Security Architect (12 month FTC)

About the role

At the heart of everything we do is our vision to change lives every day, and our mission to grow The National Lottery responsibly and champion its impact. We are Allwyn UK, part of the Allwyn Entertainment Group - a multi-national lottery operator with a market-leading presence across the USA (Michigan and Illinois) and Europe, including Czech Republic, Austria, Greece, Cyprus and Italy. While the main contribution of The National Lottery to society is through the funds to good causes, at Allwyn we put our purpose and values at the heart of everything we do. Join us as we embark on a once-in-a-lifetime, largescale transformation journey by creating a National Lottery that delivers more money to good causes. We'll talk a bit more about us further down the page, but for now - let's talk about the role and who we're looking for... A bit about the role Working within Allwyn's Enterprise Security team, you will be responsible for ensuring the design and delivery of secure solutions. This will be achieved by producing both high-level and low-level security designs for multiple high-security impact workstreams across a large programme of work, ensuring that designs are fit for purpose, as well as compliant with security policies, standards, and patterns. This role will also involve providing direct support to Technology Solution Architects, Project Managers, Business Analysts, and other key stakeholders, from production of Technical Design documents, through to secure delivery of solutions into production. What you'll be doing Provide specialist security support, working as part of a project team and the assigned Technology Solution Architects to ensure that security is designed into solutions early in the project lifecycle, whilst ensuring the drivers of cost, pace and quality are maintained. Support security triage of solutions to assist projects with identifying resource requirements considering availability, project timescales, and required skillset. Conduct security risk assessments of solutions using industry standard threat modelling techniques. Production of security designs for high-security impact workstreams across Allwyn, detailing security requirements based on the output of risk assessments and security patterns. Support the assessment and communication of any identified security risks and non-compliances to policies and standards to programme stakeholders and service owners. Undertake security design governance activities and take on board feedback to update design artefacts as required. Produce test plans and scopes for both functional security and penetration testing, whilst supporting both internal and external test resources, e.g. pen test teams. What experience we're looking for Must Have: Experience of providing security support to enterprise level projects. Knowledge and experience with the application of threat modelling techniques, e.g. STRIDE, DREAD, MITRE ATT&ck, etc Ability to apply a structured approach to the production of security requirements in a design, which exhibits both quality and compliance to standards. Knowledge and experience across a wide range of technologies across Infrastructure, Networks, Systems, Database, and Applications. Solid understanding across different security domains including identity & access management, cryptography, endpoint security, network security, application security, security logging and monitoring, and vulnerability management. Experience of working with external parties to produce security test plans and support testing, e.g. penetration testing. Excellent understanding of cloud security architecture and principles across IaaS, PaaS, and SaaS. Strong knowledge of industry standards such as CIS, ISO 27000, PCI-DSS, and NIST, and how they can be effectively used to positively influence designs and the delivery of secure solutions. Experience of accurately communicating risks to stakeholders in relation to security control gaps identified throughout all stages of a project and assist with arriving at an agreed risk position. Excellent written, presentational and communication skills. Nice to Have: Experience of working within a complex and sizeable Release Management model, within a technical delivery team Experience with Agile tools such as Confluence and Jira Experience in gambling/gaming platforms, including online casinos, sports betting, and/or iGaming. Alternatively, Exposure to regulated environments (e.g., finance, healthcare, gaming, or similar) preferred. Experience of applying different IT delivery methodologies, such as Agile, Scrum, Lean and Waterfall CISSP certification About us At Allwyn, we are dedicated to changing lives and growing the National Lottery responsibly, championing its positive impact on people, places, and the planet. Innovation - We pride ourselves on it! We're constantly looking for new ways to excite our customers, bringing new products to market to enjoy which is all supported by our responsible play values and m

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at Allwyn UK? Share your experience