Technical Security Architect

Technical Security Architect | Home Based with travel to York | Full Time | Permanent Salary Dependent on Experience

We are one of the UK's leading independent hospital groups and the largest in terms of revenue. From our 39 hospitals and 33 clinics, medical centres and consulting rooms across England, Wales, and Scotland, we provide diagnostics, inpatient, day case and outpatient care in areas including orthopaedics, gynaecology, cardiology, neurology, oncology, and general surgery. We also operate a network of private GPs and provide occupational health services to over 700 corporate clients.

As a Technical Security Architect, you will be an integral member of a small IT Security team responsible for the day-to-day operation of Spire's security infrastructure, monitoring for security events, and responding accordingly. You will help design, implement, monitor and support our IT security systems, often working on complex issues. You will work on a mix of BAU and project-based work including multiple Microsoft M365 and Azure related security projects, general automation projects and ensuring new applications are deployed securely based on guardrails and security principles.

Key Responsibilities

• Managing Architect security improvement solutions and technically leading their implementation
• Working closely with the other IT architecture teams to develop secure solutions based on Spire's guiding security principles
• Gaining and maintaining a working knowledge of the Company's Portfolio of Security Products and Services, promoting this within the business and encouraging best fit solutions
• Continually reviewing and enhancing existing knowledge of the security aspects of common product sets and technologies
• Providing 'soft' consultancy skills and a proactive approach to other teams within IT by providing mentoring support and guidance to help grow security skills and capabilities
• Working with the wider information security team to design and implement critical security controls aligned to regulatory frameworks such as (ISO 27001, Cyber Essentials Plus)
• Working as the lead to administer security policies to Spire's Microsoft 365 environment, especially regarding SharePoint, Exchange and Intune MDM
• Working with the IT Security Team to administer security policies to our Endpoints, especially regarding MS Defender, EDR, Purview etc

Key Requirements

• ITIL qualified
• Recognised IT or Information Security qualifications including CISSP, CISM, Cisco, SANS, ISO27001, CCSP, CISA, or SSCP are desirable
• Several years IT experience
• Experience in developing and implementing Enterprise Security Strategy
• Knowledge of designing and implementing security solutions through to operation, experience of multi-supplier/multi-platform environments
• Strong experience in a similar IT Security role in a medium/large company involving a broad range of tech including some of the following:
• Strong knowledge & understanding of security principles surrounding SIEM, Antivirus, DLP, Firewalls, Cloud security (Azure), IDAM (PAM on-prem/cloud), EDR, Scanning/vulnerability tools, etc

Benefits:

We offer employed colleagues a competitive salary as well as a comprehensive benefits package which includes but is not limited to:

• 35 days annual leave inclusive of bank holidays
• Employer and employee contributory pension with flexible retirement options
• 'Spire for you' reward platform - discount and cashback for over 1000 retailers
• Free wellness screening
• Private medical insurance
• Life assurance

Spire Healthcare is committed to creating an environment that will attract, retain and motivate its people. We are an equal opportunities employer, committed to the health and wellbeing of all our colleagues and consultants.

For us, it's more than just treating patients; it's about looking after people.