Create Alert
Apply now »

Cloud / Security Solutions Architect

Function:  Technology
Location: 

London, LND, GB

Work Arrangement:  Hybrid

As a Cloud / Cyber Solutions Architect, your primary responsibility is to design and implement robust security solutions that effectively protect an organisation's digital assets and infrastructure. You work closely with stakeholders to understand their business objectives, security requirements, and compliance obligations, translating them into comprehensive security architectures and strategies. You assess the organisation's current security posture, identify potential risks and vulnerabilities, and develop proactive measures to mitigate them. Leveraging your expertise in cybersecurity technologies and best practices, you design security controls and mechanisms across multiple domains, including identity and access management, data protection, network security, and cloud security. You collaborate with cross-functional teams to ensure that security solutions align with business goals and integrate seamlessly into existing systems and processes. Your role also involves staying updated on emerging threats and industry trends, continuously evaluating and improving security architectures, and providing guidance and thought leadership to enhance the organisation's overall security posture. Through your strategic vision and hands-on expertise, you play a pivotal role in safeguarding the organisation's critical assets and enabling secure digital transformation initiatives.

KEY RESPONSIBILITIES

  • Cloud Architecture Design: They design and architect cloud-based solutions, considering security requirements and best practices from the outset. They select appropriate cloud services, platforms, and technologies to meet business objectives while ensuring security, scalability, and performance.
  • Security Assessment and Planning: They assess the security posture of cloud environments, identifying potential risks, vulnerabilities, and compliance gaps. They develop comprehensive security plans and strategies to mitigate risks and ensure compliance with regulatory requirements and industry standards.
  • Identity and Access Management (IAM): They design IAM solutions for cloud environments, including user authentication, authorization, and privilege management. They implement role-based access controls (RBAC), multi-factor authentication (MFA), and other identity verification mechanisms to enforce least privilege principles and protect sensitive data.
  • Data Protection and Encryption: They design and implement data protection mechanisms, including encryption, tokenization, and data masking, to safeguard data at rest, in transit, and in use within cloud environments. They leverage encryption key management solutions and data loss prevention (DLP) technologies to protect against data breaches and unauthorized access.
  • Network Security: They design secure network architectures for cloud environments, implementing network segmentation, firewalls, intrusion detection/prevention systems (IDS/IPS), and virtual private networks (VPNs) to protect against network-based attacks and unauthorized access.
  • Security Monitoring and Incident Response: They design and implement security monitoring solutions for cloud environments, including log management, SIEM integration, and real-time threat detection. They develop incident response plans and playbooks to facilitate rapid detection, containment, and remediation of security incidents.
  • Compliance and Governance: They ensure compliance with relevant regulatory requirements, industry standards, and organisational policies governing cloud security. They establish governance frameworks and controls to enforce security policies, conduct regular audits and assessments, and maintain compliance documentation.
  • Secure DevOps and Automation: They integrate security into the DevOps pipeline, implementing security controls and automated testing procedures to ensure that cloud-based applications and services are developed, deployed, and operated securely. They leverage infrastructure as code (IaC) and configuration management tools to enforce security policies and standards.
  • Cloud Security Best Practices: They stay abreast of emerging trends, threats, and best practices in cloud security, continuously evaluating and improving security architectures and strategies. They participate in industry forums, conferences, and working groups to share knowledge and expertise with peers.
  • Collaboration and Communication: They collaborate with cross-functional teams, including IT, security, development, and operations, to align cloud security initiatives with business objectives and requirements. They communicate security risks, recommendations, and trade-offs effectively to stakeholders at all levels of the organization.

  

EXPERIENCE & QUALIFICATIONS

  • Excellent stakeholder management
  • Expert in cyber security technologies and operational processes
  • Proven background as a global security architect for a minimum of 10 years
  • Strong experience in the use of security architectural concepts and being able to visualise designs and strategies. 
  • Strong experience in security technology and deep knowledge of CIS18 controls
  • Knowledge of CIS, ISF, Mitre or NIST (or equivalent) security frameworks
  • Proven background in the investigation of security incidents, remediation activity and associated reporting
  • Cyber security qualifications

 

 WHAT WE OFFER

  • 25 days annual leave (+ additional day off for your birthday!)
  • 3 days personal leave for your own signification life events
  • 2 paid days off for volunteering/charity work
  • Optional Wella Pension Scheme
  • Optional Family Private Medical Insurance Cover
  • Income Protection
  • Life Insurance
  • Staff Discount (80% of all hair products, 40% OPI, 1 x 50% ghd)
  • EAP (Employee Assistance Programme)
  • Enhanced maternity, paternity, and adoption leave.
  • Gym Benefits

Apply now »