Description
Templeton & Partners is currently looking for an experienced Security Architect for a large commercial client in Aberdeen.
12 months contract with possible extension.
Please note: this is inside IR35 contract.
Responsibilities:
- Define and document processes, procedures, configurations, and controls and capabilities to evidence operations, around o Administrative access to AAD
o Privileged access management, including emergency access to applications and services covered by AAD
o Group and SPN management
o Certificate and secret management o Federation with other Identity and Access Management (IAM) solutions Processes should cover activities as normal and emergency access request review, approval and provisioning, regular attestation, and normal and emergency revocation.
- Based on well-prepared virtual workshops, perform end to end assessment of our Microsoft product and services portfolio and its security posture to simplify our Microsoft ecosystem and maximize the use of our existing contract with Microsoft
- Provide recommendations to improve our tenant level design, and suggested approach to implement and operate these changes. This should cover people (to improve governance and drive resource optimization), process (e.g. value stream mapping to reduce business demand fulfillment time) and technology.
- Socialize and present above to the steering team for approval
Qualifications and skills required
- Excellent understanding of Microsoft Azure products (e.g. AAD and O365)
- Expert-level knowledge of security principles and technologies
- Experience designing and implementing security solutions covering AAD and O365 for large global organization
- Familiar with market best practices and implementation of RBAC and zero trust methodologies
- In depth knowledge of the services provided by the Microsoft Azure platform as well as an appreciation for the associated architecture and security challenges
- Experience in service management to detect contract value leakage to maximize contract value
- Proven experience in leading reviews or audits and ability to distil findings into recommendations
- Knowledge of continuous improvements frameworks, which focus on improvements of existing systems, rather than (re-)inventing completely new systems
- Must be able to work across architecture, IRM (i.e. security second Line of IT Defense), delivery and operations security challenges, gaps, options to lead the development of earlier described responsibilities
- Proven delivery focus and hands on mentality: being able to incorporate security requirements into agile driven solutions: strong, proven problem-solving skills and the ability to identify, analyze, and resolve problems, driving solutions through to completion
- Analytical mindset combined with presentational skills
- Excellent writing skills, e.g. to document the resulting processes, procedures, security baseline/architecture guidelines, etc.
- Proven stakeholder management skills, to clarify issues and gaps, present and socialize options, and gain agreement and decisions on suggested outcomes