Job Description:

The purpose of the role is to define and lead the network and security architecture and standards for the VOXEL platform to support growth and protect the VOXEL and data assets.

Key Responsibilities:

Performance & Delivery

  • With the supervision of the Principal Solution Architect to ensure ongoing alignment and integration of the complex systems-of-systems architecture:
  • Broad-scan for the latest technology and trends relevant to security and network architecture.
  • Build a network security strategy that leaps the enterprise into a next gen approach.
  • Develop and implement a roadmap for delivering the next gen security capability.
  • Lead the definition of secure design architecture principles and standards and continually improve this as set out in the roadmap.
  • Identify gaps in the existing network security controls and architecture (e.g. via penetration and port testing) in order to implement strong remediation plans.
  • Conduct research to identify new attack vectors facing applications and the business. Identify solutions, develop business cases for action and provide technical leadership to solve the gaps.
  • Define secure design, deployment and configuration requirements and practices, using appropriate technology solutions, controls, tools and practices as needed.
  • Build modernized network security patterns and design to upscale the network security posture
  • Monitor and govern the security and network standards
  • Provide diligent security consulting including design, reviews and recommendations for various projects, applications and initiatives
  • Coach and improve the performance of teams across DA in identifying and appropriately dealing with security risks
  • Create a purpose-led, high-performing culture within the discipline that is aligned with the company values, is inclusive and promotes diversity
  • Lead effective employee & contractor management processes for the team
  • Build and maintain effective relationships with key partners and clients: inform, influence and engage with key stakeholders.

    • Qualifications:

    An undergraduate qualification (Bachelors / Honours degree or equivalent) in a relevant technical discipline.

    Post-graduate qualification in a digital field, or a relevant technical discipline. CCIE a plus

    Role-specific knowledge:

  • Deep knowledge and experience in the secure development lifecycle, an understanding of infrastructure as code and DevOps practices
  • Experienced in security, incident and event management solutions, their design, implementation and integration into Security Operations. Azure Sentinel & Security centre are a plus.
  • Sophisticated level knowledge of security technologies including Authentication, Authorization, Access Controls, Data Protection, Cloud Security, Mobile Application Security, OWASP.
  • Strong understanding of emerging threats and vulnerability research, with strong experience working with Firewalls, IDS/IPS, DNS, WAF, Network Behaviour Analytics, DDOS protection etc.
  • Strong experience working with agile engineering teams creating security-controls to advise on cloud implementations across multiple platforms e.g., Azure
  • Security Architecture and Information Security Frameworks (NIST and ISO27001)

    • Operations :

  • Networking and security, threat and vulnerability management
  • Cloud Security – adoption, migration, and governance
  • Able to effectively identify and mitigate security risks and coach to build understanding and capability across DA
  • Security Information Event Management (SIEM) and data loss prevention
  • Identity and Access Management and Privileged Account Management
  • Integration and API Architecture patterns
  • Architecture Diagrams (Visio, Draw.io, etc.)
  • Agile / Scrum / SAFe
  • DevOps
  • Test Automation (Unit, Integration, UI)
  • Endpoint Detection and Response
  • Business Cases, Noting Papers, Proposals
  • Management of large, complex programs across a mix of internal resources and 3rd party vendors.
  • Supervising of peers and leadership/ coaching of others in the ambiguity of technology definition, where the product maturity is low.