Cyber Security Architect at BAE Systems, Portsmouth, 12 Months, £900 per day

Cyber Security Architect

£900 per day (inside IR35)

12 months

Portsmouth - Hybrid working tbc

• Applies expert knowledge, skills and training in one or more area of Cyber Security to deliver the information technology and cyber solutions required to allow the business to meet its strategic and tactical goals.
• Provides well-informed advice, typically within a specific cyber security specialism, ensuring that it is properly understood and appropriately exploited, to enhance the effectiveness of significant activities.
• In consultation with other managers, supports the development and implementation of a cyber security strategy
• Has defined authority and accountability for actions and decisions within a significant area of work, including technical, financial and quality aspects. Establishes organisational objectives and assigns responsibilities.
• Influences organisation, customers, suppliers, partners and peers on the contribution of own specialism. Makes decisions which impact the success of assigned work, i.e. results, deadlines and budget. Has significant influence over the allocation and management of resources appropriate to given assignments. Leads on user/customer and group collaboration throughout all stages of work. Ensures users’ needs are met consistently through each work stage. Builds appropriate and effective business relationships across the organisation and with customers, suppliers and partners. Creates and supports collaborative ways of working across group/area of responsibility. Facilitates collaboration between stakeholders who have diverse objectives.

Duties :

• Provides advice, guidance and expertise to promote adoption of methods and tools and adherence to policies and standards. Evaluates and selects appropriate methods and tools in line with agreed policies and standards.
• The preparation for, handling of and following up of cyber security incidents, to minimise the damage to an organisation and prevent recurrence.
• Determines areas where existing processes should change from analysing audit findings.
• Takes responsibility for controlling updating and distributing Cyber Security standards. Facilitates improvements to processes by changing approaches and working practices, typically using recognised models.
• The designing of IT systems to meet its security requirements, balancing this with its functional requirements.
• The verification that systems and processes meet the specified security requirements and that processes to verify on-going compliance are in place.

Knowledge:

• Knowledge of working and designing using security frameworks
• NIST Cybersecurity Framework
• ISO 27001 / 27002
• CIS Critical Security Controls
• Zero Trust Architecture principles
• NIS 2
• DEFSTAN 05-138
• Knowledge of employing a secure by design methodology
• Familiarity with IT and OT trends and good practice.
• Knowledge of SAP Desirable
• Has developed business knowledge of the activities and practices of own organisation and those of suppliers, partners, competitors and clients. Promotes the application of generic and specific bodies of knowledge in own organisation. Develops executive leadership skills and broadens and deepens their industry or business knowledge.

Ideal Qualifications :

• Degree in Cyber Security, Computer Science, or related field, ( Desirable )
• experience in consultancy or people management position PREFERRED

Professional certifications such as:

• CISSP (Certified Information Systems Security Professional)
• SABSA or TOGAF certification
• CCSK / CCSP (Cloud Security)
• Microsoft security certifications (e.g., SC-100 Cybersecurity Architect)