Summary: The IT Security Architect role involves developing and implementing a robust security architecture to safeguard an organization's IT infrastructure, data, and assets. The position requires designing security frameworks, ensuring compliance with industry standards, and enhancing the overall security posture. The role is a 6-month initial contract based in London with hybrid working arrangements. Key responsibilities include security assessments, architecture design, policy development, and incident response planning.

Key Responsibilities:

• Security Assessment & Risk Analysis - Update documentation on current security posture, assess risks, and conduct gap analyses against industry standards (ISO 27001, NIST). Identify vulnerabilities and ensure compliance with client contracts.
• Security Architecture Design - Refine high-level and detailed security architectures, including network segmentation, encryption, access controls, and Firewall configurations. Develop strategies for secure system transitions.
• Policies & Procedures - Develop and refine security policies, standard operating procedures (SOPs), and access control policies (IAM, RBAC, MFA).
• Implementation & Technical Controls - Create a roadmap for security deployment, confirm tool selections, define change management procedures, and establish endpoint security solutions.
• Security Monitoring & Incident Response - Review existing security monitoring frameworks, recommend enhancements, and define incident response protocols. Implement SIEM solutions, logging, and auditing procedures.
• Compliance & Regulatory Documentation - Ensure adherence to GDPR, HIPAA, PCI-DSS, and other relevant regulations. Prepare audit documentation and compliance mapping.
• Penetration Testing & Vulnerability Management - Develop and execute penetration testing plans, conduct vulnerability assessments, and oversee remediation efforts.
• Training & Knowledge Transfer - Create security awareness training materials and conduct specialized training sessions for IT staff. Provide comprehensive documentation for ongoing security management.
• Project Management & Reporting - Maintain a detailed security project plan, track progress, and report on implementation status and risk mitigation strategies.

Key Skills:

• Expertise in security assessment and risk analysis methodologies.
• Proficiency in designing security architectures and implementing security controls.
• Strong knowledge of compliance standards such as GDPR, HIPAA, and PCI-DSS.
• Experience with penetration testing and vulnerability management.
• Ability to develop security policies and standard operating procedures.
• Familiarity with security monitoring tools and incident response protocols.
• Project management skills and experience in reporting on security initiatives.
• Excellent communication and training skills for knowledge transfer.

Salary (Rate): undetermined

City: London

Country: UK

Working Arrangements: hybrid

IR35 Status: undetermined

Seniority Level: undetermined

Industry: IT