Cyber Security Architect, Risk, Sc Cleared

Title: Principal...

Title: Principal Cyber Security Architect

Location: Commutable from Bristol, with 3-4 days a week on-site (South West).

Rate: £700 to £800 per day, Inside IR35.

Duration: Up to 12 months.

Client: Defence sector, partnering with one of the world's largest IT Solutions Providers.

Role Overview:

The Information Security Principal (Risk and Architecture) will lead and continuously review Cyber Risk Management, Security Architecture, and Secure Design within the organisation. This role involves providing expertise to mitigate cyber-related risks and offering advice to risk or service owners to help them make well-informed risk-based decisions. The role will enable technical teams to make strong security decisions and ensure the effective use of common tools and patterns to deliver secure systems and implement proportionate controls to enable business outcomes.

Essential Requirements:

• Extensive experience in IT Security Operations and security monitoring, including the security of cloud-based platforms (Azure/Microsoft 365/Amazon AWS).
• Expert knowledge in Vulnerability Management across large and complex technology estates.
• Experience in digital forensics.
• Proven relevant work experience focused on the design and implementation of SIEM (Security Information and Event Management) and network analysis tools, techniques, and procedures to detect malicious activity.
• Good awareness of the principles, methods, techniques, and tools for the effective management of Information Security in complex business environments.

Desirable Requirements:

• Experience in IT Security Architecture.
• Sound working knowledge of Data Protection regulations.

Key Responsibilities:

• Technical Security Operations Leadership:
  • Set governance structures to meet the risk appetite.
  • Oversee effective technical security countermeasures to maintain technical integrity throughout the estate.
• Incident and Emergency Response:
  • Oversee planning, testing, and response to security and emergency incidents or concerns.
  • Provide informed recommendations on technical security issues to internal and external stakeholders.
• Protective Monitoring Strategy Implementation:
  • Lead the implementation of a protective monitoring strategy.
  • Ensure roadmaps are achieved as expected and that requirements, policies, and standards governing all activities and outputs are met.
• Security Alerts Management:
  • Lead the monitoring, triaging, and investigation of security alerts on protective monitoring platforms to identify security incidents.
  • Review high-priority or high-complexity analysis of security event data to manage security incident response and make key decisions on reporting or escalations.
• Automated Monitoring Processes Development:
  • Design, develop, and enable automated monitoring processes.
  • Advise on the latest SIEM and network analysis tools, techniques, and procedures to detect malicious activity, and communicate progress and status to leadership.
• Vulnerability Management:
  • Develop and implement multiple vulnerability assessments and enterprise-wide scanning strategies across complex environments.
  • Lead in prioritising vulnerabilities through a risk-based approach and provide guidance to other technical teams and senior leaders, including external senior stakeholders.
  • Oversee the life cycle of vulnerability management for a set of assets and provide tailored specialist advice on improving control mechanisms and mitigating risks.

This role offers a significant opportunity to contribute to national security efforts by ensuring robust cyber defenses and enabling secure business outcomes within a leading IT solutions provider in the defence sector.