Security Architect

16 Feb 2019
07 Mar 2019
Contract Type
Full Time

HM Revenue & Customs (HMRC) is the UK’s tax, payments and customs authority and we have a vital purpose: we collect the money that pays for the UK’s public services and help families and individuals with targeted financial support.

Cyber Security and Information Risks (CSIR)

This is an exciting opportunity to join the HMRC Cyber Security and Information Risks Directorate, with the Cyber Security Technical Services Team, where you will be working across one of the largest IT estates in Europe, supporting a large scale and radical transformation that will have a profound impact for both the customers and HMRC.

The Role

As a Security Architect you will be responsible for the security of HMRC’s key architectural domains on a Risk Managed basis, with accountability for the definition of the Security Architecture for its applications and infrastructure as it transforms the way it provides services.

You’ll be part of the drive away from product centric solutions to exploit the opportunities that Digital Services and Data Analytics can provide.

You will also be key in the creation and execution of technology roadmaps that will drive HMRC’s hugely complex IT estate towards a smaller set of strategic systems whilst decommissioning a large proportion of the legacy systems.

Requirements (Essential and Desirable)

The main tasks/responsibilities are:

* Can apply a risk-based approach to decision making as well as design full solutions

* Can interpret and apply understanding of policy, process, and business architecture, legal and political implications in order to assist the development of technical solutions or controls

* Maintains a deep understanding and application of security concepts at a technical level.

* Able to effectively translate and effectively communicate security and risk implications to technical, non-technical stakeholders

* Design and review system architectures through the application/review of patterns and principles on a security risk basis

* Able to identify security issues and recommend remediation in system architectures.

* Work with risk owners to advise, give feedback on level of risk and recommend mitigating controls

* Understand the impact of vulnerabilities on existing/future designs and current live systems and articulate appropriate risk-based responses

* Identify new technologies and design the use of these in the business context and make recommendations


* Relevant certifications and memberships – CISSP, CCSP, M.InstISP, MBCS-CITP, TOGAF

* Knowledge and experience of Cloud deployment models and architectures

* Experience of Agile methodologies – TDD, Scrum, Kanban

* Knowledge and experience of GDPR and privacy by design

Selection Process

All candidates are required to apply for HMRC vacancies via the Civil Service Job portal; a link is provided on this site. We require candidates to provide a CV and a personal statement outlining why they are suitable for this position.

Further Information

Please don’t hesitate to contact me if you have any further questions or queries and good luck

Similar jobs

Similar jobs