Cyber Security Architect - Invesment Banking
Posted 3 days ago by Sterlings
Negotiable
Undetermined
Hybrid
City Of London, England, United Kingdom
Summary: The Cyber Security Architect role in Investment Banking focuses on ensuring compliance with NIST, ISO27002, and CIS risk controls while managing cloud security solutions across multi-cloud environments. The position involves overseeing Kubernetes security controls, assessing enterprise cloud architectures for security gaps, and collaborating with IT teams to manage cyber security threats. The role requires a strong background in cloud and cyber security, particularly within the financial services industry, along with relevant professional certifications.
Key Responsibilities:
- Ensure NIST, ISO27002 and CIS aligned risk controls are covered, including Cyber Security Policies & Standards.
- Monitor and proactively manage all Cloud Security toolsets including CSPM and CWPP.
- Manage and oversee cloud security solutions across multi-cloud environments like Azure, OCI, and AWS.
- Manage and oversee Kubernetes security controls for containerised workloads in AKS, OKE, EKS, and On-Prem Kubernetes environment.
- Review and assess enterprise cloud architectures for security gaps and recommend mitigations.
- Develop, improve and enforce cloud security standards, policies, and procedures.
- Liaise and collaborate with IT teams to ensure Cyber Security alerts, threats, and vulnerabilities are managed and mitigated.
- Support Operational Risk management & Operational Security duties where requested.
Key Skills:
- Strong Cloud, Information or Cyber Security Architect background, ideally with Financial services Industry background.
- Strong knowledge of cyber security frameworks, standards, and regulations such as ISO27001, NIST, CIS, GDPR, etc.
- Active involvement in internal and external audits and experience of managing Audit relationships.
- Relevant professional certifications such as CISSP, CISM, CCSP, Azure Security Engineer Associate, Microsoft Cybersecurity Architect, AWS Certified Security.
Salary (Rate): undetermined
City: City Of London
Country: United Kingdom
Working Arrangements: hybrid
IR35 Status: undetermined
Seniority Level: undetermined
Industry: IT
Responsibilities; Ensure NIST, ISO27002 and CIS aligned risk controls are covered, including Cyber Security Policies & Standards. Monitor and proactively manage all Cloud Security toolsets that includes CSPM, CWPP Managing and overseeing cloud security solutions across multi-cloud environments like Azure, OCI and AWS. Manage and oversee Kubernetes security controls for containerised workloads in AKS, OKE, EKS and On-Prem Kubernetes environment. Review and assess enterprise cloud architectures for security gaps and recommend mitigations. Develop, improve and enforce cloud security standards, policies, and procedures. Liaise and collaborate with IT teams to ensure Cyber Security alerts, threats and vulnerabilities across the IT estate are highlighted, managed and mitigated within appropriate timescales. Support Operational Risk management & Operational Security duties where requested.
Requirements; Strong Cloud, Information or Cyber Security Architect background, ideally with Financial services Industry background. Strong knowledge of cyber security frameworks, standards, and regulations such as ISO27001, NIST, CIS, GDPR, etc. Active involvement in internal and external audits and experience of managing Audit relationships. Relevant professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Cloud Security Professional (CCSP), Azure Security Engineer Associate, Microsoft Cybersecurity Architect, AWS Certified Security. Please note, this is a hybrid position, 3 days in the office a week.