Cyber Security Architect

Salary for this Role:

From £49,600 with benefits, subject to skills and experience

Job Title:

Cyber Security Architect

Reports to:

Natasha Towner

Closing Date:

10/Nov/2024 23.59 GMT

Job Description:

Cyber Security Architect

Reports to:

• Deputy CISO

Contact term:

• This is a full-time permanent position on Crick terms and conditions of employment.

Summary

This is an exciting opportunity to join one of the world’s leading research Institutes at a crucial time in its evolution, and play a definitive role in shaping it for the future.

The Information Technology Office (ITO) team within the Francis Crick Institute is responsible for the design, implementation and operation of all IT which manages the running of the institute, along with the publication and library services provided to scientists.

The post holder will be part of the Architecture, Design & Information Security Function and sit within the Cyber Security Team. A demonstrable ability to learn and understand complex topics, and an interest in the subject are essential.

The SOC exists to ensure the Confidentiality, Integrity, and Availability (CIA) of Crick data and systems. It will support the CISO, CIO, wider ITO and Crick in the creation and execution of policies, projects and operational processes that support the Crick in its discovery without boundaries mission. They will advise and report regularly to the Deputy CISO and work with others as appropriate to achieve this.

They will work with other ITO teams and stakeholders from a variety of levels across the Crick, including project sponsors, operational teams, science, and external partners. The post holder will need to forge close working relationships across all of these.

Key responsibilities

These include but are not limited to:

• Operational responsibility for the Confidentiality, Integrity and Availability of Crick Systems and Data.

• Implementation of security policy across the Crick IT estate and contributing to ongoing improvements as required.

• Championing awareness of security issues to all Crick staff, and identifying potential security champions

• Working with other teams to support the secure design, definition, and implementation of new IT-wide solutions.

• Working with internal and external auditors, penetration testers or red teams as necessary to ensure compliance and effective defence in security matters.

• Monitoring and resolution of security alerts from across the Crick estate

• Continual service improvement of security incident and vulnerability management

• Creating RFIs/RFQs for new Security tools to recommend best options

• Creating High Level Designs for Cyber Security Projects

• Contributing Cyber Security solutions towards all ITO projects

• Presenting at the Architecture Review Board for Cyber Security Solution approvals

Key experience and competencies

The post holder should embody and demonstrate our core Crick values:

Bold; Open; Collegial in addition to the following:

Essential

Qualifications, experience and competencies

• Educated to degree level or with equivalent relevant technical training and experience.

• End user device architecture experience throughout the lifecycle, including design, implementation, transition to service, maintenance and retirement.

• Experience of successfully automating system administration tasks through use of locally-developed scripts and/or integration with other administration tools.

• Previous experience of effectively maintaining and developing IT documentation.

• Experience of analysing security requirements across multiple domains ie broad e2e analysis and across multiple technology platforms and applications.

• Experience of working as a Security Architect and providing e2e solution designs across multiple applications.

• Experience of security concept and analysis of data

• Strong interpersonal skills and a demonstrable ability to build effective relationships at all levels.

• A self-starter, with a proven track record of working effectively in a collegiate environment without close supervision and with the ability to manage own workload and priorities.

• A proven ability to demonstrate an appreciation for the operational needs of a scientific research environment is essential; previous experience of working in such an environment would be an advantage.

• Evidence of further continuous professional development activities, and the intellect to grasp the unusual issues arising from the nature of the role, particularly driven by the specialised scientific facilities.

• A proven track record of carrying out agreed operational procedures of a routine nature to a high standard.

• Excellent written and verbal communication skills and attention to detail .

• Strong organisational skills and a demonstrable ability to manage own time effectively and balance multiple priorities.

• Previous experience or demonstrable understanding in several the following:

  • Mac OS (all versions, including iOS).

  • Windows 7, 10 and 11; Windows Server.

  • Linux (CentOS/RHEL, Ubuntu, Rocky).

  • Active Directory - best use, design and use of GPO's, integration with Linux.

  • SSO and Federated authentication

  • Office365 – Exchange and SharePoint and the MS Office suite.

  • Security technologies, anti-virus and XDR, endpoint encryption and penetration testing.

  • Mobile device management (Jamf Cloud and Connect, MS SCCM, Intune).

  • Collaboration tools (Zoom suite, Slack, Atlassian suite, Dropbox, FTP, Guacamole,).

  • Commercial applications and systems (Workday, Worktribe, Mailtrack, Adobe Creative Suite).

  • Scientific applications and systems (FreezerPro, PPMS, Armis).

  • System monitoring and alerting (, Splunk).

  • System hardening, security and password/key/certification management.

  • Scripting (Shell, Python, Perl, PowerShell)

  • Appreciation of supporting a DevOps approach.

  • Understanding of Public and Private Cloud computing – AWS, Azure, OpenStack, etc.

  • Good understanding of networking principles (TCP/IP, DHCP, DNS).

  • Software licensing management.

  • Working with a mix of COTS and Open-source technologies.

• Striking the right balance between risk management and operational efficiency. Seeing the big picture and ultimately supporting the Crick in its mission.

Find out what benefits the Crick has to offer:

For more information on our great pay and benefits package please click here: https://www.crick.ac.uk/careers-and-study/life-at-the-crick/pay-and-benefits

Equality, Diversity & Inclusion:

We welcome applications from all backgrounds. We are committed to providing equal employment opportunities, regardless of ethnicity, nationality, gender, sexual orientation, gender identity, religion, pregnancy, age, disability, or civil partnership, marital or family status. We particularly welcome applications from people who are Minority Ethnic as they are currently underrepresented in the Crick at this level.

Diversity is essential to excellence in scientific endeavour. It increases breadth and perspective, leading to more innovation and creativity. We want the Crick to be a place where everyone feels valued and where diversity is celebrated and seen as part of the foundation for our Institute’s success.

The Crick is committed to creating equality of opportunity and promoting diversity and inclusivity. We all share in the responsibility to actively promote dignity, respect, inclusivity and equal treatment and it is our aim to ensure that these principles are reflected and implemented in all strategies, policies and practices.

Read more on our website: https://www.crick.ac.uk/careers-and-study/life-at-the-crick/equality-diversity-and-inclusion