Security Solution Architect / Engineer - Senior
Location: Cardiff - Hybrid working - 2 days p/week onsite in Cardiff
Start Date: ASAP
£500-650 p/day
End Date: 6 months from commencement date, with the option to extend
This role will be within IR35
We are urgently seeking a Security Solutions Architect for our financial services client in Cardiff.
The team you will join are responsible for protection agianst cyber threats. We need someone who's a “hands on” Security Solution Architect & can be the technical point of contact for the business.
Role includes:
• Analysis of business requirements and ownership of security requirements.
• Responsible for the design, redevelopment of all the Access Control measures and risk mitigation controls required for Atradius’.
• Responsible for ensuring that solutions meet not only the business needs, but also operational, legal, regulatory and compliance requirements and that these are suitably audited.
• Close cooperation with external partners on security related solutions, designs and services at the application and system level.
• Providing support to Programmes, and complementary business requests, to provide practical, realistic solution designs as to how to achieve outcomes that meets business needs, whilst balancing the level of risk against opportunity and cost.
• Educating personnel and raising awareness across Atradius of Security best practice and secure architected principles.
• Remaining abreast of Information Security (and general technological advances and their implications for Information Security) both within Atradius and in the broader cyber security ecosystem.
• As Security Solution Architect / Engineer you will be expected to translate policy statements and theoretical best practices into practical advice for application designers / developers, operational colleagues and Architectural strategy for the future.
• Actively driving Information Security so that is embedded as “Business as Usual” across other teams within ITS, IT systems and processes and more broadly, across the whole Group.
The ideal candidate will have the following profile:
• Relevant Information Technology and Information Security knowledge (and ideally certification such as SABSA /CISSP / ISSAP / GIAC/ CEH). Applicants without relevant Information Security certifications (or a related degree) will be considered, but will be expected to have demonstrable knowledge of Information Security Architectural concepts and best practices.
Other qualifications:
• Experience with security standards (e.g. ISO27001/2 & NIST), good practice and main cyber security / Privacy related regulations.
• Demonstrable experience of having worked within Information Security as an analyst or engineer is highly desirable.
• Architecture certifications like iSAQB CPSA, CCXP or TOGAF are a plus.
If this sounds like you please apply now for further details, thanks!