Senior Security Architect

The Telecom’s section of Network Rail connects many of the Operational Technology components of the railway, including signalling and electrification assets, this role is focused on the security of the networks and many of the systems that use those network(s). Being able to identify and assess security risks, from a business and technological view point, is a key aspect of the role, this requires not just a deep understanding of the technologies and their vulnerabilities, but also how these technologies could be compromised by a threat actor. A broad knowledge base of computing, networking, OT/ICS, railways and electrical distribution will be used daily in areas of risk management/identification, conflict resolution, solution proposals, safety impact and design reviews. You will be expected to communicate security related information to, and gain information from, asset owners who have little knowledge of security, and influence projects to deliver secure assets and systems from a number of suppliers and internal teams. Main Responsibilities

• To act as the senior solutions architect for the telecoms security domain. Responsible for the design and documentation of security architectures within Telecoms Operations and for providing input and advice for related NR projects when required. This role will also manage the security architects within the security team.
• Management of the Telecoms Operations security architect team ensuring work packages, tasks, actions and deliverables are, managed, identified and deadlines met.
• Provide technical security design input for all Telecoms Operations projects. This will include high level and detailed level security designs.
• Review security architecture (legacy, current and planned) in line with the audit and review program to identify security weaknesses, opportunities and controls effectiveness.
• Support the security policy and compliance teams in identifying, developing, reviewing and maintaining security policy, standards and procedures aligned to both Telecoms Operations and NR.
• Work with the Telecoms Operations security accreditation and compliance teams to implement the correct security controls (logical and physical), and their alignment to the compliance audit plan.
• Provide key input in to the risk management process on identification of threats, vulnerabilities and appropriate controls, including detailed threat modelling.
• Review security audit findings and aid in the development and execution of remediation plans. This will include interfacing with 3rd party vendors, and providing guidance (to other departments) on security best practices.
• Identify opportunities for future security technologies that will aid in the delivery of Telecoms Operations products and services.
• Build strong working partnerships across the Company and leverage these relationships whereby all security related processes are aligned.
  
  Track record at managing information security teams in a highly diverse company.
• Be able to demonstrate a keen understanding of security as a business enabler.
• Subject matter expert in networking technologies having had extensive experience as a security technical architect aligned to IP/MPLS technologies.
• Experience with configuring and managing network devices such as routers, switches, firewalls, IPS/IDS, AAA services and malware detection as well as a strong understanding of security requirements around CCTV, Wifi and access control systems.
• Strong IT background and experience in managing IT related projects.
• Ability to drive change and improvement aligned to Telecoms Operations strategy.
• A strong influencer; confident, persuasive, determined.
• Must have excellent verbal, written, and presentation communication skills, strong interpersonal skills and the ability to work effectively across project teams in a diverse environment.
• You must be prepared to work in a complex, diverse, multicultural team.
• Ability to work to tight deadlines and to prioritise under pressure.
Desirable
• Use of modelling tools to produce process flow diagrams and architecture model diagrams (including data and protocol flow mapping)
• Good understanding of capacity planning and change control processes.
• Industry standard qualifications and good exposure to compliance frameworks including implementation and auditing techniques.
• Experience of threat modelling and mapping to risk processes.
  
  We're dedicated to building a diverse and inclusive organisation that reflects the passengers we serve. To achieve this, we're committed to becoming an open, diverse, and inclusive workplace, leveraging the skills and expertise of our talented workforce. Together, we strive to create a safe and accessible railway for everyone. Discover more about the importance of Diversity and Inclusion at Network Rail by clicking here.
Investing in our people is key to enhancing the safety, reliability, and efficiency of our railway system. If you're passionate about making a meaningful impact, then this opportunity is for you!, The railway has seen nearly 200 years of technology and innovation that has transformed how we provide services to passengers and freight customers. Technology is continuing to transform the railway industry. Imagine an exciting environment where Digital, Data, and Technology (DDaT) are not just buzzwords but the driving force behind every operation, every decision, and every solution. As part of the DDaT directorate, you have a unique opportunity to enable our customers and industry partner with modern and transformative technology. From the day-to-day IT operations that keeps a national railway running, to the extensive delivery programmes that our helping to reshape the railway – we are at the forefront of all of it. We operate with a talented and passionate workforce, fostering empowered individuals and teams who understand that technology is not just a tool – it's the catalyst for progress, especially in an ever-demanding industry where change is a constant. Get ready to embark on a journey where your skills will not just be utilised; they'll be honed and expanded. You're not just joining a team; you're becoming part of a collective force helping to build and operate a railway fit for the next 200 years!

About our people and the recruitment process - We're an inclusive employer of choice and we welcome applications from everyone! We encourage our colleagues to work flexibly, as we know traditional working patterns don't always fit. If you want to consider working flexibly, just let us know and we'll do our best to help and invest in your career with us, whilst you have a healthy work life balance. We're also a Disability Confident Leader employer and we'll try our best to adapt the process and offer a reasonable alternative to help support people with disabilities access, apply and interview for roles. We offer excellent benefits, including: Generous annual leave (28 days plus statutory days), with the option to buy/sell days. Defined benefit pension scheme. 75% subsidy on rail and underground season tickets. Up to 75% off leisure travel for you and your family (subject to terms and conditions) ️ Interest-free travel loan for train and car park season tickets. Discounts at stations with your Network Rail pass. Flexible/hybrid working arrangements. ️ Volunteer leave to make a positive impact. Healthcare Scheme, GymPass discounts, Cycle to work plus more. We offer generous maternity, paternity, and adoption leave to support our employees during significant life moments