Description
PRINCIPAL CYBER SECURITY ARCHITECT
SC Cleared
Role Description
As a Principal Security Architect you will have responsibility for interfacing to security design partners across programmes, both customer and supplier representatives, and colleagues within our engineering, service, and business development teams.
You will have a complete understanding of cyber risk and treatment approaches. Based on a strong ability to communicate risk and its proportionate management, you will know how this issue is addressed both in traditional 'off-cloud' highly sensitive platforms, and naturally in cloud technologies. You will be experienced and accomplished in meeting the challenges associated with accrediting systems in public and private cloud environments.
You will be required to develop high and low level security architecture designs for systems intended for secure/sensitive environments, with appropriate security based on detailed risk analysis. SABSA qualifications and experience would be desirable.
Essential
SC cleared - Candidates should have or be willing to undergo SC, and if required, DV clearance.
Process Skills/Experience
Experience of a taking a defence in depth and multi layered approach to security architecture
Experience of applying commensurate detective and protective security controls to reduce risk to an acceptable level
Understanding of the controlling processes for the systems engineering life cycle (eg requirements management, configuration management)
Understanding of different life cycles/methodologies (waterfall, incremental, agile, DevOps)
Experience of the key engineering life cycle reviews - eg System Requirements Review (SRR), Critical Design Review (CDR)
Experience in performing design trade off working with other architects and engineers to deliver an integrated and coherent solution
Experience of the a significant portion of the systems engineering life cycle (from requirements analysis through to acceptance)
Understanding of service operations and security operational management planning
Experience working in both delivery and proposal environments
Experience of Defence Digital and relevant solutions and approaches across MOD
Technology skills/Experience
Excellent understanding of Confidentiality, Integrity and Availability (CIA) and practical experience in applying that
Experience in defining derived security requirements for a system, and managing traceability
Experience of gaining and maintaining accreditation for secure/sensitive systems
Experience in producing security documentation sets (such as SyOPS, RMADs, Security Management Plan, ISMS and DART submissions)
Understanding of the implementation, operation and maintenance of SIEM products
Understanding of network and boundary protection technologies (Firewalls, mail gateways, load balancers, anti-virus)
Understanding of authentication and authorisation technologies (SAML, LDAP, PKI, etc)
Understanding of security infrastructure in Public and Private cloud, eg virtual network infrastructure, hybrid IaaS/PaaS/SaaS solutions.
The ideal candidate will hold CISSP certification in addition to SABSA qualification