Security Architect

**POSITION PURPOSE**

This role is part of the IDP Global Cyber-Security team.

We have an exciting opportunity for a Security Architect to provide the vision & drive in our DevSecOps way of working. As IDP’s Security Architect you will work very closely with development teams, Cloud & DevOps engineers to guide them in strong security and privacy approaches, continuously enhance security tooling and tool rules, and building security automations into our CI/CD pipelines and Cloud Architectures.

You will contribute to IDP security practices in AWS and across the all IDP business lines. We are entrusted with the personal information of customers and we take this responsibility extremely seriously. With every other member of the team, you will be an expert voice in ensuring that Security and Privacy are a fundamental part of every design and deliverable.

The essential purpose of this role is to provide thought leadership, practical experience, and hands-on skills to continuously “raise the bar” for IDP’s Application Security. You will do great things that have a major positive impact on people’s lives.

**IDP’s Technology Context**
IDP has completed the first phase of its digital transformation which has directly contributed to the massive acceleration in the world’s leading Edu-Tech business helping customers fulfil their lifelong learning opportunities at the world’s top universities.

IDP is committed to the AWS Well Architected Framework and its five pillars. The Application Security Architect will focus on the Security pillar - protecting IDP’s information and systems. Key topics include confidentiality and integrity of data, identifying and managing who can do what with privilege management, protecting systems, and establishing controls to detect security events.

**About you**:
**Essential Knowledge & Skills**
- Tertiary Education:_ _Bachelors or master’s in software engineering, Computer Science, or other relevant discipline.
- Deep Knowledge of Application and Cloud Security. Having a great understanding of security threats, practices & defences is the essential skill of this role. You will be able to talk confidently on the various attack vectors and risks facing an organisation such as IDP, the approaches to address those risks and be able to translate this knowledge into practical implementations of security best practices.
- People Skills: You will have a great ability to collaborate with Application and Cloud Engineering teams closely to embed AppSec throughout the product lifecycle. Much of this role will be about working with others to ensure great practices are followed, and then drive automation.
- AWS Cloud: It is important that you have a deep understanding of the AWS Cloud and its security features. You’ll understand the AWS well architected framework thoroughly, can talk to it confidently and be able to drive its implementation at IDP.
- Test Automation: You’ll have a great knowledge of the various types of security test automation: what they should be achieving, how to implement them in a manner that achieves our security and privacy objectives and increases the productivity of the delivery flow.
IDP have strong security and privacy practices but have a drive to massively increase the role of automation in the testing of these practices. You will have specific experience of incorporating security testing into CI/CD pipelines.
- Vendor Evaluations: You’ll have performed a number of vendor/product evaluations and can produce well-reasoned recommendations to senior leadership.
- Communication Skills: Being able to produce clear and practical policy documentation, security patterns and be able to communicate to Software and Cloud engineering teams so they understand both what is required of them, and why.

**Essential Experience and Qualifications**
- Security Background: With this role it won’t be a surprise that we need someone with great experience in driving security and privacy practices, testing and automation. We anticipate that the level of experience we are looking for will mean you have at least 10 years in Information Technology with at least five of those working in Application and/or Cloud security.
- Security Credentials: Industry Security certifications such as:_ _CISSP, GIAC (SANS), and desirable CEH ethical hacking, or SSCP, networking background such as Cisco e.g. CCNA, CCNP, OSCP
- AWS Security: IDP use AWS for most of its infrastructure and networking needs. Having the AWS Security certification, or a commitment to achieve it, is important for this role. You will have worked with AWS closely either in a Cloud Engineering or Security role for at least two years, be able to discuss confidently the AWS security services and have deep practical experience in their implementation.

**Continuously push IDP towards AWS Best Practice and AWS Well-Architected framework**
- be part of a team tasked with continuously reviewing IDP’s AWS environment and