SECURITY ARCHITECT
KBR
- Warrington, Cheshire
- Permanent
- Full-time
- Bachelor’s Degree in Computer Science or equivalent profession and proven experience of expertise in the area
- MS Azure certifications and professional qualifications
- Cisco accreditations
- Qualification or membership of a professional body in Information Security.
- Experience of Cyber Security Standards.
- Experience of assuring the security architecture of hybrid cloud environments using MS Azure and Wintel based platforms
- Security assurance of SIEM, SOC and IDAM services within heavily regulated and “secure by design” environments
- Excellent communication and organisation leadership abilities
- Expertise in security measures such as firewalls, intrusion detection, and prevention systems, network access controls, and network segmentation
- You must be experienced with key operating systems primarily Windows
- Network security architecture and its development are both important to understand
- Wireless security, such as routers, switches, and VLAN security
- DNS security principles such as routing, authentication, VPN and proxy services
- An understanding of ISO 27001/27002, COBIT, and ITIL frameworks are required
- Assurance of proposals and designs for integrating hybrid cloud platforms, tools and systems into SIEM, SOC and IDAM services including MS Sentinel
- Third party auditing skills and cloud risk assessment methodologies
- Knowledge or experience of MS SQL Server, Oracle RDBMS and VDI/Thin client presentation services
- BYOTD, data classification, data certification, PKI and making systems securely available to trusted third party organisations
- Integration of public SaaS with MS Azure IaaS/PaaS and an overarching security architecture
- MS Azure “Landing Zones”
- Identify loopholes or weaknesses in a system that can put the organisation in jeopardy
- Support planning, investigation and build of reliable, powerful and flexible security architectures for all IT initiatives
- Perform or oversee penetration tests, vulnerability testing, including risk analysis and security assessments on the complete infrastructure
- Investigate the latest security standards, recent security systems and renewed authentication protocols
- Ensure proposed solutions can support the necessary corporate security policies and procedures including those associated with service delivery, management and operations such as those within ITIL4
- Ensure proposed solutions comply with any associated standards and that third party system elements can be assured to confirm their continued compliance
- Identify, test and ensure any integration within or out-with the organisations satisfies security requirements
- Ensure proposed and delivered solutions integrate with SIEM, SOC and IDAM and support the System Integrators and Vendors
- Support development of response plans in the event of any security related issues such as breaches, viruses, phishing scams and support the development of a thorough post event study once the situation has been resolved