Security Architect

As the Security Architect you will be responsible for setting and overseeing the cyber-security standards, blueprints, and architectures, enabling Openwork to achieve its corporate ambitions in a safe and controlled manner. Working alongside technology and business units to ensure services harness the full benefits of secure-by-design hybrid-cloud computing platforms.

You will provide thought leadership and operates as the go-to expert within the business regarding cyber-security innovation and adoption. Overseeing cyber-security for application architectures, designs, and deployment.

This is a hybrid role based in our Swindon office, with the requirement to be in the office 2 days a week.

The benefits

• Salary - up to £80,000
• Bonus scheme - on target bonus – 15%
• Pension scheme - contribute up to 5% of your salary and Openwork will match you and put in an extra 5%
• Critical illness cover
• Income protection - 1x salary 
• Death in service - 4x salary
• 25 days holiday + bank holidays, with the opportunity to buy up to an additional 10 days. 
• A range of other flexible benefits to include private medical insurance, dental insurance and much more.

Your responsibilities will include:

• You will shape and execute the cyber-security strategy to achieve the broader technology and business strategies / plans.
• Design and deliver architectural standards, reference architectures, and designs.
• Keep abreast of cyber-security technology futures and the competitive landscape to inform the technology strategy of the direction to achieve our corporate aims.
• Operate as the go-to expert for blue-sky thinking, innovation, and development, working and communicating effectively with the business to ensure cyber-security adoption maximises our business proposition whilst minimising operational costs and risk.
• Manage adoption and supporting policies, processes, operating models, and cultural changes across the organisation.
• Build strong and Influential relationships with technology and business stakeholders, communicating effectively to technical and senior non-technical audiences.
• Work with product and change teams to maximise opportunities and minimise complexity and technical debt.
• Defining security requirements and embedding early in project lifecycles, varying as needed for the type of project.
• Security assurance around significant change (new projects, but also major rearchitecting of existing systems).

• You will have a strong background in cyber-security, with an expert understanding of different application architectures, data security, data loss prevention, hybrid-cloud computing solutions, and the associated pros/cons.
• Ideally you'll hold a bachelor's degree in computer science, information-technology or equivalent experience and architecture or security qualifications, ie TOGAF, PCIRM, CISMP.
• Expert knowledge of designing, building, and deploying secure-by-design solutions, coding standards, application security testing (Veracode & Fortify), penetration testing and threat modelling tools like STRIDE, Application WAF.
• Expert knowledge of security protocols, authentication, authorisation, and identity & access management. Privilege access management, API gateway and API authentication and authorisation.
• Understanding of and experience in securely implementing and consuming services from Microsoft platforms, including Azure, Office 365, Entra ID, Dynamics, Power Platform etc.
• Able to work effectively with other architecture members, broader technology and business teams and delegate responsibilities.
• Able to communicate complex technical concepts to technical and senior non-technical audiences.
• Familiarity with standards such as NIST
• Experience in market analysis, dealing with suppliers/vendors/partners, defining RFI/RFPs, evaluating responses, and making recommendations on adoption.

We're a dynamic, fast paced, and growing business with huge ambition. This is all made possible by the brilliant people who are part of The Openwork Partnership family. We're investing heavily in our colleagues, continuously striving to give them the platform to develop personally and professionally and reach their full potential.