Required:
* Mapping long-term business requirements to security architecture frameworks such as NIST, CIS, etc.
* Experience delivering Hybrid Cloud and Internet-facing applications with a strong focus on cyber security.
* Broad hands-on knowledge of firewalls, intrusion detection systems, data encryption, and other industry-standard techniques and practices.
* Strong knowledge of IT infrastructure, IP networking, security best practices, and automation technologies.
* Application security: including but not limited to authentication, identity and access management, auditing, use of cryptography, data security, privacy enhancing technologies, web services security, OWASP, threat & vulnerability management and secure code development methodologies.
* Infrastructure security includes but is not limited to, network security, host security, database security, device security, VPNs and SSLs, secure file transfers, security event monitoring, malware security, and cyber security.
* Operational security: including but not limited to incident management, change and patch management, data centre and physical security, backups, DR and BCP, outsourcing, managed services, cloud computing, asset management, cryptographic keys and certificate management, PCI DSS and DPA compliance, and ISO 27001/2.
* Analysing network security controls, including firewall and router security configuration;
Preferred:
* Delivering the security review processes and frameworks with a full audit trail.
* Managing multiple security assessments and changing priorities simultaneously
* Ensuring Security Architecture Review is built into group-wide and business-specific processes for acquiring and developing new technology, including developing any needed processes. Aligning business requirements to complex security architecture frameworks.
Skills Required:
In-depth knowledge of:
* Firewall: Juniper/Cisco/Palo Alto.
* Onion Security, Splunk, Suricata, Kali.
* Application Security.
* Identity and Access Management.
* Data Protection
* Endpoint Security.
* Cyber Security Operations.
* Experienced with Threat Modelling.
* Pen testing and basic incident response.
* Scripting languages ( python, or PowerShell / building dashboards / automating common tasks)
Preferred:
* Experience in designing systems against a zero-trust architecture.
* Experience with designing SOC architectures (i.e. SIEM, SOAR and vulnerability management solutions).
* Expert-level certification in either AWS or Azure, with a Security specialisation.
* Experience in working within regulated environments, such as PCI-DSS
* Experience in defining secure development lifecycles.
Qualifications
* Bachelor's Degree in Computer Science, Computer Engineering, Software Engineering, Electrical Engineering, Math, or Physics.
* CISSP, Certified Information Systems Security Professional, International Information Systems Security Certification Consortium (ISC2) Certification, Microsoft Azure Solutions Architect, or AWS Solutions Architect.
Other
* 5+ years of Experience working as a Cybersecurity Architect, dealing with subjects ranging from technologies, compliance, or regulatory frameworks that have an impact on the Cyber function or offerings.