Lead Cyber Architect

Posted 3 hours 56 minutes ago by Alexander Mann Solutions

Contract
Not Specified
Temporary Jobs
Somerset, Bristol, United Kingdom, BS483
Job Description

We are AMS. We are a global total workforce solutions firm; we enable organisations to thrive in an age of constant change by building, re-shaping, and optimising workforces. Our Contingent Workforce Solution (CWS) is one of our service offerings; we act as an extension of our clients' recruitment team and provide professional interim and temporary resources.

We are looking for a Lead Cyber Architect for a 12 Month contract based in Bristolon behalf of our globally respected client who develop cutting-edge technologies that deliver clean, safe and competitive solutions to meet the planet's vital power needs.

To be eligible for this position, applicants must be free of any known factors that could prevent them from obtaining Security Clearance (SC).

Role Outline:

We are looking for a Cyber Architect to lead the cyber technical delivery team through a highly secure programme. The Cyber Lead Architect will be required to work with the other architects on the programme to develop the security architecture for secure solutions at multiple government security classification levels. They will ensure that security is imbedded into all solution designs so we require a candidate who has experience in delivering under the Secure by Design framework and application of NIST controls.

The role requires someone who is detail oriented and has strong communication skills to be able to communicate the security needs for the solutions and ensure the solutions are designed and built to the right standard for its classification. The role requires someone who will take ownership of activities to drive them through to completion, escalating where necessary to obtain the correct level of support.

Role Objectives:

  • Take the overall lead on the Cyber Architecture for the programme and direct the Cyber Architect team on cyber strategy and solutions
  • Work with the Cyber Architect team to define the Identity, Manufacturing, Data, SecOps and Tooling solutions for the project
  • Work closely with Cyber business stakeholders to align with Rolls-Royce Cyber strategy and tooling
  • Work with the Compliance and Information Assurance lead and Project Security Officer to ensure Cyber solution meets the defined cyber security standards and controls for the project
  • Ensure the Cyber solution is in a position to be accredited by the MoD, must understand accreditation process and Secure by Design principles
  • Liaise and support architects in other project workstreams to ensure they are incorporating Cyber requirements and considerations
  • Take overall responsibility for the Cyber Solution Architecture for the project
  • Understand Secure by Design principles and help ensure they are being considered in the solution design
  • Review design documentation created by the Cyber Architect team and assess suitability against the requirements of the business
  • Provide technical guidance to ensure compliance with JSP 604 and other relevant policies, standards, and regulations

What we require from the candidate:

Essential Criteria:

  • 5+ years technically leading a Cyber Programme in the MOD space
  • Knowledge and understanding of UK government protective marking standards; industry standards, including ISO/IEC 27001, NIST, CIS, CESG etc.
  • Experience delivering under the Secure by Design framework

Desired Qualifications:

  • Industry recognized security qualification (eg, CISSP, CISM, CISMP, SSCP, CISA, ISACA, CEH, CompTIA Security+, etc.)
  • Demonstrable experience with security compliance regulations, such as UK Gov classification, GDPR, HIPAA, EAR/ITAR

Desired Candidate Characteristics:

  • Significant experience working as a Cyber Architect with proven experience working in the Defence sector having implemented a SECRET Level implementation, if not a higher classification
  • A depth of information technology and information security experience
  • Solid grasp of information security requirements and capabilities across different industries
  • Ability to provide oversight and guidance to engineering teams through the deployment where required; ability to review design documentation and provide governance to the delivery process
  • Ability to manage significant ambiguity, ie when contractual requirements change, or things are yet ratified to make reasonable assumptions to then allow a course of action to be chosen
  • Disciplined, self motivated, and able to work on own initiative once clear objectives have been set
  • Awareness of common exploits and vulnerabilities and how these may be prevented

Next Steps:

If you are interested in applying for this position and meet the criteria outlined above, please click the link to apply and we will contact you with an update in due course.

Please note that due to recent changes in Off Payroll (IR35) legislation, our client only operates with contractors that operate via a PAYE or Umbrella model. We are unable to accept applications from candidates wishing to operate under their own Limited Company.

AMS, a Recruitment Process Outsourcing Company, may in the delivery of some of its services be deemed to operate as an Employment Agency or an Employment Business.