Oh oh! Awesome! {$ msg.text $} ({$ msg.count $})

Security Architect

  • Basingstoke +2 more
  • Basingstoke +2 more

We are looking for a talented security professional to join our consultancy team.

Are you passionate about information security? Do you want to work in a team with the independence to decide your direction within the field? Do you want to work in an environment where you have dedicated time for personal research and development?

Do you enjoy securing high-value environments? Are you well versed in security risk assessments, and have great written and verbal communication skills?

Is risk-driven decision-making your mantra? Are you a great communicator with pedagogical skills?

If you can answer: YES

To the above, then you probably want to: APPLY!

WithSecure is a global consultancy with presences in Europe, Asia and the US, including here in the United Kingdom. We are looking to expand our capacity in security architecture consultancy and risk management. Searching for individuals who are keen to work as part of a global team in close partnerships with our Security and Risk Management team.

This position will be a good match for those who have a deep technical understanding of enterprise environments and networking in general and cloud technologies in particular. Your skills and experience will help you advise and implement security initiatives related to cloud technologies at several named clients.

The work as a security architecture consultant is characterized by trust and we always strive for long-term client relationships and to be THE trusted information security advisor. Our vision is to provide the most qualified advisory professionals to our clients, adapted to suit their specific preconditions so that we can assist the client in improving their security posture and mitigate any risks.

Key Responsibilities

Typical client engagements are security architecture reviews, ISMS implementations, engagements in various security projects, security audits, taking on the role as CISO or advisory on information security strategy . You will dedicate your effort to a select number of clients on long-term engagements. Your responsibilities will include:

  • Delivering risk assessments.
  • Defining risk mitigation strategies.
  • Engage with various stakeholders both within the business and IT Functions.
  • Advising on how to align with expectations on risk appetite, security strategy, and budget senior stakeholders.
  • Producing detailed, high-quality reports.
  • Contribute to WithSecure research, present research at conferences as well as at company events such as the WithSecure briefing

You will also be part of a great team working closely with extremely talented security consultants. We have a great atmosphere with a lot of fun, collaboration, and extensive learning and development opportunities.

Your key skills should be:

  • Ability to perform design reviews and/or risk assessments of software and infrastructure.
  • Ability to assess risk profiles based on design documentation and discussions with development teams
  • In-depth understanding of enterprise architecture and implementation challenges
  • The ability to balance security need and policy with practical operational requirements
  • Strong written & verbal communication skills
  • Experience leading discussions about security risks and practices
  • Leadership in building successful security services and large-scale security engagements

What are we looking for?

We are looking for individuals that exhibit ambition, a strong work ethic, and a willingness to learn. Being a consultant at WithSecure means maintaining an indefinite, steep learning curve. You will be supported throughout your career here, but also expected to use that support to grow continuously as a leader and trusted advisor.

We appreciate and expect professional pride and integrity. Being able to develop and maintain good and long-term working relations with clients and colleagues alike will be crucial to your success.

The ideal candidate will have at least 5 years of security experience with a range of security certifications. Your current position is probably an information security consultant, security manager, security architect, or similar. Most importantly, you have a track record of successful security and/or risk management experience.

Key Requirements

  • 5+ years experience in security consulting or internal security management
  • Security risk management certifications such as CISSP, PCI QSA, and CISM are preferred. Offensive security certifications such as OSCP, OSCE, and OSEP will be a bonus.
  • Extensive experience designing and performing risk assessments on enterprise security systems
  • Experience with SDLC and/or SSDF is a plus
  • SOC, incident response, or penetration testing experience a plus

Bonus points

  • Recognized certifications within risk-, security- and privacy management, IT management and project management is a plus, but not a requirement.
  • Do you want to work in a startup-like environment, but with the backing of a multi-national corporation?
  • Do you appreciate personal growth and want to work for a company that offers, and sticks to, 25% research time for its consultants?
  • Have you ever worked for a bad boss and wished that you could work somewhere where everyone gets along, respects each other and where your boss appreciates and communicates clearly with you?

Work with great people

Karolina Malagocka
Senior Marketing Manager
"We see the value of each and every person"
William Jardine
Managing Consultant
"The freedom is a big thing for me. The trust you are doing something worthwhile."
Robert Grześkowiak
Lead Software Engineer
"At WithSecure you won't feel bored. There are opportunities to learn new things every day."
Fairuz Zainor
Researcher
"I joined WithSecure (previously F-Secure) straight after graduating and now, 10 years later, I am still happy to be here."

Great Place to Work

  • Over 1,700 amazing colleagues in nearly 30 offices

  • Possibility to protect the world

  • Work with best of class experts who care

  • Relaxed, open and fun working environment

  • 68+ of nationalities

  • Global with the spirit of a small company

About the company

Purpose – Why we exist
We are here to build and sustain trust in a digital society
We are here to build and sustain trust in a digital society — trust that is threatened by uncertainty, fear and worry caused by cyber attacks and crime.

Vision – Where we are heading
No one should experience a serious loss because of a cyber attack
We envision a future where no one should experience a serious loss or be put out of business because of cyber attack or crime. At least no one who puts their trust in us.

Mission – What we do
Accelerate transition to outcome-based security
Our mission is to research, innovate and build technologies, human expertise and delivery-business models that will accelerate our customers’ and partners’ transition to outcome-based security.

Anne Binks | Contact Person

I'm interested
WithSecure

Basingstoke +2 more
Visit website