Cyber Security - Architect

The senior security architect will set controls and solutions in relation to Sky cyber security objectives, will maintains cyber security documentation and will develops architecture patterns and approaches to work with new technologies.    

The role holder will work with all teams and all levels of management to review and improve the level of security of any software and infrastructure being developed or purchased.

The role holder will also be responsible for generating and maintaining relationships with stakeholders through effective communications and he will be responsible for supporting less experienced team members in technical and procedural questions.

Main responsibilities

• Provide support to technical and business teams in understanding risks and being able to clearly document and explain the reasons for choosing a specific architecture pattern.
• Develop metrics and dashboard to measure capabilities and performance of the structure.
• Monitor and make sure that security models and processes are integrated into projects early in their lifecycle (security by design).
• Communicate with a broad range of stakeholders.
• Definition and review of cyber security Policy, Standards and Procedures.
• Develop reusable cyber security patterns/configurations for Sky assets.
• Develop a security architecture roadmap to support strategic goals identified.
• Establish processes to conduct lesson-learned sessions and to identify improvement opportunities for existing security architecture processes.
• Implementation and review of existing or proposed architecture designs for services and applications being able to identify potential issues in the proposed design (threat modelling).  Where issues are identified the candidate have to resolve them using defined security patterns and security principles.
• Mentoring less experienced team members

Requirements

• Master’s degree in computer science or Telecommunication Engineering (or equivalent education)
• Specific security certifications CISSP, CISM, SANS GIAC, SABSA are desirable.
• Proven experience in a technology focussed business process security role. This might include areas such as cyber security, enterprise networks, IT systems integration or Broadcast Infrastructure.
• Excellent knowledge of Cloud architectures (AWS, SFDC, Google, etc), Broadband and IT services and technologies.
• Excellent knowledge of the main security infrastructures, cyber security governance issues, data protection and cyber & information security standards.
• Good knowledge of content protection architectures and technologies.
• Excellent knowledge of cyber security architectures such as firewalls, web application firewalls, Identity and access management, endpoint security, etc.
• Languages: Italian, English

Soft skills

• Project management, planning and problem-solving skills.
• Ability to interact with other department, supplier and stakeholders constructively and proactively, respecting needs of each role.
• Flexibility, autonomy, speed; proactive and highly assertive candidate, with a strong goal orientation.
• Ability to identify risks associated with business processes, operations, information security programs and projects
• Ability to involve and facilitate the growth of the youngest figures of the team