Job Description


Your Role and Responsibilities Security Architect | Lead technical security requirements, architecture, security engineering and information assurance (IA) of the technical solution, to ensure solution is acceptable for accreditation and operation.
 
Scope
  • Information security and information assurance of technical solution
  • Ensure solution design and technical implementation satisfy all applicable security requirements.
  • Deliver security accreditation artefacts in accordance with the client's accreditation method.
  • Ensure IA obligations are fulfilled, and solution is fit for formal security accreditation
  • Ensure all security risks associated with the Service are considered, documented and suitably mitigated (in liaison with the Lead Accreditor and nominated Framework Owner).
  • Introduction At IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. Are you ready to lead in this new era of technology and solve some of the world's most challenging problems? If so, lets talk. Required Technical and Professional Expertise Knowledge
    Extensive knowledge of and experience delivering to: 
  • HMG information security requirements and accreditation methods.
  • IT Infrastructure and application security, including of databases, SaaS and PaaS.
  • Technical Design Authorities
  • Security penetration testing methods.
  • Preferred Technical and Professional Experience Experience
    • Five or more years' experience leading
    • Security architecture/engineering for high assurance/secure systems, demonstrating deep experience in information security principles, enterprise solution design and delivery, cloud commuting based solutions
    • Consulting and engineering in development of industry leading practices and implementation of solid security principles across organisations, to meet business goals and rigorous regulatory requirements.
    • Information security risk management -- deep experience performing all aspects, from risk identification, to assessment and treatment.
    • Security aspects of cloud computing: including attack surface vulnerabilities, internal and external threat actors and threats, control measures.
    • Identity and access management for cloud computing and non-cloud solutions.
    • Preparation for and management/facilitation of IT Security Health Checks
    • Awareness and understanding of the role of the security accreditor and related posts.
  • Five or more years' experience leading
  • Security architecture/engineering for high assurance/secure systems, demonstrating deep experience in information security principles, enterprise solution design and delivery, cloud commuting based solutions
  • Consulting and engineering in development of industry leading practices and implementation of solid security principles across organisations, to meet business goals and rigorous regulatory requirements.
  • Information security risk management -- deep experience performing all aspects, from risk identification, to assessment and treatment.
  • Security aspects of cloud computing: including attack surface vulnerabilities, internal and external threat actors and threats, control measures.
  • Identity and access management for cloud computing and non-cloud solutions.
  • Preparation for and management/facilitation of IT Security Health Checks
  • Awareness and understanding of the role of the security accreditor and related posts.
  • Eligibility Requirements Skills
  • Strategy & Architecture, Information Security (SCTY) Level 6
  • Strategy & Architecture, Information Assurance (INAS) Level 5
  •  
    Qualifications
    • CISSP
    • CISA
     
    Requirements
    • Must have been ordinarily and continuously resident in the UK for the past 10 years.
    • Must be a British National.
    • Excellent oral and written communication -- production of high quality written, technical artefacts in English.
  • CISSP
  • CISA
  • Must have been ordinarily and continuously resident in the UK for the past 10 years.
  • Must be a British National.
  • Excellent oral and written communication -- production of high quality written, technical artefacts in English.
  • About Business Unit IBM Services is a team of business, strateg
    Save Job