ensure effective decision-making and adherence to best practices in information assurance. Key responsibilities include risk analysis, technical advice, and maintaining security standards within the organization.
Key Responsibilities:
- Provide analysis of risks to information systems to inform risk owners and project managers.
- Provide expert subject matter advice to CISO and IS management chain.
- Ensure IT projects receive timely technical security advice.
- Develop and apply the overall security architecture of the organization.
- Work with functions, projects, and the supply chain to assess Information Risk sources.
- Maintain awareness of HMG, MoD, and industry best practices in Information Assurance.
- Advise project solution architects on security requirements.
- Review solution designs for compliance with security architecture and requirements.
- Provide an interface between the organization and the National Technical Authority (NCSC).
- Oversee IT Health Check and Vulnerability Assessments.
- Record and track assessments of information capability and projects.
- Provide technical risk assessment analysis.
- Develop professionalism in Information Risk Management within the organization.
- Attend project Security Working Groups and manage when appropriate.
Key Skills:
- Expertise in information security and risk management.
- Experience in providing technical security advice.
- Knowledge of security architecture and compliance standards.
- Ability to analyze risks and provide recommendations.
- Strong communication and collaboration skills.
- Familiarity with HMG, MoD, and industry best practices.
- Experience in conducting IT Health Checks and Vulnerability Assessments.
- Ability to manage and track information capability assessments.
Salary (Rate): undetermined
City: undetermined
Country: UK
Working Arrangements: on-site
IR35 Status: undetermined
Seniority Level: undetermined
Industry: IT
WA Consultants is currently recruiting for a Security Architect for an initial 12-month contract.
This role will be working on a DV Cleared site and due to the nature of the position, candidates must be willing to work on-site full time.
Details below:
To provide specialist information security oversight, advice and guidance to projects and functions on all aspects of information security in order to provide assurance that functions on all aspects of information security i.e. and/or classified information assets, materials and/or equipment are subject to an acceptable risk management regime.
.
Key Accountabilities:
• Provide analysis of risks to information systems in order to inform risk owners and project
managers to allow effective decision making.
• Provide expert subject matter advice to CISO and other elements of the IS management chain.
• Ensure IT projects are provided with timely technical security advice.
• Develop and apply the overall security architecture of the organisation and the place within in it of key security controls.
• Maintains and promotes high personal standards in environment, safety, health, security and quality and be a great team player.
Key Responsibilities:
• Work with functions, projects and the supply chain to assess the sources of Information Risk and make recommendations on how these are to be managed.
• Provide the lead for maintaining awareness of HMG, MoD and industry best practice in Information Assurance and Information Risk Management.
• Determine how the overall security architecture applies to projects under consideration and advise project solution architects on security requirements.
• Review high and low level solution designs for compliance with overall security architecture, achievement of security requirements and overall efficacy of the security features and tools.
• Provide an interface between the organisation and the National Technical Authority (NCSC).
• Oversee IT Health Check and Vulnerability Assessments by approving scope of tests and overall testing programme
• Record and track assessments of information capability and projects supporting reviews and audits as necessary.
• Provide technical risk assessment analysis.
• Develop the professionalism of Information Risk Management within the organisation.
• Attend project Security Working Groups and manage when appropriate.
Please advise on availability and rate expectations on application. For further information, please contact Alexander Wilson.
WA Consultants is an Employment Business and an Employment Agency as described within The Conduct of Employment Agencies and Employment Businesses Regulations 2003.