Security Architect - Enterprise Solutions

Make an impact with NTT DATA. Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.

The Security Architect will contribute to the design, implementation and ongoing development of the security architecture of the client's IT systems. The Security Architect will draw upon Enterprise Security Architecture or Security Solutions Architecture to contribute to:

• Identify business objectives, user needs, risk appetite and cyber security obligations
• Identify vulnerabilities, perform threat modelling, undertake risk assessment, evaluate the effectiveness of security controls
• Verify and evidence alignment to 'Secure by Design' principles, corporate security policy/standards as well as industry recognised frameworks and best practice

We are hiring for multiple headcounts, either based from London or Birmingham on multiple seniority levels spanning from medior to senior levels.

Responsibilities

• Contribute to deliver and continually enhance a coherent approach to the design of secure client end-to-end solutions
• Contribute to secure conceptual, logical and high level designs by identifying appropriate security controls to be embedded in solutions that meet business requirements whilst evidencing alignment to the target risk appetite.
• Contribute to the design and be able to articulate and justify design recommendations at security architecture assurance gates
• Contribute to design documentation, options papers, risk assessments, stakeholder presentations and be able to effectively communicate these to both senior technical and non-technical stakeholders
• Contribute to reference architecture of established patterns, principles and guidelines
• Contribute to the development of the Security Practice skills and capabilities to ensure consistent high quality of service delivery and expertise. Active coaching and mentoring of junior members of the team
• Contribute to the development of collateral to support Security Consulting ‘go to market’ propositions and service offerings.
• Contribute to the development and presentation of compelling client proposals collaborating with teams across our business.
• Contribute to documented Information Security Management Plans which incorporate Regulatory, Legal and Compliance in relation to applicable security policies.
• Contribute to the identification of identified risks and emerging cyber security vulnerabilities and threats. The subsequent analysis to quantify and lead risk mitigation plans
• Work with Service Management to ensure that partners and suppliers adhere to agreed standards, policies and verify/evidence appropriate compliance and security KPIs
• Work closely with 1st, 2nd and 3rd lines of defense on all matters relating to cyber security, information assurance, cyber risk, data privacy including regulatory and compliance considerations
• Contribute to the development and enhancement of governance, risk and compliance aligned to policy, standards and industry good practice
• Ensure that continuous assessment, identification, analysis and reporting of useful metrics to enable informed risk-based decisions to be taken
• Constructively challenge established processes and controls to identify, recommend and facilitate continuous improvement, ensuring that all personnel (including senior stakeholders) understand their responsibilities in relation to security risk mitigation and remediation
• Review and verify that documentation relating to process and technical security controls are maintained

Core skills and experience

• Min 3 years security architect experience, for more senior roles 5+ years.
• Awareness and understanding of industry security frameworks and guidance such as NIST CSF, NIST 800-53, NCSC CAF and other NCSC guidelines
• Good knowledge of networking (switching, routing, firewalls)
• Awareness or limited experience with the design concepts associated with adoption of Cloud platforms (AWS and/or Microsoft Azure)
• An understanding of the native security capabilities and some practice within Cloud platforms (AWS and/or Microsoft Azure)
• Understanding of modern security concepts, common attack vectors, malware, security analytics and threat intelligence.
• An understanding of security testing and vulnerability management is important (including pen testing/ITHC, CVSS/CVE)
• Some experience working with security standards such as ISO 27001, 27002, 27017, 27108 etc

Desirable skills and experience

• Minimum of 5 years of experience in Cyber Security
• Any one of the certifications (CISSP, CISM, CCSP, CRISC) or equivalent experience
• Good knowledge covering at least 2 of the following examples (this list is not exhaustive): AD, Cryptography, End User Computing, IAM, PKI, Server hardening, SIEM, SOAR, virtualization (VMware)

Role duties

• Thrive as a consultant seeking the variety and challenge of engaging with different clients and variety of technologies and solution types.
• Developing security vulnerabilities and techniques for applying effective controls.
• Contribute to the development of secure system without close supervision.
• Contribute to security requirements for new systems or changes to existing systems without close supervision.
• Execute technical management tasks in respect to ongoing client projects.

Characteristics

• Strong teamwork skills and attention to detail.
• Excellent written and verbal communication skills.
• Self-motivation and able to take responsibility.
• Persuasive communicator, using logic to win support and change views.

Security clearance

Please note that candidates must hold or be able to gain UK SC level Security Clearance or higher. Therefore, we can only accept applications from British Nationals who meet these criteria. Candidates with dual Nationality must flag this during the recruitment process.

About NTT DATA

NTT DATA is a $30+ billion business and technology services leader, serving 75% of the Fortune Global 100. We are committed to accelerating client success and positively impacting society through responsible innovation. We are one of the world’s leading AI and digital infrastructure providers, with unmatched capabilities in enterprise-scale AI, cloud, security, connectivity, data centers and application services. Our consulting and industry solutions help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have experts in more than 50 countries. We also offer clients access to a robust ecosystem of innovation centers as well as established and start-up partners. NTT DATA is part of NTT Group, which invests over $3 billion each year in R&D.

Equal Opportunity Employer

NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Third parties fraudulently posing as NTT DATA recruiters

NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters—whether in writing or by phone—in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an @nttdata.com email address. If you suspect any fraudulent activity, please contact us (global.careers@nttdata.com).