Day Rate: Market Rate

Job Description:

Harvey Nash s public sector client is recruiting for a Technical Security Architect on an initial 6 month contract. You will be working with the team to ensure solutions delivered through the corporate transformation portfolio, including automation solutions, are designed and built securely to address information security risks to confidentiality, integrity and availability, in line with our overall security risk management approach. You will also be establishing security architecture policies, standards and design patterns and automation technologies, and engaging with senior stakeholders.

Main Duties:

• Ensure solutions delivered through the corporate transformation portfolio, including automation solutions, are designed and built securely to address information security risks to confidentiality, integrity and availability, in line with our overall security risk management approach.
• Establish security architecture policies, standards and design patterns for corporate transformation and automation technologies.
• Develop target security architectures for corporate transformation portfolio and automation solutions.
• Review architecture definitions against business requirements and compliance with security architecture policies, standards and patterns.
• Engage with senior stakeholders within SG and customer organisations/public bodies to advise on security architecture and controls and ensure joined up security when delivering services across these bodies.
• Work with external suppliers including cloud software as a services vendors, services / system integrator and other cloud technology vendors to ensure end to end security for corporate services being transformed.
• Work closely with iTECS Cyber Security & Defence team colleagues to allow oversight by the Chief Information Security Officer (CISO) and align ways of working/security practices.

Essential Skills & Experience:

• Broad technical knowledge covering application, data, technology architecture domains and deep knowledge in the security architecture domain with associated experience in designing secure solutions using modern digital technologies, tools and techniques.
• Significant experience of designing technical and other security controls to address security risks as part of an overall solution architecture including experience of security in a predominantly cloud services environment.
• Experience building security architectures aligned to standards and policies such as the Cabinet Office Security Policy Framework, ISO/IEC27001:2013, Cyber Essentials, PCI DSS.
• Experience of managing a wide range of internal and external stakeholders to a senior level including employees, customers and suppliers with the ability to clearly articulate risks and corresponding controls to support decision making.

This role has been deemed Inside IR35 by the client. Applicants must hold, or be happy to apply for, a valid Basic Disclosure Scotland. Please click the link to apply.