Security Architect

Job Description:

About this opportunity

Our Cyber & Physical Defence Centre is undertaking an end-to-end modernisation to increase our ability to stay one step ahead of cyber adversaries. We're looking for a passionate and forward-thinking Solution Architect who can combine deep technical thought leadership with strong security knowledge & skills to help drive the underpinning solution architecture of our Cyber & Physical Defence Centre, with a heavy focus on regulatory and compliance monitoring. The candidate should have strong cryptographic knowledge which will be needed to review and design for existing and new cryptographic solutions.

You'll support our Chief Security Office (CSO) teams, helping to define solution architecture and design that both unlocks, as well as creates, opportunities to digitise, deliver excellent customer journeys and business outcomes. All this while meeting group strategic goals to simplify and redefine the technology landscape.

As a Solution Architect with a security specialism, you will:

• Work with Product Owners, Platform Leads, Enterprise Architects and Engineers within CSO to develop and maintain the architecture that underpins our regulatory and compliance monitoring capability
• Design, build and drive end-to-end solution designs that are not only technically sound, but also include regulatory, commercial and organisational aspects when appropriate
• Use industry best-practice, frameworks, standards and policies to create opportunities and value for our teams and customers
• Elicit requirements, shape and validate designs or prototypes that deliver customer outcomes that align to our target architecture for compliance and regulatory monitoring
• As a subject matter expert, set guiding principles and solution success criteria and provide oversight in building quality, decoupled and modernised architectures
• Support Product Owners and Platform Leads in identifying, articulating and impact assessing software and infrastructure currency risks or issues
• Confidently offer options and recommendations on action planning and continuously ever-greening solutions/systems

What you'll need

• Join the Secrets Management team within the Chief Security Office (CSO)
• Assess and understand the current use of our secrets management solution
• Lead efforts to use of solutions in appropriate environments to align with risk appetite
• Collaborate with stakeholders to gather and validate existing requirements for Secrets Management
• Evaluate and recommend alternative Secrets Management solutions suitable for Disconnected use cases
• Ensure proposed solutions meet security, compliance, and operational standards.
• Established systems engineering or solution architecture experience in multi-disciplinary product, feature or platform teams
• Knowledge of secure configuration and deployment practises such as Infrastructure-as-Code and tools such as Terraform, Harness and GitHub
• Strong knowledge of regulatory and compliance frameworks
• Strong knowledge of Google Cloud Platform (GCP) and Azure and both their security services
• Superb communication skills - especially visually and through telling the story, using the data to communicate complex messages in an accessible and compelling way
• Be able to distil sophisticated information and present in a succinct and clear format through both written and oral presentation, allowing you to influence collaborators with little or no technical knowledge, guiding their thinking on the art of the possible through technology
• Established experience partnering with other collaborators such as Enterprise, Security, Data and Infrastructure architects
• Hold proficient experiences leading activities associated with Architectural Governance, Risk Management and Compliance processes