Penta Consulting are a technology resource solutions provider to leading OEMs across the EMEA region.
We are currently supporting our leading client in Dublin, Ireland, in the search for a Security Architect.
Please note this project will be 2 years in duration, offered as two 12 month contracts. Some travel to Dublin is required.
Role Overview:
* Lead security architecture design and reviews throughout the lifecycle of complex ICT projects across diverse technologies and platforms with a focus on the Transport sector
* Define security requirements and implement security-by-design principles
* Develop and maintain security standards, policies, and procedures
* Design security controls and create security plans aligned with the Authority's digital and cloud strategy
* Produce and maintain IT design policies covering connectivity, capacity, interfaces, security, resilience, recovery, and access
* Submit and manage Requests for Security Change (RFCs); participate in TAB and CAB processes
* Deliver project security review reports, risk assessments, and formal security approval for go-live
* Communicate security policies and mentor team members
Experience
* Minimum 5+ years as a senior ICT Security Architect delivering and operating security solutions for large-scale ICT projects ideally within the Transport sector
* Proven experience in:
o Security Governance, Risk & Compliance
o Security Architecture & Strategy
o Security Operations & Monitoring
o Supplier/Vendor Security Management
o Data Security & Privacy (GDPR, Data Protection)
* Hands-on experience with cloud security (AWS/Azure – IaaS, SaaS, PaaS)
* Experience with AI/ML-based tooling
* Strong background in multi-cloud environments
* Experience in IoT security architecture within a varied Transport sector landscape
* Deep knowledge of security frameworks (ISO/IEC 270xx, 3100x, NIST, CSF2.0, PCI DSS, CIS Controls, CSA Cloud Security)
* Expertise in architecture, operations, monitoring, IoT security, vulnerability management, incident response
* Proficiency in cloud security and architecture (AWS, Azure, GCP)
* Competence with AI-driven tools
* Strong understanding of data protection and privacy (GDPR, Privacy by Design)
* Technical skills: networks, firewalls, OS, databases, middleware, end-user devices, cryptography, IAM
* Advanced Microsoft Office skills (Word, Excel, PowerPoint, CoPilot)