Security Architect

Requirement Description:

In the role of a Security Architect, your duties will involve creating, executing, and upkeeping the security framework. This position demands a comprehensive knowledge of information security and risk management, along with a documented history of crafting and deploying effective security measures. As a Security Architect, you will work in collaboration with various teams to safeguard our systems and data, ensuring their confidentiality, integrity, and accessibility. Your responsibilities also include partnering with different business units to coordinate with their teams, making certain that our security framework is in line with the highest industry standards and contributes to achieving our business goals. We embrace and accept individual experiences and backgrounds to achieve a diverse and inclusive workplace.

You will have the opportunity to:

• Develop and execute a strategic security architecture that aligns with business objectives and supports long-term goals.
• Define and champion the implementation of security protocols, standards, and processes to fortify the security posture.
• Incorporate best practices in cybersecurity to safeguard against internal and external threats.
• Continuously evaluate and improve the security architecture in response to new threats and business needs.
• Work across towers within IT to ensure that security is an integral part of all network and system architectures.
• Provide guidance on security best practices to ensure compliance with regulatory requirements.
• Develop strategies to mitigate identified risks and enhance system resilience.
• Develop systems and processes to ensure compliance with legal, regulatory, and policy requirements related to cybersecurity.
• Develop and periodically review comprehensive information security policies and procedures.
• Develop and maintain an incident response plan, outlining procedures for managing security breaches or attacks.
• Oversee the post-incident analysis to identify lessons learned and improve future response strategies.
• Conduct ongoing research into emerging security threats, technologies, and trends.
• Evaluate and recommend new security tools and technologies to strengthen the organisation s defence mechanisms.
• Collaborate in developing a comprehensive cybersecurity training program for employees at all levels.

Qualifications

• Bachelor s degree in Computer Science, Information Technology, Cybersecurity, or a related field is desired.
• A minimum of 8-10 years of experience in information security, with a specific focus on infrastructure security architecture.
• Hands-on experience in managing and securing network and IT infrastructure in a large-scale organisation.
• Proven expertise in active directory security controls and cloud security principles with experience with major cloud service providers.
• In-depth understanding of compliance and regulatory frameworks such as GDPR, ISO 27001, and NIST
• Strong leadership and project management skills.
• Excellent verbal and written communication abilities.
• Ability to explain complex security concepts to non-technical stakeholders.
• Problem-solving and strategic mindset.
• Willingness to stay abreast of new technologies and continuously update skills.
• Ability to work under pressure and handle multiple shifting priorities.
• Experience in conducting and analyzing research on a wide range of security issues.

Certifications:

• At least one recognized security certification (CISSP, CISM, CEH, etc).
• Additional certifications in areas like active directory security, network security, cloud security, or system security.