Security Architect

Company Description

Security Architect - Dublin

Telefónica Tech (part of the Telefónica Group) is a leading NextGen Tech solutions provider with a highly diversified team of over 6,000 exceptionally skilled employees and +60 nationalities.

We serve more than 5.5m customers every day in over 175 countries, with a global ecosystem of market-leading partners. Global strategic hubs: Spain, Brazil, the UK, Germany.

The Telefónica Tech UK&I hub has an end- to-end portfolio of market leading services and develops integrated technology solutions to accelerate digital transformation through: Cloud, Data & AI (Adatis), Enterprise Applications (Incremental), Workplace Services and Cyber Security & Networking.

Values: Open, Trusted and Bold

Trusted Partners:

• Microsoft: Top 3 Service Providers, Azure Expert Status, Fastrack & Inner Circle Partner
• HPE: Platinum Partner – FY23 UK&I Solution Provider of the Year
• Fortinet: Elite VIP Program – one of only 2 in the UK
• AWS: Advanced Solution & Managed Service Provider Program

Job Description

Security Architect - Dublin - Hybrid (2-3 days per week onsite)

The Security Architect is responsible for designing, implementing, and maintaining an organization's overall security architecture. This role involves collaborating with various stakeholders to identify security requirements, developing strategies to address potential threats, and ensuring the confidentiality, integrity, and availability of sensitive information.

The role requires to be a key stakeholder in any project that this role is a part of, this means being a subject matter in various areas, being able to lead workshops around security solutions and services on your own, highlight areas of improvement for our customers to continuously improve their security posture.

Core responsibilities include: 

Security Architecture Design: 

• Develop and maintain a comprehensive security architecture that aligns with business goals and regulatory requirements. 
• Design and review security solutions, ensuring they meet industry best practices and standards. 
• Planning, studying and designing a security architecture for IT projects
• Designing, developing, and continuously improving vulnerability assessment, security testing, and risk analysis
• Designing, developing, and continuously improving the security posture of the company's products
• Providing developers with remediation guidance and advice
• Evaluating cloud and security technologies
• Designing, developing, and continuously improving security operations
• Recommending and providing technical leadership for the implementation of security measures to protect information systems, networks, and data

Risk Assessment and Management: 

• Conduct risk assessments to identify potential vulnerabilities and threats. 
• Develop risk mitigation strategies and work with relevant teams to implement necessary security measures. 

Security Policy Development: 

• Establish and enforce security policies, procedures, and standards across the organisation. 
• Collaborate with legal and compliance teams to ensure policies align with industry regulations. 

Security Awareness and Training: 

• Provide security training and awareness programs for employees to promote a security-conscious culture. 
• Keep abreast of the latest security trends, threats, and technologies. 

Collaboration with IT Teams: 

• Work closely with IT teams to integrate security measures into the overall IT infrastructure. 
• Collaborate with system architects, developers, and administrators to ensure security is incorporated into all aspects of the system development lifecycle. 

Incident Response and Forensics: 

• Develop and maintain an incident response plans to address security incidents promptly. 
• Conduct forensic analysis of security incidents to identify root causes and prevent future occurrences. 

Security Audits and Compliance: 

• Perform regular security audits to assess compliance with established security policies. 
• Ensure compliance with industry standards and regulations. 

Qualifications

Desirable experience:

• Industry Recognized Cyber Security Certifications: GSEC,CISSP, CISM, CCSP, CISA
• Experience in the Healthcare Industry
• Experience within IT services / Professional Services