Skip to main content

This job has expired

You will need to login before you can apply for a job.

Senior Security Architect/Cyber Security SME - Standalone Role

Employer
Hays.
Location
United Kingdom, City of London
Salary
Competitive
Closing date
21 Sep 2021

View more

Hays Technology Cyber Security have been exclusively engaged by a leading Investment Management firm to find a Senior Security Architect/Cyber Security SME to join the business and take on a challenging Cyber maturity project.

You will be tasked with leading the development of the Security Strategy and the execution of operational cyber security activities holding responsibility for delivery the organisations Cyber Maturity Programme and ongoing Security initiatives.

Responsibilities:

  • Deliver operational security services and SME expertise to the organisation (with suppliers and technology vendors where applicable) including but not limited to vulnerability management, threat hunting, security architecture, threat management, cyber defence, security testing, endpoint protection, security awareness training, secure development and vendor security.
  • Execute and improve the security control framework based on NIST and ISO 27001, improving and maintaining a well-balanced cyber posture.
  • Drive, resolve, and improve threat management and response processes.
  • Evaluate and report on internal compliance against cyber security standards.
  • Improve the security processes incorporating lessons learned.
  • Manage projects and recommendations based on cyber security policy, strategic direction and best practices.
  • Design Azure & O365 Security best practices.
  • Define cyber incident response plans, handle escalations and manage complex incidents in the cyber security domain.
  • Define security policies, procedure and controls.
  • Provide a trusted business advisory service on cyber security and data privacy. Ensuring the organisation remains compliant with the changing laws.

Further duties include:

  • Formulate and drive the cyber security strategy and roadmap based on the risk profile and appetite of the organisation.
  • Continuous commitment to achieving quality improvement of the function.
  • Work closely with external parties for security services and annual audits.
  • Brief the management team on current and possible future threats to the organisation.
  • Safeguard security policy and the ISMS.
  • Targeted cooperation with investigative authorities, supporting regulatory queries as required.
  • Prepare and deliver secure culture campaigns with the aim of increasing employees’ security awareness
  • Stakeholder management, negotiation and influencing.
  • Perform project design security reviews.
  • Facilitate and coordinate external and internal penetration testing and remediation activities.

Person Specification & Skills:

  • Education at degree level in cyber security, computer science or relevant field.
  • Experience of managing operational security activities.
  • Solid understanding of regulatory and compliance requirements, including security frameworks such as NIST, ISO 27001 and GDPR.
  • Demonstrated experience with security technologies and architectures.
  • Demonstrated experience in a software development environment desirable.
  • Demonstrated experience in Azure & O365 Security Best Practice.
  • CISSP and/or CISM certification is required, SANS certifications as well as cloud security certifications desirable.
  • Experience within the Financial Services Industry and Private Equity desirable.
  • Good understanding of Network Security.
  • At least 5 years of experience as an IT security professional.
  • Comfortable communicating across all levels of an organisation.
  • Excellent command of spoken and written English.
  • Demonstrated experience in a dynamic project-based environment with strong customer focus.
  • Affinity with Agile Delivery methods.

This is a highly challenging role which will pull on your skills across Architecture, Engineering, GRC and Incident Response. You will be working with stakeholders at all levels, selecting vendors and delivering business critical improvements across the whole Security Estate.

Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert