Tech Our Way

Primark Technology is about to embark on a transformation journey to support business strategy which includes modernising our operating model as well as technology architecture. As a Security Architecture Practice Lead, you will have the mandate to drive the future of Security practices, technology and innovation in the portfolio area. You will also hold additional responsibility for developing and leading the Security Architecture Community of Practice (CoP), our informal network of security architects who collaborate regularly to share information, improve skills, and actively work on advancing the general knowledge of the domain.

This role is to join the Architecture Team and lead/actively progress the Technology Security Strategy within Primark. This position will work across software and hardware teams to identify component and system level technical risks, identify and evaluate critical failure points, determine technical security controls to mitigate risks, prioritise and schedule controls with product development timelines, and work with cross functional teams to implement features according to product roadmaps.

The practice lead will manage the development of the Strategic Security Architecture Roadmap, Work on projects to ensure they are delivered to the agreed architecture within Primark. A key responsibility will be to report costs to stakeholders and prepare/present cost-benefit analyses to support current and future development models.

Enterprise security architecture represents a cohesive design that helps the different pieces of a security infrastructure work well together.

Enterprise security architecture relies on various concepts for its implementation. These include security domains, trust levels and tiered networks, planning tools that look at the different areas or parts of the business processes, and security systems. Security engineers work from these principles to provide an enterprise security architecture that works, which makes sure that the resources of a business are working and performing well in the field to support a comprehensive security.

Duties & Responsibilities:

• Create and develop the Enterprise Security Strategy for Primark covering all areas of the technology stack (Software and Infrastructure)

• Drive the security roadmap based on the overall strategy, including estate rationalisation and decommissioning plans

• Work closely with the Chief Information Security Officer as well as the other architecture teams in the business domains and rest of the architecture community to advise on and validate architecture blueprints, evolutionary designs and assurance for the Security Area

• Develop target and evolutionary architecture following “Just Enough Architecture” approaches in accordance with architectural standards set by central guardrails team, and maintain the portfolio analysis and architecture

• Provides architectural guidance and leadership on best practices regarding security in software development, user interface design frameworks, high performance messaging solutions, integrations, tools, and technologies

• Works with the business and systems teams to identify the right architecture for implementing new solutions, products, and modules

• Contribute to the development and evolution of the application and infrastructure security reference architecture. Develop, implement, test, and maintain the security architecture

• Have overall responsibility for Security Sections in all Technology Designs and Blueprints

• Be responsible for identifying, assessing, and selecting the most appropriate technologies, architectural styles and patterns needed to deliver secure solutions within the construct of the guardrails

• Accountable for reporting in into central architecture functions as part of matrix organisation

• Support Product Managers and Product Owners to understand, communicate and manage dependencies, risks and activities across Products and Product Domains and negotiating resolution to conflict

• Provide thought leadership in Security strategy, development models, cost-optimisation, innovation and efficiency improvement; support our cloud strategy and API first implementation

• Develop long term vision of Security Architecture. Collaborates with Tech leadership in planning and implementing of technology roadmaps. Assists the team in researching solutions, solicits input from outside industry experts and recommends solutions to meet business requirements.

• Introduce new technologies into Primark where required and show value to Primark at both cost and functional levels.

Skills & Experience:

• 10+ years’ experience, preferably in a large scale global environment

• Team leadership experience

• A proven and demonstrable track record with an architectural focus

• Demonstrable knowledge of good cyber practice and industry trends

• Strong knowledge of switching, routing and wireless products; security testing and assurance; severity assessment and risk management; threat modelling

• Knowledge of security standards (OWASP, NIST, SANS, etc), hardening procedures and network security

• Expertise in Cloud computing security, including mobile App security

• Security audit, vulnerability assessment and packet analysis skills

• Security management certificates (CISSP, CSSLP, CISM, etc)

• Educated to degree level in a Computing or business discipline (or equivalent)

• Significant experience in the development and evolution of the application and infrastructure security reference architecture

• Experience of mission critical High Availability design and deployment in large transaction volume environments

• Experience of setting and managing project development with a wide range of vendors to support solutions in a multi-country environment

• Ability to present complex security topics to a wide range of internal audiences (engineers to executives)

• Deep understanding of domain driven design, event driven architecture and other such modern design practices

• Previous experience of supporting large scale technology projects is essential.

Why work with us?

At Primark, we know how hard everyone works to achieve our business goals. Having a competitive salary and annual bonus scheme is our way of acknowledging this. We'll also provide you with a progressive career path, because clear advancement is what we’re all about at Primark

Our flexible working benefit, Your Day Your Way, means you get to choose when to start and finish your workday. Choose to work remotely if you like, in a way that suits you but also helps us get the most out of your talents.

There’s a lively culture here, and it’s easy to get to know each other in a truly warm atmosphere.