Principal Security Lead
Principal Security Lead
London (Hybrid Working)
Permanent
Grade 5
We have an exciting opportunity for a brand-new role in our structure, where we are looking for a Technical Security Architect to join our team where you will be responsible for working with our IT operations, project, and architecture teams to advise and design security aspects for our projects. Do you have a passion for Cyber Security? Do you love security and want to help influence how Currys protect themselves? If yes, then we'd love for you to apply!
You will be responsible for:
• Leading technical security engagement with programmes, architects, IT operations, and acting as the subject matter expert on assigned projects and initiatives
• Working with solution architects and project teams, produce guidance, designs (high and low level) based on overall solution designs
• Recommend suitable security controls to balance good practice, InfoSec standards and business outcomes, suitable for a fast-paced retail environment
• Responsible for security controls defined across projects and to support the overall technology and InfoSec vision with modern ways of working
• Work with other IT and InfoSec Leads to drive the right solutions for the Currys business and implementing modern ways of working between on premise systems and the cloud
• Assist with costings of new security components
• Be decisive on the technologies and tools required, while adhering to agreed design principles and patterns
Required Skills & Experience:
• Solid experience of reviewing, designing, implementing, and supporting security toolsets in a complex enterprise environment
• Experience supporting IT transformation, migrating legacy Infrastructure environments to new cloud environments
• Understand Strategic IT and Security Solutions for large organizations
• Strong understanding of identity access solutions, network security components and technical security best practice
• Strong understanding of core technical security components including WAF, CASB, identify (SAML/OpenID/OAUTH), anti-malware and SIEM
• Strong knowledge around the Microsoft portfolio of security features, especially around the MS Azure and Microsoft 365 stacks
• Be practiced in adapting security controls for hybrid environments working across on-premise solutions vs. IaaS, PaaS and SaaS solutions
• Experience mitigating risk and defining compensating controls for legacy systems (e.g. Mainframe)
• Ability to define suitable security controls for a business solution, explaining and justifying them to non-technical security stakeholders
• Be able to produce written designs and validate/review supplier produced designs
We're one team and we celebrate all of the great things you do. One way we show our gratitude is by giving you access to a range of lifestyle benefits including:
Private medical insurance
Competitive pension scheme
Access to discretionary company bonus scheme
Life Assurance
Beyond that, we'll be with you every step of the way, enabling you to get the most out of your role. We're building a team that brings technology to people, making their lives better, easier and fuller, and you can be part of it.
#LI-Hybrid
#wheretechlovesunite]]>