Lead Security Architect Ref. 1457

LEAD SECURITY ARCHITECT

Are you an experienced technical security architect? Looking for a new challenge?

The National Cyber Security Centre (NCSC) is offering you an exciting opportunity to join our team of experienced technical Security Architects who influence, shape and give advice on the secure design, build and operation of some of the most important computer systems in the UK. This exceptionally demanding role requires a breadth of specialist skills in technology and cyber security, combined with very strong interpersonal and consultancy skills. You will work with and influence people at all levels across a range of organisations, including the wider UK intelligence community, other UK Government departments, critical infrastructure companies and suppliers.

Our team plays a vital role in securing and safeguarding some of the most important systems in the UK. The variety is huge and includes everything from Critical National Infrastructure (those services necessary for the UK to function) and military platforms through to ensuring that citizens can access UK Government services online safely. We collaborate closely with our own research teams, industry and academia to provide the best available advice on security challenges faced by our users today as well as making sure we’re able to solve the likely problems of tomorrow.

Our security architects are renowned for being a source of independent, authoritative and world-class cyber security advice. Join us and you will have the opportunity to make a real difference to the security of the UK. You'll build relationships with wider UK Government, academia and global industry partners. You will influence and support the delivery of Government Policy and you will contribute to maintaining our reputation of being a thought leader in cyber security.

THE ROLE
Our security architects combine broad technical and security skills with strong business analysis, consultancy and communication skills. Using their broad experience and knowledge they influence the design of systems and services to mitigate architectural weaknesses and security risks, whilst always being mindful of the overarching purpose of the system.

Having identified vulnerabilities in system designs, our team work with a variety of people to clearly explain issues and identify alternative approaches. This might include system designers, engineers and industry partners to shape the technical design of systems or it might be influencing senior decision makers and policy makers to address systemic or widely held security problems.

Each of our security architects is responsible for a portfolio of work spanning strategic programmes and tactical response, as well as maintaining their own research and personal development activities. They will work with a wide range of organisations, using a wealth of technologies and will have unparalleled insights into the capabilities of our adversaries. using a wealth of technologies, and have unparalleled insights into the capabilities of our adversaries.

While the role is challenging, our flexible working policy ensures a healthy work-life balance. Wherever possible, we accommodate reduced hours or job share options, balanced against business needs.

For more information on this role please click on the link:

https://www.ncsc.gov.uk/blog-post/how-ncsc-thinks-about-security-architecture

REQUIREMENTS
We are looking for candidates with evidence of:

•    Having 5+ years of experience in providing security architecture consultancy across a range of systems and services (e.g. digital services, enterprise systems and industrial control systems)

•    Having had responsibility for major technology and design choices across a range of systems and services

•    Having a deep understanding of common classes of vulnerabilities in technologies and how they occur, how they are found and exploited

•    Contributing to the development of good practice in the discipline of security architecture

•    Understanding complex technologies or standards, identifying technical security issues and finding technical (or other) solutions to them

•    Analysing and making tough decisions that balance user needs, cost, security and other relevant factors

•    Communicating security risk, assessing options, and making persuasive arguments to technical and senior leaders

•    A keen interest in personal development, through understanding technology trends, following the latest developments in the profession and specialism

TRAINING AND DEVELOPMENT
At GCHQ we’re proud of our inclusive and supportive working environment that is designed to encourage open minds and attitudes. As an organisation that values and nurtures talent, we are committed to helping you fulfil your potential.

We are committed to helping you maintain your excellent technical knowledge through comprehensive training and development opportunities, tailored to your personal needs and the requirements of your work. We will enable you to flourish in your role and perform to the very best of your abilities.

ABOUT US
As part of one of Britain’s intelligence agencies, we unlock the complex world of communications to keep our nation safe. We work closely with MI5 and MI6, our partners in the intelligence community, to safeguard Britain’s people, interests and businesses from various threats. Think cyber-attacks, espionage, terrorism, and organised crime. It’s challenging, varied and meaningful work that you simply won’t find anywhere else.

SALARY
Total reward package in the region of £51K-£100K (on a pro rata basis), dependant on skills and experience

LOCATION
Central London & Cheltenham (located within an hour’s journey of Birmingham and Bristol).

SELECTION PROCESS
To apply for this position, you must meet our nationality, residency and security requirements. You’ll find more details here: Recruitment Process.

As users of the disability confident scheme, we also guarantee to interview all disabled candidates who meet the minimum criteria for our roles.

Be prepared to dedicate 60-90 minutes to completing your application. We’re conscious this might be more time than you expected, so our system will allow you to save your application at any time and come back to it later. But remember to submit your full application before the closing date.

Once we’ve established that you meet our eligibility criteria, the next steps of this selection process are:

- Personal interview*

- Drug test

*Interviews will be held in Gloucester and London.

If you successfully complete these stages, you’ll receive a job offer, conditional upon you completing our developed vetting (DV) process which enables you to obtain the level of security clearance required to perform this vital role.