Security Architect

The Security Architecture Lead closely supports the Head of Security Architecture and Engineering to deliver a foundational capability responsible for implementing robust information security architecture solutions for deployment within and consumption by the various business entities of JD Sports.

The role requires close collaborative engagement with professionals at all levels both internally to JD Sports and externally to partners, systems integrators, and official bodies. The job holder will, provide advice and support while creating consumable patterns and templates for implementing information security controls.

·       Job Title – Security Architect

·       Location – BL9 8RR 

·       Working rota – Monday Friday

·       Working hours – 40

What You'll Be Doing

As a Security Architect, you'll be doing the following: 

• Provide security advice to and participate in business technology development and infrastructure initiatives to help ensure that security is considered from the outset.
• Adopt a risk-based approach to embedding security into the organisation’s technology architectures providing patterns and templates that can help harden the organisations operating models.
• Validate security configurations and engage with internal audit to provide security architecture expertise.
• Perform threat modelling of JD Sports’ technology and applications in the context of the organisation’s risk appetite, the threat landscape and the classification of the data being processed.
• Work closely with those parties tasked with building and maintaining the organisations asset inventory in order to identify those assets (systems, infrastructure, and applications) that need to be considered for integration with the applicable JD Sports Security Operation Centre SOC.

What We're Looking For:

• Proven expertise in Information Security Architecture best practices,
• Comprehensive knowledge of information security controls and the primary control frameworks currently recognised as examples of best practice (CIS, NIST, ISO etc.),
• Understanding of the security implications of internationally recognised standards (PCI DSS, SOX and GDPR),
• Awareness of the predominant operating systems within the retail sector, including but not limited to Windows, Linux, and Unix,
• Awareness of Database technologies (SQL, Oracle, DB2, Mongo) and associated threats,
• Awareness of security controls in widely used technologies, e.g., MS Office,

The Company:

The JD Group is a leading omnichannel retailer of Sports Fashion, Street & Premium Fashion, Outdoors and Gyms with over 60,000 colleagues over 3,400 stores across several retail fascia's in over 30 markets around the world.

We are an equal opportunities employer who embraces and values differences. We recognise the importance of an inclusive workplace culture in which everyone can thrive irrespective of their background or identity.

To be a part of this successful and continuously growing company, you will have the desire to ingrain our strategic goals of being a people first, a digital leader and customer focused organisation which provides operational excellence and is continuous with identifying new areas of growth into our day-to-day.

We know our employees work tirelessly to make JD Sports the success it is today and in turn, we offer them some amazing benefits:

• Incremental Holiday Allowance
• Staff Discount on qualifying purchases across Group retail stores and online
• Exclusive Colleague Bike Discount scheme
• Discounted Gym membership
• Personal development opportunities to learn and develop at work
• Access to Apprenticeships and accredited qualifications

Interested?

If you are interested in this position, then press the Apply Now button.

Due to the high volumes of applications our opportunities attract, it takes time to review them all. If you don't hear back within two weeks of your application, please consider your application to have been unsuccessful on this occasion

Applications that meet the skills criteria will be contacted for a 1st stage meeting with the talent team. Shortlisted candidates will then be invited to interview with the hiring manager.

Thank you again for your time.