Description

ISP Regional Group Cyber Security Architect

Purpose of Role

As a Cybersecurity Architect you’ll be reporting to our Group Head of Technology. You will play a pivotal role in designing and implementing robust cybersecurity solutions that safeguard our organisation's sensitive information and ensure the confidentiality, integrity, and availability of our systems and data. You will collaborate closely with cross-functional teams to develop comprehensive security strategies, evaluate existing security measures, and provide expert guidance on mitigating risks and vulnerabilities.

ISP Principles

Begin with our children and students. Our children and students are at the heart of what we do. Simply, their success is our success. Wellbeing and safety are both essential for learners and learning. Therefore, we are consistent in identifying potential safeguarding issues and acting and following up on all concerns appropriately.

Treat everyone with care and respect. We look after one another, embrace similarities and differences and promote the well-being of self and others.

Operate effectively. We focus relentlessly on the things that are most important and will make the most difference. We apply school policies and procedures and embody the shared ideas of our community.

Are financially responsible. We make financial choices carefully based on the needs of the children, students and our schools.

Learn continuously. Getting better is what drives us. We positively engage with personal and professional development and school improvement.

Key Responsibilities

• Security Strategy: Develop and maintain the organization's cybersecurity strategy, aligning it with business objectives and industry best practices.
• Security Architecture: Design, implement, and oversee the architecture of security solutions, including firewalls, intrusion detection systems, encryption mechanisms, and access control mechanisms.
• Risk Assessment: Conduct regular risk assessments and vulnerability analyses to identify potential security threats and weaknesses in the infrastructure.
• Security Policies: Establish and enforce security policies, procedures, and standards to ensure compliance with regulatory requirements and industry standards.
• Security Awareness: Promote a culture of security awareness throughout the organization, providing training and guidance to staff and stakeholders.
• Incident Response: Develop and maintain an incident response plan, ensuring a swift and effective response to security incidents and breaches.
• Security Testing: Coordinate and perform security testing, including penetration testing and vulnerability assessments, and implement measures to address identified weaknesses.
• Compliance: Stay up to date with cybersecurity regulations and compliance requirements, ensuring that the organization remains compliant with relevant laws and standards.
• Emerging Threats: Stay informed about emerging cybersecurity threats and trends and recommend proactive measures to mitigate potential risks.
• Vendor Management: Evaluate and manage relationships with third-party security vendors and service providers.

Qualifications and Experience

• Bachelor’s degree in computer science, Information Technology, or a related field.
• Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) certification is a plus.
• Minimum of 5 years as a cyber security professional or related infrastructure role
• Experience working in Education is desirable
• Fluency in English is a must
• Proven experience as a Cybersecurity Architect or in a similar role.
• In-depth knowledge of cybersecurity principles, practices, and technologies.
• Strong understanding of networking protocols, security architectures, and security technologies.
• Proficiency in risk assessment methodologies and vulnerability management.
• Excellent communication and leadership skills, with the ability to collaborate effectively across teams.
• Strong analytical and problem-solving abilities.
• Strong network infrastructure skills, experienced with security mechanisms within network firewalls, routers, access points or switches.
• Experience with security tools and frameworks such as NIST / COBIT / CIS
• Familiarity with regulatory compliance standards (e.g., GDPR, HIPAA, ISO 27001).

ISP Leadership Competencies

You consistently demonstrate and role-model the ISP Leadership Competencies in all that you do.

1. Takes an active part in leading their school or region; is cooperative and a genuine team player, developing positive, supportive relationships with colleagues to solve problems and maximise opportunities.

1. Learning & Getting Better. Continually demonstrates personal commitment and passion for learning and getting better using evidence and feedback; supporting others in their continual learning, development and growth.

1. Innovation Leadership. Is good at creating an environment where ideas for learning initiatives and services are generated and is able to motivate and inspire others through the process of creation through to completion.

1. Outcome driven. Can be counted on to find solutions. Is consistently looking to exceed goals and is focused on KPIs.

1. Can deal with setbacks and challenges calmly and effectively.

1. Community Focus. Is committed to meeting and exceeding the needs and expectations of our students and their families.

1. Integrity & Ethical Management. Has the ability to work ethically and with integrity; helps others feel valued; upholds and models the ISP Vision, Purpose and Principles.

ISP Commitment to Safeguarding Principles

ISP is committed to safeguarding and promoting the welfare of children and young people and expects all staff and volunteers to share this commitment. All post holders are subject to appropriate vetting procedures and satisfactory Criminal Background Checks or equivalent covering the previous 10 years’ employment history.