Information Security Architect

The Job

We are looking for an Information Security Architect to take ownership of the technical security aspects of our systems, applications, processes and technical BAU activity. This role requires hands-on expertise in security design, implementation, and management, ensuring security is embedded into our technology stack from project initiation through to BAU operations.

You will work closely with architects, developers, managed services providers, and other internal stakeholders to provide technical leadership in security discussions, manage security processes, and ensure compliance with industry best practices. Additionally, you will lead technical security meetings, oversee project-based security requirements, and ensure operational security controls are effectively managed

Key Responsibilities

• Technical Security Leadership:

• • Lead technical security discussions with internal and external stakeholders to ensure security best practices are implemented.
  • Provide technical oversight for security projects, including reviewing architecture, infrastructure, and security configurations.
  • Conduct security risk assessments and ensure appropriate mitigation measures are in place.

• Security Operations & BAU Management

• • Manage day-to-day technical security operational.
  • Support and oversee the implementation of security controls.
  • Facilitate and manage technical steering meetings, change management, and security-related project discussions.
  • Conduct third-party security reviews, ensuring compliance with security policies and frameworks.

• Collaboration & Guidance:

• • Work closely with stakeholders to ensure security is embedded in software development, infrastructure, and cloud environments.
  • Provide technical guidance to internal teams on security best practices.
  • Act as a subject matter expert on technical security controls, regulatory compliance, and security frameworks

Key Skills & Experience

• Proven hands-on experience in technical security, including secure system design, security tool implementation, and security architecture.
• Strong technical knowledge of network security, firewalls, IAM, cloud security (AWS, Azure), and endpoint protection.
• Experience managing BAU security operations.
• Good understanding of security frameworks and regulations (e.g., NIST CSF, ISO 27001, GDPR, CIS controls).
• Familiarity with security technologies such as SIEM, endpoint security, intrusion detection, and secure coding practices.
• Excellent problem-solving skills and the ability to translate security concepts into technical solutions.
• Strong communication skills, with the ability to effectively engage with technical teams and senior stakeholders.

Not sure you meet all the criteria? We'd encourage you to take the wheel and apply anyway! At Halfords we are committed to creating an inclusive workplace for our colleagues. We're an equal opportunities employer and proud to welcome applications from all backgrounds and embrace diversity within our one Halfords Family.