Principal Cyber Security ArchitectsMethods

Essential Skills and Experience:

• A versatile and experienced consultant (leader) with a background in Cyber Security
• Ability to deputise in absence for Head of Security Architecture
• Minimum 7-10 years of experience in Information Security related positions
• Minimum 5-7 years of experience in security architecture
• Cyber Security Certification e.g NSCS CCP, ISC2 CISSP, ISACA CISM or similar
• Certification in AWS or Azure for Architecture and Security or similar
• IASME / Cyber Essentials Plus Certified
• Expert knowledge of secure network architecture and technical design, with high strategic impact
• Experience in creating secure architecture in either AWS and/or Azure
• Have a deep and evolving level of technical expertise, acting as an exemplar, being recognised expert and demonstrate this expertise by solving unprecedented issues and problems
• Experience providing expert strategy, risk and technical advice, guidance and support on cyber security, both in business-as-usual and for live and planned projects within our clients’ business.
• Expected to be the point of escalation for architects in lower grade roles and lead technical design of systems and services
• Broad range of cyber and information security skills, knowledge and experience such as security threats and vulnerabilities that impact/and/or emanate from system hardware, software and other infrastructure components, and relevant strategies, controls and activities to prevent, mitigate, detect and resolve security incidents affecting system hardware, software and other infrastructure components.
• Experience in gap analysis for specific domains, identify gaps in existing capabilities, service maturity. Identify missing cybersecurity and cyber-resiliency capabilities in alignment with changing business needs, threat land scape and technical requirements to increase the quality of the selected solutions also including topics such as products’ convergence over time and products decommissioning.
• Expert knowledge of identifying, developing and communicating threat modelling and understanding the impact of decisions, balancing requirements and deciding between approaches
• Research and apply innovative security architecture solutions to new or existing problems and be able to justify and communicate subtle design decisions
• Able to develop vision, principles and strategy for security architects for projects or technologies
• Demonstrably experienced in working as an effective member of a multi-disciplinary team and reach & influence a wide range of people across larger teams and communities.
• Excellent stakeholder management, presentation and communication skills, with the ability to interact with senior stakeholders across department and clients
• Pro-active approach to personal and professional development.
• Work closely with your peers in the security architecture group, service and solution architects, engineers, project teams.
• Must hold, or be able to hold, an HMG Security Check (SC) clearance.
• Ability to apply standards, practices, codes and assessment of certification programmes relevant to the IT industry and the specific organisation or business domain.
• Experience in writing and creating Cyber Security documents i.e. Risk Assessments, ESRM, DPIA etc and produce particular patterns and support quality assurance
• Knowledge of the IT/IS infrastructure (e.g databases and LANs) and the IT applications and service processes used within own organisation, including those associated with sustainability and efficiency.
• Ability to use any tool or system which provides security access control (e.g Active Directory)
• Showing proficiency in the principles and application of cloud/virtualisation (including ownership responsibilities and security implications) and be able to use tools and systems to manage virtualised environments e.g Server/desktop virtualisation and SDDC (Software Defined Data Centre).

Desirable Skills & Experience:

• Certification in AWS/Google/Microsoft Certified Security specialist, architect
• Security Certification e.g NSCS CCP, GDSA, SANS GIAC, CISSP-ISSAP or similar
• Knowledge of evolving digital technology/applications e.g. AI/Digital twins/IoT
• Knowledge of principles, practices, tools and techniques of IT auditing.
• Knowledge of offensive tactics, techniques, and procedures (TTPs), ideally completed training and/or certifications (OSCP, CEH, Pentest+, etc.)
• Experience working on central government, local government and public corporations projects and deliverables
• Experience in the discipline associated with data sets so large and/or complex that traditional data processing applications are inadequate. The data files may include structured, unstructured and/or semi-structured data, such as unstructured text, audio, video, etc. Challenges include analysis, capture, curation, search, sharing, storage, transfer, manipulation, analysis, visualisation and information privacy.
• Knowledge, application, implications and technical aspects of computer-mediated tools that allow people to create, share or exchange information, ideas, and pictures/videos in virtual communities and networks.
• Methods and techniques for preparing and presenting business cases, requests for proposal (RFP) invitations to tender (ITT) and statements of requirements/work both verbally and in writing.

Am I the right fit? We're looking for:

• Resilience
• Strong collaboration and team working
• Good Communication skills
• Genuine passion/commitment to improving public services
• A determined and tenacious approach to work
• A creative approach to problem solving
• Good listening and comprehension
• Great stakeholder management

Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy.

By joining us you can expect

• Autonomy to develop and grow your skills and experience
• Be part of exciting project work that is making a difference in society
• Strong, inspiring, and thought-provoking leadership
• A supportive and collaborative environment

Flexibility to learn and grow

Additional

This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected. Details of this will be discussed with you at interview.