Department Information

The Group IT Enterprise Architecture & Data Team is responsible for supporting IT strategy and providing technology vision aligned to the Company strategy in its digital transformation, providing architectural guidance and support for IT related programs and projects, providing guidance and consultation on project work from the solution qualification & intensively in the design phase. The team is composed of Enterprise, Solution and Technical Architects expert in Infrastructure, Applications, Data, and Security, managed by the Enterprise Architecture & Data Manager, and part of the IT Project Department.

Role description

We are seeking an experienced IT Security Architect, with a strong background in reviewing, assessing and designing IT security in Digital & IT solutions. This is a leading role for a technical expert with a solid ranging from hands-on and practical deployment experience to design concepts and security by layers.

The successful candidate will be a self-starting, detail-minded design expert, with proven understanding of designing appropriate and profitable solutions. The architect will be responsible for providing internal consultancy, technical design and assist the required project managers for designing and supporting IT security solution delivery at group level.

• Architect new or existing IT security solutions adapted to traditional and cloud services, applications and infrastructures based on security by design best practices,
• Ensure adherence to IT security standards supporting IT security policies and influence missing IT security solutions towards the global IT security solution future state model,
• Ensure that IT security solution designs are fit for purpose, well thought-through, clearly articulated, documented and compliant with standards, of good quality and can be delivered using an appropriate development methodology that aligns to the needs and constraints of the project,

• Collaborate with business stakeholders managing industrial control system, and provide support to follow Purdue Enterprise Reference Architecture model,
• Support internal and external audit activities, such as supplying design information,
• Write or review detailed technical documents making sure the non-functional requirements are addressed by the technical design of the solution,
• Building strong partnership relationships with project teams, IT Security and IT Security Operation teams through internal consultancies and thought team activities,
• Maintain IT security framework, solution catalogue, reference architecture, documentation, and ensure that the jointly agreed design standards and methods adopted by SBM stakeholders, clients and 3rd party suppliers are maintained,
• Proactively review current IT security solutions and propose improvements and strategic direction, anticipating internal IT security goals.

Role Requirement

Our preferred candidate for the role of IT Security Architect has a master’s degree in computer science, Information (Systems) Management or equivalent. You have 5 to 8 years of experience with the field of IT, of which the 3 last years of relevant experience in IT security operations, with solid understanding of the state-of-the-art security domains in cloud, application, infrastructure, network and data (offshore and industrial control system knowledge is a plus). Excellent communication skills in English, both written and verbally and the experience with working with global teams in various time zones. Certifications like CompTIA, Microsoft Azure Security, Cisco (CCNP Security) are a plus but not a requirement.

In addition to this, you should have knowledge on the following subjects:

• Provide support for the defining the vision & strategy for all global IT security solutions based on IT security policies and processes defined by Group IT Security - including the cloud, edge, core datacenter, access and industrial areas,
• Demonstrable skills in designing IT security architecture for large-scale global integration projects,
• Strong experience in the design & deployment of cloud security architectures (Microsoft Azure security services & solutions),
• Experience with Identity & Access Management governance, standards, and technology,
• Handle the design & assisting for deployment of IT security solutions across the entire global IT environment,
• Experience with security technologies and protocols (Azure Security, Firewalling, IDS/IPS, NAC, ATP, Email Security, MFA, RProxy, LoadBalancing, WAF, CASB, DLP, IAM),
• Experience interacting with IT security vendors,