Security Architect – Solution Design
Assist clients in developing overall cyber security architecture and blue prints based on IT environment and overall business, technology and security objectives at the strategic, tactical and operational levels, with the ability to define the structures of solutions and architectures, will be focused on delivering a business outcome and can include systems, applications and process components. Like the work of a building architect, much of the Architect's work is focused on the front end of the solution life cycle: listening to clients, understanding their business requirements, and systematically forming incrementally more detailed definitions of the structures of information technology solution architecture.
Engage clients and work to understand their business needs, works in levels of abstraction, applies industry knowledge, and leverages appropriate business elements and information technology to address those needs. In addition a dvise clients in understanding the desired future state cyber security framework and work collaboratively with them to develop a roadmap to achieve this goal and become a trusted advisor.
This includes working as a team member with client personnel to identify functional and non-functional requirements and subsequently working on the identification, justification and design of the client's solution. Act as l ead Security Architect and guide project teams in developing & executing on actionable roadmaps to deliver on defined architectures & blue prints .
They support the development of colleagues and pro-actively share their experience, reusable reference material and assets. They act as part of a team at all levels within IBM, taking responsibility for helping to expand the capabilities of our rapidly growing security organisation. Thereby, enabling business growth beyond their immediate work on individual security opportunities.
Responsible for managing all the activities related to delivering a security led solution for the duration of their engagement, including but not limited to:
- Leadership - managing all aspects of the solution, the technical team, managing client requirements and linking those requirements to IBM's solution
- Create architectural designs that translate in to solution requirements
- Creating & delivering the solution element of security proposals, this could be administrative, operational, technical or physical
- Cost solutioning - ensure all elements of cost are accurately reflected in the solution, and relevant backup documentation is available
- Assisting Sales with responding to requests for proposals and plan the strategy for a given client
- Defining and creating a solution that meets the client's requirements, is deliverable and commercially viable
- Responsible for ensuring the solution links to the cost case - proposal and contract
- Maintaining communications with the client through the solutioning process to ensure that dates for completion and any issues arising that will impact the delivery date are understood and agreed with the client
- Ensure the Security Business Unit solutioning process aligns with the other IBM Business Units Bid Plans and timeframes
- Working with IBM and its partners to understand how their technologies work, and what value they will bring to our solutions for our clients
- Working with internal service organisations to understand how a Managed Security Service Provider works and what they can and cannot deliver.
- Presenting IBM's security capabilities in response documents
- Undertake face to face customer meetings as required
- Managing non-standard elements of solutions
- Working with system designers and/or Sales based on the available information to shape the solution scope
- Co-ordinating with other security teams and personnel
- Understand inside and outside actors that threaten client's environments
- Understanding the Risk Posture of the client, including their drivers and apatite
- Understanding the legal, regulatory and compliance drivers for the client
- Understanding the functional and non-functional requirements of the system
Technical Requirements and Solution
- Work with the client to clarify and refine the technical requirements and where appropriate recommend technical scope
- Maintain a list of key risks and mitigations, assumptions, issues and dependencies in a formal RAID log
- Maintain Responsible, Accountable, Consulted and Informed matrix (RACI)
- Maintain some level of change log (formal process for large solutions, more relaxed if a small solution) so that there is a level of audit trail of activities that drove the final solution
- Manage engagement and input from technical teams for the elements of the overall solution
- Ensure all tasks are assigned and understood within the technical team.
- Reports to the Security Solution Design Manager
Base Case & Financial Solution
- Works with the Technical Solution Manager to ensures all cost elements are reflected in Solution Definition Manager (including contingency, amortisation, markdown etc)
- Provides support to the Pricer in generating a price from the cost model
- As appropriate, translate solution into cost elements required by Pricer: baseline plus change ARC/RRC(Additional Resource Charge/Reduced Resource Charge)
- Ensure re-costing occurs when new information affects technical solution (for example, new service levels); make sure changes are documented and traceable
- Ensure pricing output and the base case, continue to match technical solution.
- Ensure Security Business Unit commercial requirements are incorporated in the cost case.
Risk Assessment & Reviews
- The Solution Architect is responsible for minimizing the business risk and negative brand exposure by identifying mitigations for issues, gaps and items that are identified as high risk
- Present technical solution during reviews
- Manage technical issues & dependencies within the solution.
- Co-ordinate, manage and gather evidence from required approval gateway checkpoints.
As appropriate to the size of the solution:
- Manage development of security inputs to proposals, briefings, and presentations
- Ensure proposals continue to represent the solution requirements
- Lead the presentation of the IBM Security technical solution to the client
- Gain client's confidence in IBM's technical & delivery capability
- Produces security architecture design & topology artefacts
- Produces a list of required security products and/or services
- Produces a concept of operations
Contracts & Negotiations
- Manage development of technical inputs to contracts (Customer and Sub-Contractors) and ensure contract continues to accurately represent the technical solution.
- Participate in, and actively contribute to, the Project Definition Workshop (PDW) to handover the solution to the Project Manager, to the satisfaction of the Project Manager's ability to understand the proposal.
- Provide all available documentation and evidences to the Project Manager during the PDW
- Document and store as audit evidence PM confirmation that handover is complete.
Required Technical and Professional Expertise
• A recognised certification in security appropriate to the role for example: CISSP, CISMP, CompTIA Security +, ITIL qualification etc.(these are desired not mandatory).
• At least 5 years experience within a security architecting role
Preferred Tech and Prof Experience
The following capabilities and experiences would be advantages:
• Pre-sales/bid preparation experience
• Experience of IT security architecture design and implementation
• Strong verbal communication, presentation and written skills
• Presentation skills for C-Level clients
• Track record of delivering against challenging time frames either alone or as part of a team
IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
Meet Some of IBM's Employees
Leadership Development Solutions Leader
Peter works with a variety of teams within IBM to increase organizational clarity, equip leaders to serve well, and provide opportunities for employees to continually grow and expand their skills.
Back to top