Security Architect

Job overview

This key role involves defining security architecture for our services and systems as we grow and transform to support our business and customers better. You will be responsible for ensuring that our IT solutions fully exploit the opportunities that Digital Service and Data Analytics can provide in a secure way as we transform and develop how we provide services.

What do we offer?

Access to a wide range of benefits and high street discounts!

Main duties of the job

This includes supporting the creation and execution of technology and service roadmaps that will drive our current IT estate towards cloud technology for strategic systems. You will also manage day to day security architecture queries, provide security advice to our technology teams and work closely with third-party providers to deliver IT services.

Responsibilities includes providing security advice and key constraints to NHSBSA technology teams in ensuring project deliveries remain aligned to the Blueprints and help to realise the roadmap. You will be actively involved in creating and maintaining IT requirements for procuring IT services and the selection of 3rd party providers delivering IT services and working closely with them to provide solutions for the Business, however some of the solutioning will be brought in-house.

The post holder will be required to work across the NHSBSA’s locations and will therefore be required to undertake a degree of travel across the country.

Working for our organisation

Here at the NHS Business Services Authority (NHSBSA), what we do matters.

We manage the NHS Pension scheme, process prescription payments and much more. Our services are used by NHS organisations, contractors and the public: we take pride in being part of something so meaningful, that touches millions of lives.

Just as we design our services around the needs of our customers, we place our people at the heart of our organisation. That’s why when you join us, you’ll be empowered and given the right support to help your career grow.

As one of the UK’s Best Big Companies to work for, we’re all connected to our values: Collaborative, Adventurous, Reliable and Energetic. We care about our people, our purpose, and your progress.

We strive to offer a fantastic colleague experience, where every voice is heard, and every colleague is supported and respected. Wellbeing, diversity and inclusion is at the centre of this, so when you join us, you can connect with our Lived Experience Networks who help us to bring our authentic selves to work.

We welcome applications from people of all backgrounds and circumstances. We are committed and proud to be a flexible employer and will endeavour to offer a working pattern that suits you wherever possible, whether that be hybrid working, flexible hours, job sharing and more.

Apply today and see where the NHSBSA can take you. We are people connected to care.

Detailed job description and main responsibilities

In this role, you will be responsible for:

1. Providing security leadership in the development and delivery of the NHSBSA digital services, working with other technical architects and

1. Working across/within different programmes and across different layers of architecture as needed and to translate business security

1. Take ownership of a particular area of the business service, project or programme IT security architecture and ensure consistency with

1. Responsible for the security blueprint solutions for complex protective security of both physical and data assets clearly defining the asis and

1. Present the security design solutions to NHSBSA Senior Management, project and programme teams, and where appropriate, external

1. Responsible to ensure the security solutions presented to architecture governance board within the programme pass architecture

1. Ensure that the infrastructure security architectural design remains up to date and that obsolete elements are phased out of the architecture

whilst ensuring business continuity and return on investment.

1. Management of staff including all line management responsibilities, performance management, appraisals, disciplinary, and standard HR

1. Participates in the recruitment, interviewing and selection of staff as and when necessary.
2. Responsible for prioritising and planning own whilst contributing to the team’s work and providing input to the prioritisation of projects and

programmes proposed and/or underway.

1. Research of the marketplace and constant awareness of industry trends and innovation using information to inform the ICT security strategy

1. To work with NHSBSA staff and Third Parties to ensure that security standards, governance and processes are in place for producing.
2. and maintaining up to date, comprehensive, comprehensible documentation which will include IT service security “blueprints” for all systems and services.

1. Identify opportunities, engaging and fostering relationships and partnership working within the organisation, and with third parties, to identify

1. Working across/within different programmes and across different layers of architecture as needed and to translate business security

1. Work with organisations external to the NHSBSA (e.g. the DH and GDS) when necessary to assist in clarifying their needs and requirements

and be capable of devising options for security solutions, along with full assessment and cost estimation.

1. Handles sensitive commercial & financial information, ensuring that the security solution architectural designs adhere to relevant legislation

1. Implement, monitor and report on a number of areas including agreed service levels, KPI's and standards within security operations.
2. Monitor, report, present or escalate issues as appropriate to the Security Operations Manager.

1. Operate as an SME and point of authority on security architecture, making credible, pragmatic and practical security decisions and

1. To demonstrate creativity and innovation in applying IT solutions and services to develop and improve services and quality for the benefit of

1. Responsible for providing expert help and guidance across the lifecycle of a security solution implementation, including technical and nontechnical aspects. This includes the migration of services across suppliers and closely with Technical Architects ensuring the solution and

1. To identify and interpret DH, GDS, local and national security policy changes and directives, and assess the impact on IT Infrastructure and

1. Produce and deliver in depth reports and/or presentations to NHSBSA, HMG or DH stakeholder’s staff and external parties, on any aspect of

1. Promotes best practice in health, safety and security and ensures safe use of all IT systems and equipment.
2. Is aware of their own development requirements and actively seeks development opportunities for themselves and their team.
3. Responsible for promoting and supporting people’s equality, diversity and rights.

Person specification

Personal Qualities, Knowledge and Skills

• Proven experience in developing and implementing security solution and enterprise architecture and design strategies in a multi supplier environment.
• Proven ability to undertake detailed security analysis of technical designs and provide the business with security assurance of supplier designs and proposals.
• Broad technical knowledge covering web applications and services, information, infrastructure, cloud and managed service architectures. Knowledge of GDS Principles.
• Industry Recognised Qualifications e.g. CISSP, CISMP, CCP, HMG Information Standards, ISO Standards.
• Knowledge, and ideally experience, of emerging security technologies to mainstream business, including: Cloud technology; Mobile devices and apps; Collaborative working tools.
• Experience of effective stakeholder management.

• Enterprise architecture components and frameworks experience such as TOGAF, SABSA.
• Recent and demonstrable Team and Line Management experience.

Experience

• Complex system, information and security solution design.
• Developing and implementing security solution and enterprise architecture and design strategies in a multi supplier environment.
• Comprehensive and recent experience in architecting security solutions in high-volume digital services.
• Demonstrate detailed understanding of the security implications and appropriate security controls of hosting sensitive information in large scale UK Cloud based cloud infrastructure environments.
• Ability to demonstrate a deep knowledge of security and privacy risks and threats along with a strong understanding of key considerations such as confidentiality, availability, integrity, non-repudiation and privacy.
• Working with HMG Information Assurance Standards and Good practice guides including the security policy framework.

• HMG Government Security GPG Guides.
• Transition of legacy services into digital cloud-based solutions.
• Team and Line Management, including staff development.

Qualifications

• An IT related degree or equivalent.
• Industry Recognised Qualifications e.g. CISSP, CISMP, CCP, ISO 27001 implementer.
• plus, significant demonstrable experience in two of the of the following: IT Security Architecture, Working in a number of complementary security roles and/or System and Service Architecture Design
• OR Significant demonstrable experience over a number of years in at least three of the following: IT Security Architecture, HMG Information Standards and best practice, Working in a number of complementary security roles, System and Service Architecture Design and/or Management of a significant ICT implementation

• TOGAF/SABSA Certification or equivalent, or willing to work towards this certification.
• CESG Certified Professional (CCP) Senior IA Architect Experience of working in an agile environment and experience with agile methodologies such as Scrum, Kanban.
• ITIL Certification.

We also welcome applications from all those in the Armed Forces Community.

At the NHSBSA we pride ourselves on being a Disability Confident Leader, Stonewall Top 100 employer and we’ve recently been awarded the Employers Network for Equality and Inclusion Gold Standard benchmark.

We offer an invitation to the first stage of the selection process for people with disabilities that wish to be considered under the Disability Confident scheme, and for members of the Armed Forces Community, where all of the essential criteria in the person specification are met.

A copy of our Privacy Notice is available to view at the link below:

NHSBSA Privacy Notice