Find More Than 10K+
United Kingdom Jobs

Our UK Information Security Team is growing. We already have excellent relationships with our stakeholders, including system owners, senior management and IT teams in the UK and Sweden. To help deliver our exciting Technology modernisation strategy whilst helping these stakeholders provide excellent support to our branches and customers we are looking for Security Architect who is passionate about designing secure innovative and pragmatic solutions and who would value our open collaboration with stakeholders. Handelsbanken have an extensive legacy estate with a Cloud First strategy, this role will help deliver that strategy.

The main purpose of the Security Architect role is to:

• Providing guidance on all aspects of secure design, considering the security and privacy needs of customers, staff and the Bank itself
• Work closely with and provide input on Security Architecture to the UK & Group Architecture teams
• Providing guidance and advice on the application and implementation of the appropriate controls necessary to operate Bank services in a mix of cloud compute and dedicated hosting environments including ensuring that applicable Enterprise and/or Industry/OEM standards are applied in each design
• Defining application and operational requirements regarding production processes and environments, including security operations centre (SOC) and security information and event management (SIEM) integration, etc.
• Ensuring that all future designs include the appropriate resilience and controls to mitigate known risks associated with both internal and external cyber-attacks e.g. DDOS
• Providing hands-on input to feasibility studies and projects, particularly in the early design stages, to help shape high quality solutions across architecture domains and ensuring security considerations are at the heart of new designs
• Creating and maintaining high quality guidance and design documentation, working closely with solution and data architects, to support the various stages of architectural and investment approval
• Building and maintaining knowledge of the technology security landscape relevant to the UK and helping mature the baseline architecture collateral
• Driving solution design discussions with senior business stakeholders to ensure goals will be reached
• Working with application developers to ensure logical and software solution designs meet requirements, follow industry design methodologies and are aligned to best practice
• Presenting architecture documents to the UK architecture governance forum (and group equivalent where applicable) for review and approval
• Staying up to date with industry advances, opportunities and best-practices
• Working with the team to continually enhance and mature the architectural and governance processes
• Working with wider Information Security, Data Protection and Operational Security teams to ensure that organisational information security and privacy needs are "baked in" to any secure design. Where necessary, engaging these teams to provide Subject Matter Expertise.

The role holder should have a current and up to date understanding of all aspects of Security Architecture in a corporate environment preferably financial services, including,

• Bachelor’s Degree or above in STEM subject or Information Technology area
• Microsoft Certification in Security Architecture , Engineering or Administration
• TOGAF certification would be an advantage
• OEM certification in other Cloud or Networking arenas
• Experience designing and implementing cloud based security solutions within any of the major cloud platforms
• Proven experience of defining and designing solution architectures within a Financial Services or organisation with comparable security risk exposure
• Completion of relevant security qualifications (CISSP, CCSP, CEH, or comparable)
• 3+ years working as Security Architect in a large technically diverse environment

They are able to :

• influence decision making to surface and mitigate operational issues and risks across a wide range of stakeholders, up to and including senior management / executive
• prioritise and deliver competing priorities and manage stakeholders effectively
• own and / or oversight the delivery of key security architecture processes and/or improvement projects
• take responsibility and act autonomously;
• plan, organise and prioritise tasks and projects;
• have the ability to solve problems creatively and effectively;
• be a strong team player;
• be able to interact proactively and confidently with all areas of business, including senior management and product owners
• have excellent interpersonal and communication skills in both written and spoken English.
• ability to successfully communicate complex data protection requirements to non-technical stakeholders
• pragmatic, and effectively balances risk and control requirements with commercial drivers and customer outcomes
• positive, collaborative and builds and maintains effective cross functional relationships

Handelsbanken is a relationship bank with a decentralised way of working, a strong local presence thanks to a nationwide network of branches, and a long-term approach to customer relations. Each Handelsbanken branch operates as a local business enabling it to make decisions at a local level and provide a bespoke service. The focus is always on the need of the individual customer and not on the sale of specific products.

The Bank is deeply committed to embedding good equality and diversity practice into all of our activities. This is so that we are an inclusive, welcoming and inspiring place to work that encourages everyone to apply, regardless of socio-economic background, age, disability, pregnancy and/or parental status, race (including colour, nationality, and ethnic or national origin), veteran status, marital and civil partnership status, religion or belief, sex, gender reassignment or sexual orientation.

Comp + Bens