We are looking for a security architect to support multiple projects and programmes by defining and championing information security solutions. The role will work closely with systems and project engineers, developers, internal/ external business stakeholders and project managers within various departments to assess risk and deliver pragmatic, flexible and sustainable security that includes people, process and technology.

Our client is a market leading provider of Automated Fare Collection solutions for the Transportation sector. This position offers the opportunity to work at the cutting edge of technology within the transportation payments industry. With an extensive list of high profile projects you will be exposed to all areas of transportation technologies including the latest innovations in automated fare collection and contactless payments. Continuous variety and guidance from senior members of the team will afford you the opportunity to become a subject matter expert within this sector.

Responsibilities:

• Provides information security technical consultancy to the business. Champion best practices for architecture and design principles for the use of existing and new information security technologies across internal and customer systems.
• Conducts security business impact analysis/ audit for new and existing business applications or IT infrastructure, and provides advice and guidance on the application and operation of physical, procedural and technical security controls (e.g. the key controls in ISO27001 and/or PCI-DSS). Aware of EU data protection directive requirements.
• Assist the system engineering team in the design and development of bespoke customer solutions so that they fit into the standard set of products the business offers and ensure that they are supportable and clearly documented.
• Ensures that technical standards for information security fit policy requirements and are maintained, communicated and implemented.
• Assist engineering and business development teams to clarify customer security requirements and develop security responses for customer bids.
• Assist development of processes and systems to enable effective security engineering within projects.
• Act as a member of design review boards within engineering development process.
• Delivery of security support processes to customer services staff, including internal training and documentation as appropriate to support project transition.
• May be required to work on other sites and datacentres

Qualifications:

Essential Qualifications

• Degree or equivalent qualifications/experience
• Certification as an Information Security professional (e.g. IISP/CISA/CISM/CISSP/ ISA)
• Current driving licence

Desirable Qualifications

• A university degree in a numerate subject (e.g. computer science, maths, engineering, natural science)
• Security and IT vendors' certifications
• ITIL v3/ Prince2 foundation level/ TOGAF

Essential Skills/Experience/Knowledge

• Solid exposure of taking a leading role in the establishment and implementation of security architecture, policies and procedures.
• Experience of secure development lifecycles (SDL)
• Good understanding of enterprise-scale security management process and infrastructure
• Exposure to current IT Security standards and regulations such as PCI-DSS, ISO 27001, SOX, DPA
• Exposure to enterprise IT infrastructure and tools (e.g. Microsoft, Cisco, Sun, Oracle)

Desirable Skills/Experience/Knowledge

• Experience of transactional revenue systems, embedded systems, smartcards
• Knowledge of cryptographic services
• Awareness of architectural standards e.g. TOGAF, SABSA
• Knowledge of wider security, audit, risk and compliance standards e.g. PCI-P2PE, PCI-POI-PTS, ISO27005, ISO31000, NIST
• Understanding of security within agile and waterfall project methods
• Experience of application security testing tools
• In depth understanding of IT security control tools, e.g ArcSight, Qualys, TripWire, Cisco, McAfee, IBM Guardium, Centrify, Barracuda
• Experience of quality management systems and external audit standards e.g. ISO 9001, ISAE3402

Personal Qualities

• Must be able to work effectively and uphold professional standards and confidentiality with internal and external customers as well as staff at all levels of the organisation.
• Self-motivated
• Able to work on own initiative, unsupervised
• Attention to detail and adherence to procedures
• Strong customer service skills
• Strong verbal and written communications skills
• Ability to learn on the job

The salary on offer is a maximum of £70,000 per annum plus additional benefits.

Having placed numerous members of staff within the Security team previously, this is a role which will give you the opportunity to carve out your career path and gain exposure to some very interesting and challenging projects.

For more information please either apply to this role or feel free to contact Junaid Ahmed directly on 0207 850 7454 or email junaid.ahmed@markssattin.com