Role : Security Architect
Location : London
Contract Role
Job Description:
- Strong experience in building secure web and mobile apps
- Experience with Security architecture, Application Security assessments, penetration testing, vulnerability assessment, Secure SDLC, and Static code reviews
- Certified Secure Software Lifecycle Professional (CSSLP) (desirable)
Responsibilities:
- Design, develop, and implement security frameworks and solutions to safeguard company's assets and infrastructure.
- Conduct regular security audits and risk assessments to identify and address potential vulnerabilities.
- Develop and maintain security policies and procedures in accordance with industry standards.
- Configure and manage security tools, such as firewalls, intrusion detection systems, and encryption technologies.
- Monitor network traffic and system logs for suspicious activity and respond to security incidents in a timely manner.
- Stay updated on the latest security threats and trends to anticipate potential risks and adapt security strategies accordingly.
- Collaborate with IT teams to ensure that security measures are integrated into all aspects of technology development and implementation.
- Conduct employee training programs to promote awareness of security best practices and protocols.
Requirements:
- Bachelor's degree in Computer Science, Information Technology, or a related field.
- Minimum of 5 years experience in IT security with at least 2 years in a Security Architect role.
- In-depth knowledge of network security, authentication protocols, encryption technologies, and other security tools.
- Experience in conducting security audits, risk assessments, and creating security policies.
- Strong understanding of industry standards, regulations, and best practices (e.g. ISO, NIST, GDPR).
- Excellent problem-solving and analytical skills with the ability to think critically and adapt to changing situations.
- Excellent communication and interpersonal skills with the ability to collaborate effectively with cross-functional teams.
- Industry certifications such as CISSP, CISM, or similar are desired.