Senior Global Enterprise Security Architect - FTSE10 - 6 Month Contract

Description

On behalf of a Global Leader we are currently looking for a Senior Global Security Enterprise Architect to join them on a 6 Month Project.

What are the key objectives and expectations from this role?

The role will be responsible for developing a comprehensive security architecture and design approach to enable the security organization to follow the Plan-Build-Run-Monitor approach and focus on ingraining core design principles and architectural concepts into the security controls and processes supporting overall company mission and goals. Fundamental concepts like Zero-trust architecture, segmented zoning, containerized applications, and multifactor authentication architecture are as applicable as are core principles such as security & privacy by design, least privileges, and common best practices. As they are creating a writing culture, they also want to establish an architectural design review culture to ensure their security processes are solid and aligned. This role will have first and foremost an internal focus on the security organization and the used systems, tools, and sources. After accomplishing this, the scope will be broadened to focus on certain aspects of engineering and process optimization.

• Lead the Security Architecture Enterprise capability - ensure the building of hybrid skills across the team, that considers architectures holistically and enforces best practices in enacting Dev-SecOps
• Lead the process for updating security architecture and continually review and improve it to ensure alignment of business objectives
• Manage the effort to further enhance the automation of addressing security risks and compliance requirements
• Identify automation opportunities in the areas like DevOps, Cloud Security, IAM and Security Operations and create use case for implementation
• Enhance the Cloud Security capability, roadmap and processes based on deployment models
• Enhance the Application Vulnerability Governance to develop consistent DevSecOps across cloud and on-prem environments
• Identify tools and technology for implementation to manage the dynamic threat landscape and create a security roadmap
• Establish security controls from end point, in transit, and at rest to other end points
• Lead the security innovation, work with security industry leaders and internal stakeholders to mature the partners security capabilities
• Grow effective partnership with strategic vendors to ensure we follow security best practises and standards in protecting company data and effectively respond to the cyber threat landscape
• Ensuring stakeholders inside and outside of the Cybersecurity function are consulted and engaged on the development
• Educating technical and non-technical stakeholders on the Global Enterprise Security Architecture and the associated technologies
• Contribute to development of the Architecture Governance Framework including the Technical Architecture Board (TAB) process

Experience Required

• At least 10 years' experience in cyber security working in a large global organisation as a senior enterprise architect within a global function. Ideally having worked in a large FMCG organisation or a pharmaceutical organisation with a heavy digital and cloud presence
• Delivered Enterprise or Solution Security Architecture across multiple technology and application domains solving complex business issues
• Managed stakeholders at all levels in an organisation, including to C-Level'

Technical/Functional/Leadership Skills Required

• Developing Security Architecture blueprints to address emerging cyber trends, compliance requirements, business needs and cyber risks
• Consulting and mediation to resolve conflicts and tension through Enterprise Security Architecture to achieve the suitable balance between cost, security risk, and business agility
• The ability to be trusted Enterprise Security subject matter expert in different security and technology domains
• The ability to identify risks associated with business processes, operations, information security programs and technology projects
• Outstanding communication skills that go beyond tech talk' and the ability to translate complex Security matters to those without an IT and Security background
• Good knowledge of TOGAF and strong skills in architecture modelling techniques like business and technology capability modelling, maturity modelling, change readiness assessments, impact assessments etc.
• Knowledge of Lean-Agile Architecture frameworks preferable Open Group Agile Architecture and Scaled Agile Framework (SAFe)
• Experience in creating Conceptual, Logical and Physical architecture views and communicating them to respective audiences
• Technical architecture knowledge of public cloud (AWS/Azure), Identity and Access management, perimeter network and Zero Trust would be beneficial
• Strong stakeholder management experience at all levels in an organisation
• Must be able to take business priorities and create target application and technology views based on them
• Business acumen, ability to articulate both business, commercial and technical ideas clearly and simply
• Consulting skills to engage, communicate with and influence stakeholders effectively
• Commercial skills (understand and consider financial implications of proposals)
• Effective communication, engagement, and relationship management skills
• Effective facilitation, influencing and negotiation skills