At a Glance
- Tasks: Shape security solutions and ensure compliance with key security standards.
- Company: Join the Intellectual Property Office, a leader in cyber security.
- Benefits: Competitive salary, generous leave, hybrid working, and career progression support.
- Other info: Dynamic team environment with opportunities for continuous learning.
- Why this job: Make a real impact on national security while working with cutting-edge technologies.
- Qualifications: Experience in security architecture and strong communication skills required.
The predicted salary is between 70000 - 80000 Β£ per year.
The Security Architect works closely with the Chief Security Officer, Head of Cyber, Lead Security Architect and the wider security team to develop an IPO vision for security and evolution of the security strategy and supporting roadmaps. The role of IPO Security Architect is part of the IPO Secure team at the Intellectual Property Office.
Playing a key part in an established team, the individual is responsible for ensuring the continued compliance with key security standards, such as PCI, ISO27001, secure by design, GovAssure etc. It is essential that this role ensures that security architecture alongside compliance are understood and therefore the role will include championing security by design. The Security Architect is essential in shaping security solutions and controls across multiple platforms (on-premises, cloud, hybrid) providing oversight, support, and advice to enable technical teams to make security decisions. They ensure that common tools and patterns are used effectively to deliver secure systems, whilst implementing proportionate controls to enable positive business outcomes thereby safeguarding the IPO's data, essential services and the supporting infrastructure. They ensure Secure by Design principles are adopted, and coordinate on assurance against the National Cyber Security Centre's Cyber Assessment Framework with the Government's GovAssure framework.
Working Style
This role will be carried out in-line with IPO Hybrid working arrangements where staff are currently expected to spend at least 20% of their time working onsite from one of our offices. This role is based in our Newport Office. The requirement for attendance at an office location can vary by role so we would encourage candidates to discuss working arrangements with the recruiting manager to agree a reasonable balance between working from home and the office.
Main duties consist of but are not limited to:
- Ensure security architecture aligns with wider Gov security policies and frameworks, legal frameworks, industry regulations and best practice (e.g ISO 27001, NCSC Standards, GDPR, PCI DSS, GovAssure, Secure by Design).
- Support the secure by design champion in building awareness and understanding of secure by design framework across DDaT.
- Manage the security architecture compliance roadmap, ensuring activities are organised and planned in with relevant teams in an efficient manner, ensuring it aligns closely with the IPO Secure Team's strategic direction and any recommendations from audits.
- Continuously keep up to date with changing compliance legislation and initiatives to assess new opportunities for educating colleagues on relevant security standards.
- Recommend security controls and identify security solutions that support business objectives.
- Provide expert security guidance and direction during the design, implementation and use phases of systems, applications and infrastructure.
- Provide specialist advice and recommendations regarding approaches and technologies across teams and various stakeholders, assessing the risk associated with proposed changes.
- Inspire and influence others to execute security principles, communicating widely with other stakeholders.
- Support the GovAssure process by coordinating the collection of evidence, and the submission of GovAssure returns to Cabinet Office.
- Assist, where necessary, with incident response processes to identify architectural issues and solutions.
- Proactively engage with internal and external partners, stakeholders and peers to develop your knowledge and inform your decisions.
- You will be expected to carry out any other duties that may reasonably be required in line with your main duties.
Person specification
Essential Criteria
Essential Experience
- Broad technical knowledge, especially around cloud and hybrid technologies.
- Solid understanding of Governance, Compliance and Risk, and the Confidentiality, Availability, and Integrity (CIA) triad.
- Solid understanding of security protocols, networking, identity management, authentication, authorisation, and cryptography.
- Excellent communication and interpersonal skills. Ability to interact with stakeholders of all levels to effectively articulate security controls, solutions, and advice. Capable of switching between technical and non-technical language.
- Capable of evaluating options and making decisions quickly and effectively.
- A team player who is enthusiastic about contributing to the overall success of the team and collaborating with stakeholders of all levels.
- Sense of Urgency - ability to address situations, incidents or tasks proactively and promptly.
- Continually stay abreast of emerging security technologies, threats and trends. Self-motivated to drive their learning needs.
How to Apply
Click the 'Apply now' button and complete the application form by providing the following:
- Your CV: Upload an anonymised copy of your current CV. Please remove all identifying markers such as name, title, education institution etc. Make sure it clearly shows how you meet the essential criteria listed in the Person Specification.
- 500-word Personal Statement: Solid understanding of Governance, Compliance and Risk, and the Confidentiality, Availability, and Integrity (CIA) triad. Solid understanding of security protocols, networking, identity management, authentication, authorisation, and cryptography. Capable of evaluating options and making decisions quickly and effectively. Continually stay abreast of emerging security technologies, threats and trends. Self-motivated to drive their learning needs.
For further information on the sift and interview stages of this recruitment campaign, please head to our 'Things you need to know' section below.
If you require job-specific information, please contact The Recruitment Team.
Behaviours
We'll assess you against these behaviours during the selection process:
- Leadership
- Changing and Improving
- Making Effective Decisions
Benefits
Alongside your salary of 47,766, Intellectual Property Office contributes 13,837 towards you being a member of the Civil Service Defined Benefit Pension scheme. Unlimited Pluralsight video learning access. Access to Microsoft's ESI training suite. Hybrid working with no core hours. Substantial support for career progression. 25 days annual leave moving to 30 days in annual increments. You will also get 8 days public leave and 1 day privilege leave.
For more information about what's on offer at the Intellectual Property Office please review our IPO benefit pack attached to the bottom of this advert. Please note that benefits may be subject to change.
Things you need to know
Artificial intelligence can be a useful tool to support your application, however, all examples and statements provided must be truthful, factually accurate and taken directly from your own experience. Where plagiarism has been identified (presenting the ideas and experiences of others, or generated by artificial intelligence, as your own) applications may be withdrawn and internal candidates may be subject to disciplinary action.
Selection process details
This vacancy is using Success Profiles, and will assess your Behaviours and Experience. Additional details on security and vetting: Successful candidates must pass a disclosure and barring security check and if successful you must also hold, or be willing to obtain, a higher Security Clearance. For meaningful checks to be carried out individuals will need to have lived in the UK for a sufficient period of time, depending on the level of clearance, to enable appropriate checks to be carried out and produce a result which provides the required level of assurance. For this role the successful individual will need to have consistently lived in the UK for a minimum 5 years in order to meet the relevant security clearance.
Further information on the vetting process can be found at National security vetting: clearance levels - GOV.UK. If you have questions regarding this or are unsure if you meet the eligibility criteria, please contact.
Stage 1 - Sift
An initial sift of applications will be carried out to create a shortlist. This will be based on the evidence provided for the following Success Profile elements: Experience. Your CV will be used to assess your suitability for the role and Your 500 word Personal statement will demonstrate your Experience against the listed person specification/essential criteria.
Stage 2 - Interviews
If invited to interview Behaviours and Technical based questioning will be used. Please note candidates that proceed to the interview stage will be required to deliver a presentation against the Technical Success Profile. Further details will be provided in the invite to interview information. Specific information regarding the Success Profile elements that will be assessed at interview will be contained within the interview invitation. Interviews for this role will be carried out virtually via Microsoft Teams (video).
Cyber Security Architect - Newport employer: Intellectual Property Office
The Intellectual Property Office (IPO) is an exceptional employer, offering a dynamic work environment in Newport that fosters innovation and collaboration. With a strong commitment to employee growth, the IPO provides substantial support for career progression, unlimited access to learning resources, and a flexible hybrid working model that promotes work-life balance. Employees enjoy generous leave entitlements and a comprehensive pension scheme, making it a rewarding place to build a meaningful career in cyber security.
Contact Details:
Intellectual Property Office Recruitment Team