Sorry, this advert is now closed. Click here to view our live vacancies.

Head of Security Architecture, Engineering - London

Between 40%- 45% bonus - IT/Information/Cyber Security
Ref: 174 Date Posted: Monday 23 Oct 2023
Company:           Financial Services
Location:             London
Reports to          CISO
Salary:                 Up to £170,000 + between 40 – 45% bonus
The Role
The Head of Security Architecture, Engineering and Operations leads and manages the technical security engineering team consisting of the security product engineering team, the network security team and the security operations team to deliver the support, operation and enhancement of the security products that provide the technical security capabilities of the enterprise.
The Head of Security Architecture, Engineering and Operations is a key resource, with technical ownership of key Security Systems deployed across EMEA and North America. The role requires a strong leadership capability and a broad technical skillset, exemplary communication skills, project management discipline and the capacity to fluidly and efficiently balance operational support and strategic project requirements. The role holder is responsible for the development of the Security Engineering and Operations team and ensuring delivery of effective and quality security products. The role requires strong cross-team and cross-region collaboration and also the management of the relevant vendor relationships on behalf the Bank.
Key Job Functions:
  • Lead the EMEA Security Architecture and Engineering functions, including line management of the Security Product Engineering, Security Operations and Security Architecture team
  • Ensure implementation and support of information security solutions and the effective integration of security products.
  • Managing the day-to-day operation of the Security Architecture and Engineering teams to ensure security products are operating effectively
  • Drive the definition and establishment of security standards and documentation with which to administer and maintain information security platforms operationally.
  • Develop and drive improvements and upgrades of security controls by liaising with Vendors and support teams to improve the overall threat exposure and security posture of the Bank.
  • Ensure incidents and service outages are managed appropriately and determine the most efficient course of action to resolve and restore services.
  • Work with internal IT Application, Infrastructure, Network and Support teams to ensure that security controls are implemented at all significant and relevant phases of IT processes.
  • Keep abreast of developments with Security products and maintain relationships with key vendors and contribute to product development to maintain currency with a changing threat landscape.  Ensure effective vendor support for deployed security products
  • Help ensure EMEA IT systems are designed, built and implemented securely according to Security Policies and Standards, by working closely with project and development teams and embedding good security design and practices into development and project methodologies.
Responsibility and Authority:
  • Leading a team of up to 18 FTE that include personnel with superuser admin access to a varied number of critical security systems.
  • Coverage of IT systems situated throughout 4 enterprise class datacentres and multiple branch sites across EMEA and North America. 5000+ client endpoints. 3000+ Servers.
  • Responsible for a wide set of leading-edge security systems and solutions which the team implement and maintain.
  • Key contributor to annual security Global investment budget (c $5m).  EMEA focus but part of a global programme with North America.
Key Skills & Abilities:
  • Leadership and team management, including oversight, target setting and performance management of specialist subject matter experts
  • Extensive experience of Cybersecurity in a regulated Financial Services organisation
  • Advanced knowledge of Networking, Network Security and understanding of Cybersecurity principles and practises.
  • Excellent knowledge and skills in advance architectural design principles and ability to apply and adapt these to modern technologies and processes
  • Good knowledge of modern development practises and embedding security (DevSecOps)
  • Excellent knowledge of Cloud based systems with particular emphasis on Azure and AWS
  • Knowledge and experience of the administration of Identity Management systems.
  • Experience of leading teams that manage Network Security controls such as Firewalls, SIEM, NAC, IDS/IPS and Layer 7 filtering.
  • Knowledge and awareness of both RedHat Linux and Windows operating systems.
  • Stakeholder engagement and influencing skills.
  • Excellent inter-personal communication skills, able to liaise with all levels of the business across all regions including key stakeholders and senior management.
Organisation Structure:
  • Responsible to: CISO
  • Direct reports: Security Product Engineering Team Leader (and team up to 8), Security Operations team members (up to 4) and Security Architecture team (up to 6)
Specific Experience and Qualifications:
  • Project Management skills
  • CISM / CISSP preferred
  • Cybersecurity Frameworks (e.g. NIST / ISO27001)
  • Firewall & other specific security systems as appropriate
  • Cloud Security
  • DevOps and DevSecOps
  • Architectural principles and practises