Job Specifications
Job Title :: Application Architect L2
Job Location ::London/Sheffield, UK (HYBRID)
Job Type :: Contract
JOb Description ::
Network Segmentation Solution Designer / Enterprise Architect (GCB3 equivalent)
Security Solution Designers own and are responsible for providing Reference Architecture related to Network Segmentation and security controls applied to ensure applications, environments, regions and business units are appropriately secured to limit blast radius and traversal throughout the network. This role must ensure that all relevant artefacts are created in collaboration with key stakeholders across the bank, and approved via the appropriate governance to ensure an end-to-end traceability from threats, risks and vulnerabilities through to implementation.
Security Solution Designers should be comfortable presenting and sharing solutions at design authorities and senior leadership & stakeholders. Additionally, the Security Solution Architect will provide technical thought leadership and direction to their aligned projects and may stand in as subject matter experts and consultants related programmes.
Principal Preferred Requirements
Cybersecurity Expertise:
• Significant experience and proven technical depth within the following domains: , network segmentation (inc. micro), network isolation, application segmentation, application security, SDLC and lower environments security.
• Practical experience of network segmentation of an existing network into zones, segments, end-to-end segregation from design through to delivery and migration (e.g. refactoring, deployment), and accompanying standards.
• Documentation of the above areas including but not limited to: Standards, Patterns, Strategies, Roadmaps and recommendation papers – positioned at senior leadership level as well as for engineers.
• Deep and extensive knowledge of industry standard frameworks around the security of networks and applications (e.g. NIST, SANS, ITU).
• Experience and understanding of threat modelling, risk assessments and maintaining a data-driven evidence-based approach to decision making.
• Significant experience dealing with regulatory bodies globally, from requirements to audits.
• Broad background across information technology with the ability to communicate clearly with non-security technical SMEs at a comfortable level.
Qualifications & Certifications:
• Bachelors or Masters degree in Cybersecurity, Computer Science, Software Engineering, or related scientific or mathematic field
• SABSA, TOGAF certification or related industry-recognised certifications
• Network infrastructure qualifications, along with Application security (eg. CEH or similar)
Platform & Technology:
• Working practical knowledge of legacy and modern networking infrastructure
• Experience with both inter and intra-zone security controls (eg. WAAP, NIPS/NIDS, NGFWs, DDoS, API Gateways, Reverse Proxies, AuthNZ)
• BizzDesign, Archi, or generic UML visualisation experience for high-level designs
• Working proficiency in Jira for project & tasks management
• Working proficiency in Confluence for documentation
About the Company
Mpower Plus is a trusted partner in strategic talent acquisition and staffing. Since 2011, Mpower Plus has developed strong alliances with global IT and non-IT firms, becoming a cornerstone in the industry. Our goal is to help our clients shape sustainable success and be prepared for ‘what’s next’.
Headquartered in the UK, our footprint spans key EU & Asian markets eg Benelux, DACH, India, Singapore, Korea and our recent focus on emerging markets eg Poland, Spain, Romania. With strategic locations, we have positioned oursel...
Know more