Cloud Security Architect

Job type:
on-site
Start date:
ASAP
Duration:
12 months
From:
Harvey Nash IT Recruitment UK
Location:
London
Published at:
04/08/2021
Country:
flag_no United Kingdom
Project ID:
2086417

Warning
This project has been archived and is not accepting more applications.
Browse open projects on our job board.

Cloud Security Architect

A Leading Financial Services Business are looking to hire an experienced Cloud Security Architect

12 month Contract

£500-£600 a day Inside IR35 (Umbrella or PAYE only)

Remote/WFH based

  • Cloud security certifications such as CCSK or CSA (Cloud Security Alliance) or other relevant and recognised qualification desired.
  • Certifications in Microsoft cloud security and architecture practices desired.

The Security Architect is expected to be an expert in the implementation of workload within Public Cloud in a secure and compliant manner and will consult on the appropriate use/AWS/Azure/Google Cloud capability.

The Security Architect will drive engagement with Cloud Operations and Product Delivery teams to support the definition of security requirements for new services and refactored applications.

A Cloud Security expert who can view the Cloud Infrastructure through a Security lense, understand and recognise vulnerabilities and potential glitches etc. Ideally you will be proficient in understanding the intricacies of a large financial services business.

  • Delivering in collaboration with the product team and Cloud Operation team robust and innovative security architecture for Azure.
  • Working with stakeholders to implement secure and compliant use of O365 services across global locations.
  • Designing security in from the start and supporting the companies cloud first strategy.
  • Creating, reviewing and enforcing security design patterns to support desired architecture.
  • Empowering Product Teams and Cloud Operations to achieve secure delivery underpinning the Cloud First strategy.

Cybersecurity is responsible for protecting the technology environment from internal and external security threats:

  • Application Security
  • Access Management
  • Cyber Defence Operations (CDO)
  • Information Security Management
  • Infrastructure Security
  • Security Architecture and Engineering
  • Security Application Support

The Security Architecture & Engineering team are also responsible for being aware of the 'bigger picture', influencing and implementing designs and solutions that are supportive of security and other longer-term technology strategies.

Examples of this include web application infrastructure, Platform as a Service and Public Cloud where opportunities for automation and integration must be identified and implemented.

The successful candidate will have excellent infrastructure and application technology skills and experience and is preferred to be able to demonstrate having gained this experience working in a security environment, the ability to 'think and act' as a security professional.

Key Responsibilities of the Security Architect role:

  • Ensure that security requirements and controls are Embedded into business change
  • Support the architecture of security component services including infrastructure and application design
  • Review and input into the appropriate use of security technologies within the company
  • Define secure infrastructure and application build/implementations
  • Input to technology security roadmaps and strategy
  • Support the evaluation of new products and vendors during formal and informal processes
  • Input to wider technology stream strategies, design and implementations
  • Ownership of security led projects, and participation in non-security led project activities

Experience and Qualifications Required

  • Experience and strong understanding of security access management principles and standards implementations, such as federation (SAML, oauth etc)
  • Proficient in the contemporary use of IaaS (AWS & Azure) such as compute, storage, network services, containers and serverless computing
  • Understanding of the underlying protocols and technical components used as the basis for security services, including: HTTP, HTTPS, SQL, TCP/IP, Active Directory, LDAP etc
  • Banking or Finance industry related experience desirable

  • CISSP or equivalent security certification preferred