Security Architect

Recruiter
Anglo Technical Recruitment Limited
Location
London (Greater)
Salary
up to £600 per day (Outside IR35)
Posted
10 Nov 2017
Closes
16 Nov 2017
Contract Type
Contract
Hours
Full Time

CV Submission Deadline: 14/11 10.00

PLEASE NOTE: This role is with the Ministry of Justice is Outside IR35

Purpose of Role
This role is to provide Information Assurance Architecture Subject Matter Expertise to support the Network and Gateway Infrastructure Towers function within the Technology Transition Programme (TTP).
The IA Architecture function incorporates the delivery of Enterprise architect, technical architecture, Gateway architecture and Information Assurance for the entire programme.

Background

? MoJ ICT manages ICT service provision for the Ministry of Justice and it?s key business areas ? HMCTS, NOMS, HQ and various ALBs.
? MoJ has a complex ICT estate built up over many years with many legacy systems. ICT services are provided to circa 100,000 users in approximately 2000 locations via a number of large services contracts and numerous smaller contracts. The current supply arrangements are specific to each business area and do not enable cross-cutting shared services and the associated savings.
? TTP is structured into technology towers. End User Computing, Managed Print Services, WAN/LAN Infrastructure, Gateways, Hosting, Application Management Services, Protective Monitoring and Video and Voice Integration. In this model, MoJ ICT group, procure and manage ICT services according to technical service lines (eg. hosting, network, desktop) rather than purchasing an integrated set of services per business unit.
? This approach enables economies of scale but puts MoJ ICT in the central role as ?systems integrator?, carrying the risk of ensuring that the solutions procured in each tower are inter-operable and provide a set of joined up ICT services for the end user.
? This is a fundamental shift from the current model where ICT suppliers are responsible for end to end service design; and requires MoJ ICT to develop and strengthen key capabilities and processes areas such as architecture, solution design, service design and vendor management.
? To realise benefits and cost savings as early as possible, the specification and procurement of the TTP tower?s requirements are being performed in parallel, placing additional challenges (and increased risks) against the delivery of joined up ICT solutions and services.

TTP is delivering a complex transformation of all ICT service provision to the 2nd largest government department (by employee base); with MoJ ICT retaining overall responsibility for implementation of the operating model and systems integration.

Main Duties and Responsibilities

Enterprise Security Architecture
? Development & ongoing use of TTP Architectural Artefacts in support of delivery of information assurance and security architecture within the TTP.
? Ensure that architectural artefacts inform and influence the creation of service requirements.
? Ensure the alignment of architectural artefacts with the MOJ Enterprise Architecture and Information Assurance frameworks.
? Ensure that TTP and project documentation supports HMG Strategies, policies and standards.
Security Architecture
? Lead negotiation sessions with suppliers on Information assurance topics.
? Evaluate the solution proposals and high level design and low level designs for the logical and physical implementation of solutions to ensure they are in accordance with HMG and MoJ IA standards, policies and guidelines;
? Assure that within the transition phases, changes to existing systems are compliant with HMG and MoJ IA standards, policies and guidelines and applicable legislation and identify any risks and issues.
? Provide assurance guidance to solution providers
? Assure that changes to the physical implementation of existing systems are compliant with HMG and MoJ IA standards, policies and guidelines and applicable legislation.
? Provide in-depth technical IA expertise and assurance to TTP projects and workstreams.

Outputs and deliverables
? Drive beneficial security change into the business through the development or review of architectures so that they:
? Fit business requirements for security

Essential
? The successful candidate will be;
o an experienced HMG IA professional with a technical or security design assurance background, or
o an experienced Enterprise Architect with a strong background in security components and HMG Information Assurance
o experienced in Gateway architecture with technical knowledge of CISCO and other gateway technology
? You will possess strong communications, relationship building, negotiation and influencing skills.
? You will need to demonstrate high credibility, discretion, and integrity in order that you can work effectively with senior MoJ leaders and stakeholders.
? You will have basic knowledge of current laws and legal constraints relevant to IA in the Government/Public Sector IT ? e.g. Data Protection Act, Freedom of Information Act
? You will have an analytical and creative approach to problem solving.
? You will be able to absorb new technical, commercial and business concepts quickly, and work with them.
? You will be able to obtain information from business people in face to face situations, and to analyse information obtained by a variety of formal and informal means.
? Requires good information acquisition, organisational awareness and vision coupled with technical skills to guide and communicate information assurance and security principles to the business.
? You will have detailed technical security knowledge of telecommunications/IT and current products/technology.
? An understanding of service provision within an outsourced ICT environment.
? You will have good working knowledge of HMG IA Accreditation.
? You will have a good understanding of central government department ICT systems and policies
? You will have an understanding of ICT related technology and how physical, technical, procedural and personnel security can be used to reduce risk to an acceptable level.
? You will have extensive knowledge and understanding of HMG IA standards and how they apply to ICT systems.
? You will have good working knowledge of applicable industry payment standards e.g. PCI-DSS.
? You will demonstrate leadership qualities and be capable of managing resources or a team of people.
? You will hold a current Government Security Clearance ? minimum SC or willing to undergo security vetting

Desirable
? Familiarity with the Cross government IT policies
? Understanding of the Government and working in the justice system;
? Demonstrated awareness of the social, environmental and corporate impact of ICT;
? Understanding of the organisation's IT/Information Systems plans, business objectives and some awareness of comparable organisations.
? Overall understanding of the skills or business units serviced by the IT areas supported.
? Educated to degree level or holds a relevant professional qualification. May have a postgraduate qualification such as an MSc in Information Security.
? Familiarity with PRINCE2 project management practice.
? Familiarity the TOGAF Framework 9.1
? Familiarity with OSA (Open Security Architecture).
? Familiarity with SABSA (Sherwood Applied Business Security Architecture)
? Member of IISP or similar governance body
? MBCS CITP

Qualifications

Desirable
? Membership to at least one of the three CESG CCP certification bodies. Indicating CESG Certified Professional ? IA Architect/Security and Information risk advisor (either current or pending award)
? A.Inst.ISP ? Associate of the Institute of Information Security Professionals Institute of Information Security Professionals
? M.Inst.ISP ? Member of the Institute of Information Security Professionals Institute of Information Security Professionals
? Certificate in Information Security Management Principles (Foundation) Information Systems Examination Board
? Certificate in Information Security Management Principles (Practitioner) Information Systems Examination Board
? CISM ? Certified Information Security Manager ISACA
? CISSP ? Certified Informat

CV Submission Deadline: 14/11 10.00

PLEASE NOTE: This role is with the Ministry of Justice is Outside IR35


This job was originally posted as www.jobsite.co.uk/job/959506536