Head of Security Architecture

Stanton House are partnered with an international Engineering giant who are in the process of establishing an Information and Cyber Security offering in the UK, and they are looking to recruit a talented Head of Security Architecture.

They are a $10billion organisation who boast circa 77,000 employees in 400+ locations globally, and are now looking to build on an already stellar reputation of superior customer service and excellent professional delivery, bringing this to the EMEA region in the Security space. They boast a whole host of high profile and nationally critical clients and are looking for this successful individual to head up the Security Architecture within the business. The Head of Security Architecture will be a highly experienced Security professional with extensive Consulting and management experience operating at a senior level.

Responsibilities

• Work closely with the CISO and other Security Leaders to ensure appropriate and effective security solutions are in place throughout all systems and platforms to deliver exceptional services to their clients
• Create a relevant strategy, roadmap and vision for Security Architecture to then implement and maintain key security technology to improve security posture and strengthen security offering
• Plan, research, design and build robust security architectures for new IT and business-led projects.
• Partner with the other Security leaders in the business to drive widespread adoption of best in class security practices
• Build a team of Cyber Security Architects, setting team direction and objectives which align with business goals
• Define the operating model for which the team runs which will include project intake and stakeholder sentiment measured throughout the calendar year. Execute with discipline by building a repeatable process for the operating model.
• Provide security risk assessment & recommendations to the business, ensuring appropriate controls are in place 
• Perform security research on the latest new security technologies
• Driving security through globally standardized automation with CI/CD processes
• Develop and build strategic relationships with external parties (software vendors, research companies, industry bodies, and strategic partners) to ensure the definition and delivery of architecture is future proofed and in line with industry best-practice
• Influence and manage stakeholders up to CxO level to ensure the Security Architecture is in line with their business goals

Qualifications/Experience

• High level of knowledge across Security Architecture, Security Consultancy, System-level Security and Cloud Technologies
• Thorough understanding of Security Risk with the ability to make pragmatic business focussed decisions
• Experience of supporting project teams with high and low-level security consultancy, design and delivery, with a wide-ranging understanding of security considerations across key technologies
• Expertise in constructing an enterprise security architecture across a diverse technical landscape and understanding of the threat landscape facing both Public and Private Sector organisations
• Experience in multiple areas of IT Security Architecture, alongside delivery of complex multi-layered secure environments including on-premises, Cloud and 3rd party IT deployments
• Professional qualifications in a related subject; CISSP, CISM, CRISC, CCSP, ISSAP, GSEC
• Knowledge of Security Architecture frameworks; TOGAF, SABSA
• Knowledge of Security Governance frameworks & practices; ISO 27001, NIST CSF, CSA
• Knowledge in technologies like encryption, perimeter assessment, protection layering and design, firewalls and access control
• Cloud Security strategy development experience (GCP/AWS/Azure)
• Experience of designing and implementing security in an Agile delivery environment
• Excellent collaboration, communication and presentation skills with the ability to communicate security-related concepts to a broad range of technical and non-technical staff in an intelligent, articulate, and persuasive manner
• The ability to influence and build trust of senior executive stakeholders, translating business needs into strategic requirements and to make recommendations on how best to achieve business outcomes
• Strong coaching skills with the ability to adapt style to explain new cyber protection technology ideas to other architects and security specialists
• Awareness of current industry security threats, challenges and mitigation techniques