Job Description
Security Architect, Cloud
Job Location
London
Job Category
Business Services
Practice Group
N/A
Support Department
IT Support - London & Regional
Job Title
Security Architect, Cloud
Description
Role Purpose
The Security Architect, Cloud will provide technical leadership,
design, implementation, integration, and oversight of the Firm's
cloud-based security solutions and systems, with an emphasis on
securely facilitating business operations.
The Security
Architect, Cloud will utilize an extensive IT background, advanced
security knowledge, an appreciation for compliance and risk management
principles, and excellent communication skills to develop and promote
effective and sustainable solutions; educate constituents and champion
such solutions directly and in concert with Firm leadership.
The Security Architect, Cloud will protect the confidentiality,
integrity, availability, and recoverability of information, systems
and facilities in compliance with organizational policies and
standards; and seek continual improvement and growth relative to a
cloud capability maturity model (CMM).
Main Responsibilities
- Provide advanced technical support of key cloud security systems
and technologies, such as CASB, IAM/MFA/PIM, and
AWS/Microsoft/Google, including development and maintenance of
supporting tools, scripts, dashboards, and metrics
- Architect, implement, and support event management and logging
solutions identified as necessary for the protection of Firm assets
- Integrate and connect disparate systems to achieve synergistic
incident detection, reporting, and response outcomes
- Seek new opportunities for the application of SOAR technologies,
principles, and concepts across technical teams, processes, and systems
- Provide input, create documentation, and review information
security policies and procedures
- Utilize common security toolsets (SIEM, IAM MDM, CASB, etc) to
identify issues and analyze compliance with existing policies and procedures
- Monitor control systems to ensure that appropriate information
access levels and security clearances are maintained
- Stay abreast of the threat, capability, and technology landscape
- Participate in the definition of the organization's IT disaster
recovery and continuity plans for cloud security systems
- Serve as an internal information security consultant and mentor
regarding cloud security event concepts to the Security Team and
other constituents by monitoring information security technologies
and trends, providing expert guidance, and assisting with knowledge
development/mentoring activities
- Serve as a 3rd-level support resource for the purposes of ticket
resolution and change management activities
- Analyze, recommend, and implement controls as determined necessary
by management
- Support Firm standard security applications, utilities, and
processes. Utilize remote control and remote access software in the
performance of duties
- Critically analyze proposed and existing solutions for adherence
to the Firm's design requirements, including requirements resulting
from the ISMS Policy, client contracts, the regulatory environment,
and professional obligations
- Provide expert counsel to constituents regarding their information
security obligations and facilitate an acceptable outcome based upon
the tenets of the Firm's Risk Management Framework
Travel requirements
Ad hoc travel will be required
About The Team
The Firm's Technology function is responsible for designing,
developing and maintaining the firm's global technology
infrastructure, including architecture, hardware, software, computer
networking, communications and data management. The function works
closely with lawyers, clients and PBS functions to ensure our
technology offering is best-in-class and forward-thinking, allowing
the Firm to provide its clients with cutting-edge, innovative legal
and business advice via up-to-date technology products and solutions.
The Firm's Technology function is responsible for designing,
developing and maintaining the firm's global technology
infrastructure, including architecture, hardware, software, computer
networking, communications and data management. The function works
closely with lawyers, clients and PBS functions to ensure our
technology offering is best-in-class and forward-thinking, allowing
the Firm to provide its clients with cutting-edge, innovative legal
and business advice via up-to-date technology products and solutions.
This role will report to the Associate Director, People Solutions
The direct reports of this role are with the Product Managers,
People Solutions
The key relationships of this role are with the following:
- Talent Management Leads
- Portfolio Managers for the other PBS/PKS functions
- Technical Services teams
About The Candidate
Technical skills, qualifications and experience
- Computer Science Bachelor's degree or substantial equivalent experience
- Extensive experience with advanced information IT and security
systems, including TCP/IP networking, scripting, and incident handling
- Strong experience of designing and implementing cyber security
solutions in a large enterprise
- Good demonstrable experience managing Microsoft Azure cloud platforms
- Some exposure to AWS and/or Google cloud platforms
- Experience of using scripts or other development tools to automate
and integrate diverse systems
- Proven experience acting in a security advisory capacity to
multiple constituencies
- CCSP and CCSK preferred
- Experience of Microsoft Azure Cloud Architect or Engineer is preferred
- Experience of CISSP, SSCP, CRISC, or CGEIT would be beneficial
- Expert knowledge of key Microsoft cloud technologies, including
Azure: MFA, Advanced Threat Protection, Cloud App Security, Key
Vault, AD, storage, monitoring, access control, policy management,
and Resource Manager
- Familiarity with common cloud automation, management, and
deployment tools such as Pivotal, Jenkins, Ansible, Docker,
Kubernetes, etc.
- Expertise with integrating and deploying IAM solutions for both
cloud and on-prem scenarios
- Authoritative knowledge and experience with cloud deployment and
integration activities
- Working knowledge of information security frameworks such as
ISO27001, NIST, and CIS
- Authoritative understanding of security threats, qualitative and
quantitative risk valuation models, and effective tools, tactics,
and techniques for risk reduction
- Working knowledge of SOAR concepts and toolsets, including how to
architect, automate, and integrate cloud systems with logging, event
correlation, and incident response platforms
- Authoritative understanding of data communications and information
systems hardware, software, and design principles, such as VPN,
segmentation, WAF, access control, CASB, etc
- Working knowledge of the principles, theories, techniques, and
methods of information system analysis and programming, particularly
secure coding practices
- Working knowledge of encryption technologies and standards, both
at-rest and in-flight
- Expert analytical skills, including the gathering and analyzing of
facts, formulating objective conclusions modified by subjective and
experience-based qualifiers when appropriate, defining problems, and
promoting solutions
- Ability to adapt, integrate, and modify existing programs or
vendor-supplied package programs for use with existing information systems
- Proficient in oral and written English
- Ability to be productive and maintain focus without direct supervision
Personal qualities
These personal qualities represent the shared characteristics of high
performers across Baker McKenzie, regardless of job level and location.
Know how
- Keeps across key developments in all relevant areas and
demonstrates the ability to develop substantive authority in
relation to the Firm's specialist fields
- Demonstrates the ability to identify the real issue, and to
anticipate requirements and potential consequences; distils a range
of possibilities by thinking in a considered, prudent manner
- Able to move through a variety of tasks requiring different
approaches, knowledge, and expertise, with agility of mind and
capacity for analysis and synthesis
Dedication
- Driven by a strong personal sense of integrity and upholds
exemplary quality standards
- Prepares thoroughly, takes responsibility, uses initiative and is
self reliant to ensure work progresses to the fullest extent possible
- Hardworking and diligent with a keen understanding of client demands
- Demonstrates composure when dealing with difficult situations
Personal Impact
- Creates a positive impression at all times; develops relationships
through collaboration and reciprocity
- Negotiates to achieve outcomes that are mutually satisfactory;
shows good judgement on when to stand strong and when to compromise
- Invests in, nurtures and builds a network of productive relationships
Humanity
- Respectful to others, regardless of their position, and earns the
respect of others by being transparent
- Has care and concern for others and a genuine interest in others
as people
- Treats delicate or confidential issues with grace and discretion.
Why Join Us?
Baker McKenzie is a truly global law firm. Founded in 1949, we advise
many of the world's most dynamic and successful business organisations
through our 13,200 people in 78 offices in 46 countries. Yet big does
not mean impersonal. We work hard to ensure that everyone knows their
role and has the support they need to perform it to the highest
standard. Our culture encourages this - how we work, think and behave
in a collaborative and fulfilling way.
In London you will be part of an 950 person office, which is also our
largest office globally. Originally opened in 1961, Baker McKenzie
London is well established in the UK as a leading international law
firm and is regularly involved in some of the country's most
high-profile legal matters. We can offer you the work, pride and
experience of being part of a leading law firm but in a local office
environment that is hardworking, yet friendly and supportive.
The strength of the firm and our culture is evidenced by a number of
recent awards, including:
- Acritas' Sharplegal Global Elite Brand Index, 2010- 2020 - ranked 1st
- The Sunday Times' Best Companies to Work For 2011, 12, 13, 14, 15,
17: currently ranked 66th
- The Times Top 100 Graduate Employers 2018: currently ranked 65th
- Thomson Reuters ranked the Firm No. 1 for cross-border deals for
the last 12 years. More than 70% of our deals are cross-border.
- For the 14th consecutive year, the Firm was ranked first for deals
with emerging market involvement, by both number of announced and
completed deals.
- Law360 ranked the Firm as the leading global law firm in its
annual survey.
- Identified as one of the best law firms for women by Working
Mother magazine, Law360 and Euromoney.
- Named one of Stonewall's Top Global Employers for the fourth
consecutive year in 2019.
- Recognised in 2019 as a top 10 employer in the UK for LGBT+
equality, and named as one of 10 Top Trans Employers, in Stonewall's
Top 100 Best Employers listing.
- Featuring in Business in the Community's Top 100 Employers for
Race listing.
- Ranking 5th in the 2019 Social Mobility Employer Index.
- Winning the Best International Firm (UK), Best International Firm
for Minority Women Lawyers, and Best International Firm for Women in
Business Law at the European Women in Business Law Awards 2019.
To Apply
Please click on the Apply icon to start the online application
process for this role. We will then be in touch with you once we have
reviewed your application. If you are unable to apply online, please
contact the Recruitment Team on either 020 7919 1000 or Recruitment.London@bakermckenzie.com
For more information about this position or to discuss any
adjustments you may require during the process please contact in
confidence, Vanessa Renforth, Recruitment Manager, on 020 70725731 or
Vanessa.Renforth@Bakermckenzie.com
Please review our Applicant Privacy Notice
here
NO AGENCIES PLEASE
Please note Baker McKenzie does not accept unsolicited CVs. Please click
here
for details of our Agency Policy and commitment to sourcing directly.
Our Commitment to Diversity & Inclusion
As the first truly global law firm, diversity and inclusion are
foundational to our culture and strategic vision. We are a Firm of
individuals from across the globe with different backgrounds, ideas,
and points of view who collegially work together to solve complex
problems and design practical solutions for our clients. Our multiple
perspectives come from many sources, including the diverse ethnicity,
culture, gender, nationality, age, sex, sexual orientation, gender
identity and expression, disability, parental status, education,
social background and life experience of our people.
Our global strategy is focused on our people, our culture, our
clients and the communities where we operate. In 2019 we enacted
ambitious new targets related to gender, racial and ethnic diversity
at the Firm. These targets are viewed as a floor, not a ceiling, to
advancing underrepresented groups, and they are backed by a variety of
strategic initiatives aimed at achieving our goals. Our strategic
vision is supported in London by six active employee led networks
which champion diversity, lead on a number of internal campaigns and
deliver a range of activity to celebrate differences in identity,
inclusion, and key dates throughout the year including: LGBT+ History
Month, International Women's Day, International Trans Day of
Visibility, Mental Health Awareness Week, Pride, Black History Month,
Social Mobility Week, International Day of Disabled Persons and many more!
Baker McKenzie London has been accredited by Disability Confident,
joining over 18,000 organisations that have signed up to help change
behaviours and cultures in businesses, networks and communities and
reap the benefits of inclusive recruitment practices.
Apply
Apply via email