This position has been filled

Information Security & Compliance Architect

Information Security & Compliance Architect

Whitehall Resources are looking for an experienced Information Security & Compliance Architect for an initial 6 month contract in Berkshire.

Key Accountabilities:
– Analyse the proposed computer networks for potential security issues, advising the component SMEs on best practice
– Advice on security measures to protect systems and information infrastructure, including firewalls and data encryption programs.
– Review programme Non-Functional Requirements (particularly around security and compliance) to advise component SMEs on impact and mitigation
– Work with programme security team to ensure regulatory compliance, particularly with reference to GDPR, PCI-DSS, OFCOM and other regulatory bodies.
– Advise on how to fix detected vulnerabilities to maintain a high-security standard.
– Track and Plan deliveries to achieve compliance as identified above.
– Develop company-wide best practices for IT security.
– Help colleagues install security software and understand information security management.
– Research security enhancements and make recommendations to management.
– Stay up-to-date on information technology trends and security standards.

Essential Skills/ Experience
– Minimum 12- 15 years of Security and compliance domain experience
– Experience with computer network penetration testing and techniques.
– Understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts.
– Ability to identify and mitigate network vulnerabilities and explain how to avoid them.
– Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact.
– Experience in delivering regulatory compliance with cloud deployments
– Experience with carrier class IP network services.
– Significant experience across application and IT project delivery across all stages of the lifecycle
– Educated to degree standard or equivalent in a technical subject.

Desirable Skills/ Experience:
– Knowledge of network design and software development best practices.
– CISSP certification
– GDPR Practitioner certification
– CAP accreditation
– SSCP certification
– TOGAF, ITIL or eTOM certifications
– Been a part of the core team for an end to end transformation program at a large scale


All of our opportunities require that applicants are eligible to work in the specified country/location, unless otherwise stated in the job description.