IT Security Architect Bradford, Hybrid

Location: Bradford, WestYorkshire with Hybrid Work Arrangements (2 days a week in the office)

Salary: Competitive, Plus Benefits Package (Car Allowance, Bonus, Excellent Pension)

Our client, a leading organisation in the region, is looking for a talented Security Architect to join their dynamic team. Demonstrating a strong commitment to leveraging technology for optimal performance, they are embarking on an ambitious initiative to invest in their technology infrastructure.

Role Overview:
Our client is seeking a skilled Security Architect to join their vibrant team. In this role as the Security SME, you will be responsible for delivering security solutions across a range of projects and programs, ensuring they align with the business's risk appetite, standards, and regulatory requirements. Reporting to the Lead Security Architect, you will offer expert advice and guidance, support the implementation of the IT security strategy, and work closely with
with senior leadership, including Info Sec. You will be technically proficient and capable of architecting complex security solutions in both physical and virtual landscapes, and have the ability to steer Development/Operational teams to ensure Security Architecture is embedded in delivery processes e.g. DevSecOps. You will also be well versed in Security best practice (e.g. Zero Trust).

Key Responsibilities:
Develop and deliver security solutions for IT infrastructure projects, covering everything from requirements gathering to high-level and low-level design, while ensuring compliance with standards and regulatory requirements.
Architecturally your duties will include:
Development of strategies, roadmaps,

patterns

and standards.
Market testing of new security capabilities
Security consultancy to major programmes of work
Development of business cases to support ongoing Security

transformation
Assist the Lead Security Architect in crafting and implementing the IT security strategy and services.
Offer expert advice and guidance to colleagues and business units on implementing secure solutions in line with technical governance processes, policies, and standards.
Evaluate risk and compliance for large-scale solutions, focusing on environments with 5000+ endpoints, and implement security infrastructure solutions such as SIEM, Access Governance, SASE, and Endpoint Protection.
Adhere to information security standards (e.g., ISO 27001, ISF, NIST), industry security guidance (OWASP & CIS), and risk assessment frameworks to ensure systems and services meet security requirements.
Identify and analyze business and technical security requirements, associated risks, and potential vulnerabilities, and apply controls to ensure confidentiality, integrity, and availability.
Review vulnerability and penetration test reports, offering recommendations for remedial actions.
Skills and Qualifications:
Essential:
Demonstrated success in delivering large-scale solutions in a security architecture role.
Previous experience working within an Azure cloud security environment.
Familiarity with working within a Zero Trust Framework.
Experienced in defining and implementing:
Architectures based on the

Zero Trust framework

(Identity Management, MFA, Endpoint Protection etc.)
Architectures and services based on

Secure Access Service Edge

(SASE) (Data Loss Prevention, SD-WAN, Network Segregation etc.)
Technical expertise across a wide range of solutions, such as:
Secure internet access
Threat, Vulnerability & Patch Management
Privileged Access Management
Network Segregation
Security Monitoring
Antivirus
Data Loss Prevention
Outstanding communication skills, both written and verbal, with the ability to explain technical concepts to non-technical stakeholders.
Proven ability to develop and maintain effective relationships at senior levels within an organisation.
Capability to prioritise and execute tasks in a dynamic environment, making sound decisions in emergency situations.
Strong analytical and problem-solving skills, with a dedication to continuous improvement.
Hold relevant certifications such as CISSP (Certified Information Systems Security Professional) or equivalent.