Security Architect
Salary: £70k - £90k
Location: Reading

Overview
We seek a skilled and experienced Security Architect to join a FTSE 250 business. The role will require you to provide guidance and direction to an established security function. Experience establishing and executing a security roadmap is key for this one.

Responsibilities
- Design and Implement Security Architecture: Develop and maintain security architectures for networks and infrastructure.
- Risk Assessment: Conduct security assessments, vulnerability tests, and risk analyses.
- Policy Development: Create and enforce security policies and standards to ensure compliance with regulations.
- Incident Response: Lead investigations, containment, recovery, and reporting of security incidents.
- Solution Implementation: Select and implement security solutions and technologies.
- Collaboration: Work with IT, development, and business teams to integrate security into processes.
- Training and Awareness: Educate employees on security policies and best practices.
- Documentation: Maintain documentation of security architecture, incidents, and compliance.
- Continuous Improvement: Stay updated on emerging threats and technologies to improve security processes.

Requirements
- Education: Bachelor's degree in Computer Science, Information Security, or related field (Master's preferred).
- Experience: 5-7 years in information security, including 3 years in a security architect role.
- Certifications: CISSP, CISM, CEH, or SANS GIAC preferred.
- Technical Skills:
- Knowledge of security principles, protocols, and technologies.
- Experience with security tools (firewalls, IDS/IPS, encryption, vulnerability scanners).
- Familiarity with regulatory requirements (GDPR, HIPAA, PCI-DSS).
- Analytical Skills: Strong problem-solving abilities.
- Communication Skills: Ability to convey complex security concepts to diverse audiences.
- Leadership Skills: Experience leading security projects and collaborating with teams.

Preferred Qualifications
- Experience with cloud security (AWS, Azure, GCP).
- Knowledge of DevSecOps and CI/CD integration.
- Familiarity with security frameworks (NIST, ISO 27001, COBIT).
- Experience with incident response and forensic analysis

**due to the nature of the business, regular international travel is required**