Key accountabilities and decision ownership:
Impact on the business:
This role is responsible for ensuring that the IT system security architecture roadmap supports the business objectives.
Leadership and teamwork:
The role holder will be one of a team of Enterprise Security Architects delivering world-class security solutions for the business. They will also be expected to lead security solution design projects and to highlight and clearly articulate risk mitigation requirements to the business.
The ability to lead and influence security strategy at a senior technical level is paramount, but the role holder should be business focussed, with the clear objective of security being a business enabler and a strong capability to communicate the security risk.
Innovation and change:
The role holder will be responsible for driving a perception change from security from being seen as an inhibiter to a business differentiator.
Customers, supplier and third parties
The individual will work heavily with all stakeholders to forge a community within Vodafone to promote secure by design.
Core competencies, knowledge, and experience:
Expert knowledge of security architectures, technologies, standards, and industry guidelines, especially those applicable to Data Centre, Public Cloud, Network Security & Office IT
Architetcure experience (in security or IT fields) at eneteprise level
Experience of applying at least one cyber architecture methodology (e.g. TOGAF (The Open Group Architecture Framework), SABSA)
Knowledge of Microsoft security architecture and blueprints, in particular around Azure AD and on-premises AD, M365 security and MSFT security tooling
A solid understaindign of Zero Trust security framework and industry approach
A proven track record, in designing and deploying a range of security features for a global organisation’s IT infrastructure.
Excellent communication, capabilities to provide rapid and concise summaries of complex scenarios and communicate security risk in business terms and the ability to interact effectively with senior internal and external stakeholders.
Consultancy Skills delivered in culturally aware global corporate
environments. Threat Modelling frameworks.
Desired:
MSFT and/or cloud certifications
CISSP certification
Experience in developing security control frameworks
Azure AD and Active Directory architecture and/or hands on experience
Microsoft O365 security suite (e.g. email, collaboration, DLP (Data
Loss Prevention), MCAS, C2. General (Microsoft Cloud App Security), insider risk hands on experience
Virtualisation technologies (e.g. VMware)
Laptop & Server Security (AV/EDR),
Cryptography and PKI (Public Key Infrastructure)
