Outside IR35 contract jobs

Description

Security Governance, Risk and Compliance Solution Architect

Job Overview:
We need a solution architect to support the delivery of strategic cyber control solutions within the security governance, risk and compliance (GRC) sub-domain, covering vulnerability and compliance management, security governance and assurance, and risk management. Experience of working with Qualys, ServiceNow SecOps and Cloud Technologies would be an advantage, as well as agile methods and DevSecOps tooling.

Initial work focusing on solution architecture definition, including process, information and component architectures. Responsible for making sure solutions and their non-functional capabilities are defined and delivered (including observability, integration, security, service, domain separation etc). Projects include but are not limited to the following:
1. Vulnerability issue management supporting Spinnaker workflow
2. Workplace (design assurance) replacement
3. Third party risk management Ariba/ServiceNow spoke integration
4. DevSecOps compliance tooling integration
5. Pre-project sizing to support new initiatives

Responsibilities:
- Lead and/or be accountable for defining security solution architectures across the business with expertise in governance, compliance, standards, risk design patterns.
- Work collaboratively with Enterprise Architects to bring solution-specific expertise into decision-making.
- Support strategic architecture projects with detailed security solution architecture input ensuring secure creation of solutions considering business outcomes.
- Ensure that all solutions focus on usability while contributing tangibly to dependent services.
- Create reusable solution patterns and briefing documents.
- Collaborate with both business and technical teams for delivering security solutions including overseeing implementations of designs.
- Develop roadmaps for security technologies aligning them with relevant strategies.
- Support enterprise architects during vendor selection processes ensuring best value for money is achieved.
- Contribute to research initiatives including proof of concept/value efforts.
- Understand implications of transformation by engaging with business technology stakeholders.

Experience:
- Evidence of delivery in solution architecture in large scale complex environments.
- Familiarity with EA frameworks such as TOGAF processes/artefacts.
- Background in cyber security ideally involving operational/delivery/forensics experience.
- Experience contributing to or producing business cases gaining stakeholder approval ensuring delivery benefits are realized.
- Subject matter expert experience in a technology field.

Skills:
- Self-motivated; organized; proactive; flexible approach towards work tasks
- Comfortable challenging strict deadlines
- Ability to visualize; articulate; solve complex problems/concepts
- Excellent communication/presentation skills adaptable to target audience
- Ability interpreting stakeholders' needs addressing both business/technical issues
- Inquisitive mindset; thirst for knowledge/willingness learn

Qualifications:
Possess a recognized formal qualification in cybersecurity such as CISSP or CISM or equivalent experience (5+ years) within a related role.

Company Overview:
LA International is a HMG approved ICT Recruitment & Project Solutions Consultancy operating globally from the largest single site UK IT Consultancy or Employment Business & Agency depending upon precise nature work offered—welcoming applications from diverse backgrounds regardless clearance status.

Awards:
Award Winning LA International has secured multiple accolades including Recruiter Awards Excellence: Best IT Recruitment Company & Gold Award winner overall plus The Queens Award Enterprise: International Trade recognition over consecutive periods.