Senior Director of Security Architecture

Senior Director of Security Architecture

Austin
Permanent
23.05.2021
Competitive

Senior Director of Security Architecture

The Senior Director of Security Architecture is responsible for managing clients enterprise & solution security architecture, alongside its cloud and network security practices. In this role, you will be providing technical and professional leadership, and work with the CISO to set out the security architecture strategy to ensure appropriate security controls are in place to address threat universe and support its rapid growth.

Key Responsibilities

  • Design and implement a comprehensive strategy to deliver continuous improvements on our infrastructure and systems security posture
  • Sets out a security architecture strategy and framework for client, based on recognised information security architecture frameworks (e.g.TOGAF, SABSA, OSA), Standards and best practice design principles
  • Collaborate with fellow leaders of the Information Security organization to support their functions with technical solutions and expertise
  • Research, evaluate, and recommend security technologies that can be applied to technology solutions across the company
  • Develop, mentor, and lead a high-performing staff of information security experts
  • Provides deep specialist advice to leadership and key stakeholders including commercial and product teams
  • Ensures the security architecture and its corresponding controls align to deliver of best practice security architecture principles, effectively mitigate risks and conform to all requirements including legal, regulatory and business requirements
  • Maintains awareness of latest security principles, techniques and protocols
  • Assesses security advantages and vulnerabilities of emerging technologies
  • Key role in evangelising the benefits of security architecture, working as an enabler and setting out Security By Design agenda.

Key Skills Required

  • Deep technical background, with a firm understanding of enterprise systems
  • Excellent knowledge of common security architectures (e.g. TOGAF, SABSA, OSA) and security architecture standards
  • Strong and current understanding of security threats, attack patterns, common and emerging security vulnerabilities and how they manifest themselves in different types of environments
  • Understands the legal and regulatory environment within which the business operates and has knowledge of relevant security related legal and regulatory requirements
  • In depth knowledge with public cloud architecture and platforms, such as GCP, AWS, Kubernetes and securing SaaS offerings
  • Demonstrated knowledge of complex identity and access management models
  • Experience with automation tools and methodologies associated with DevOps
  • Prior hands on experience with security technologies commonly leveraged to support a large- scale, multi-platform enterprise environment
  • Strong communication and influencing skills, with personal gravitas and ability to effectively advise leadership and influence senior stakeholders
  • Strong commercial awareness to enable business growth through effective security
  • Good level of knowledge of information security risk management methodologies and best practices.

Person Specification

  • A deep passion for innovation and improving organization performance through the application of emerging technologies and practices with a strong desire to continually learn new technologies.
  • Critical thinker, excellent problem solving skills
  • Is practical, able to apply theoretical / academic principles in a practical, consumable manner
  • Fast learner – committed to continual learning, willing to expand skill set and rapidly understand new technologies
  • Creative and pragmatic, always seeking to achieve the best achievable outcome
  • Is compassionate and caring towards others. They respect the views and ideas of others
  • Works in a straight-forward, collaborative and inclusive way and is non-political
  • Is tenacious, in the pursuit to delight our users. Strives for excellence in all they do and always look to improve our service and product
  • Regularly seeks to turn ideas into action and injects creativity into every touch point
  • They question common practice to challenge the norm
  • Can-do attitude and a positive viewpoint
  • Takes ownership and always delivers against what is agreed.

Qualifications

And Experience

  • Extensive previous experience in setting security architecture strategy, designing and delivering security solutions – held similar role within large international organisation
  • 10+ years information security experience
  • Relevant security architecture professional qualification, such as GIAC or other
  • Membership relevant professional body / industry group
  • Strong cryptography knowledge and implementation expertise
  • Good understanding of SDLC and modern development methodologies
  • Previous experience of security testing
  • Working knowledge of at least one programming language
  • Desirable
  • Graduate / post graduate study in computing / security related field
  • Previous experience in healthcare industry

Apply for this Job

Please enter your full name.

Enter a valid email address.

Upload your CV to accompany your application for this job.

Fields marked with * are required.

Cyber Security Manager

CYBER SECURITY MANAGER – Brownfield Opportunity   Become a Cyber Security Manager for a rapidly growing global consultancy (doubled in size in the past 18

Read More »
Head of Cyber Defence

Head of Cyber Defence – Home Working £120 – £140k base + Excellent Benefits A Head of Cyber Defence is required to enhance the cyber

Read More »
ISSO – All Levels

ISSO All Levels – Baltimore MD – CI/FS Poly Required · Bachelor’s Degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline

Read More »