Employer: Sign In or Register


Director, US Security Architecture

National Grid

Waltham, MA
Job Code:
  • Mechanical Engineering - Applied Mechanics
  • Operations
  • Mechanical Engineering - Design
  • Mechanical Engineering - Power
  • Mechanical Engineering - Safety
  • Mechanical Engineering - Environmental / Solar / Sound
Apply on the Company Site
  • Save Ad
  • Email Friend
  • Print
  • Research Salary
IT & Engineering

Job Details

Description: Description About the position: The role of Director, US Security Architecture will act as the senior security design authority for National Grid US, ensuring that a Security Architecture is formally approved and adopted to ensure that the complexity of our environments can be managed securely and successfully, delivering to the business values, goals, and objectives.
The role will provide a focal point for the creation and re-use of value by leading security architectural change in our business and industrial control system environments, establishing vision and planning for future state security architectures, influencing and directing DR&S, National Grid and Partner leaderships accordingly.
The role will define and own the creation and operation of the National Grid Security Architecture function establishing a formal methodology and framework for risk driven information security and information assurance architectures, supporting critical business initiatives, driving a philosophy of resilience and recovery.
The role will lead and manage the production of SABSA compatible enterprise security architecture and associated patterns, ensuring all National Grid security services are appropriately documented within IS tools, such as Troux and System Architect, and available for re-use by architects and others.

The role will provide direction to DR&S functions and business areas through the production of enterprise reference patterns, an Information Security Policy Architecture, and the leadership of, or representation at, appropriate governance boards.

Job responsibilities including but not limited to:

Definition, ownership and maintenance of the National Grid Security Architecture. Production and maintenance of artefacts that inform and direct Security Service Architecture activities. To capture and formulate a register of exceptions to the holistic delivery of the agreed Security Architecture and articulate these as requirements for inclusion in a 3-5 year rolling Cyber Security development roadmap. Senior level stakeholder management. Ability to take a 'big picture' strategic view as well as being able to work at a detailed level across a broad range of technologies and approaches Capability to represent security architecture with senior IT and business managers and stakeholders Provision and maintenance of a formal methodology and framework for risk driven information security and information assurance architectures, security design and risk assurance encompassing people, process and technology. Influencing senior budget holders to acceptance, approval and adoption of strategic security goals and associated solution frameworks. Accountable for identifying options that minimize overheads to budgetary challenges. Ensure that services and solutions provided conform to the National Grid Security Architecture. Governance and maintenance of the enterprise security architecture through its inception, implementation and in life risk management determining value and adjusting the architecture according to identified threats and weaknesses.
Qualifications Qualifications & Experience: Educated to degree level (or equivalent combination of education and experience). Information Security Qualifications such as CISSP, CSSLP, CISM, SABSA Practitioner preferred. Security Qualifications such as SANs, CCNA, CCNP. Position requires a disciplined thinker capable of developing and maintaining an architectural framework within which complexity is broken down so it can be clearly articulated and managed successfully. The individual will need to lead and influence senior leadership, working across organisational boundaries to ensure that appropriate and appropriate security architecture is adopted and supported throughout the business. Role requires the individual to be business and service focused, understanding the inter-relationship between technical and procedural solutions to support the long term needs of the business, taking account of operational / long term costs and influencing support for agreed security strategies. Must have leadership and influencing skills at a senior level, capable of communicating strategically, achieving stated aims and goals. Good organisational skills, time management, attention to detail and accuracy over multiple simultaneous activities to derive a holistic security architecture. Must be pro-active, adaptable and results driven, whilst capable of interpreting and delivering on strategies and direction provided. Must be a team player who must be able to manage directly and through influence / matrix. Be able to work under pressure, manage multiple activities, using their own initiative and motivation to meet deadlines and set priorities without close supervision. Must have the ability to effectively articulate complex technical requirements and provide thought leadership to senior management. Drawing on a broad range of skills and experience; creating innovative insights, adapting methods and practices to fit team and cultural needs. Strong background in enterprise and / or security architecture frameworks such as Zachman/E2AF/TOGAF/SABSA and their operation, including domain based security models, secure development lifecycle and application security. Strong knowledge and experience developing and implementing security service architectures and their operation across partner eco-systems. Experience of establishing security architecture control models that inform each stage of the software development lifecycle process. Experience of designing and managing security controls within service providers and the cloud. Experience of developing Information Security Policy Architecture models and their application in complex environments. Strong communication, leadership and partnering skills. Able to demonstrate a high degree of credibility and influence senior stakeholders within the Organisation. Proven track record of successfully delivering business requirements to time and budget constraints. Able to operate as a highly independent worker and as part of a strong team/collaborative approach. Prior Critical National Infrastructure (CNI) and utility industry experience preferred. National Grid is an equal opportunity employer that values a broad diversity of talent, knowledge, experience and expertise. We foster a culture of inclusion that drives employee engagement to deliver superior performance to the communities we serve. National Grid is proud to be an affirmative action employer, committed to providing equal opportunity to employees and applicants for employment without regard to race, color, religion, creed, national origin, ancestry, alienage or citizenship status, gender, sexual orientation, gender identity or expression, age, physical and mental disability, marital status, veteran status, predisposing genetic characteristics, or any other factor protected from discrimination under municipal, state, or federal law. We encourage all interested, qualified persons to join the National Grid team.
Job : IS DIgital Security & Risk Primary Location : MA-Waltham Organisation : IS Digital Security & Risk Schedule : Full-time Job Posting : Aug 8, 2017, 3:56:55 PM Unposting Date : Ongoing

Apply on the Company Site
Powered By

Featured Employers[ View All ]