National Grid Enterprise Security IT/OT Architect in Waltham, Massachusetts

_About the Position:_



You will work closely with the Electric & Gas transmission, Distribution and Generation businesses specifically around the IT/OT (Information Technology/Operational Technology) area. The security architect will be responsible for defining the security of the end-to-end security architecture looking at the people, process and technology required for successful delivery and risk mitigation. The role will act as the security design authority for all matters of IT/OT providing governance, oversight and direction from a cyber security risk perspective, interpreting Enterprise Security Architecture, establishing or contributing to the relevant reusable solution artifacts and ensuring hand-off to operational management.

The Security Architect must be able to interpret high level business requirements and communicate them to highly technical security engineers; conversely they must also be able to articulate highly technical issues to a non-technical business audience.

The Security Architect is to produce reference architectures and to ensure that the delivered architecture is fit for purpose and effective when transitioned in to service.

_Position Responsibilities (including but not limited to):_

  • Develop and manage an IT/OT security architecture that addresses business needs holistically – people, process & technology

  • Develop security architectural patterns of the individual components of the end solution (Contextual, Conceptual, Logical, Physical, Component and Operational)

  • Lead development of security architectures for IT/OT, ensuring consistency with specified requirements agreed with both external and internal customers.

  • Ensure compliance with enterprise security architecture, and grant dispensations that are in keeping with the Group strategy and organization objectives

  • Guide various business and IS teams as needed toward a common architecture and engage stakeholders as advocates of the vision

  • Ensure that design decisions align with the business vision and maintain security architectural flexibility

  • Accountable for ensuring that key risks and issues are identified, addressed and resolved in a manner that satisfies the business.

  • Enhancement of security policies in alignment with changing IT OT landscape

  • Coordination of technical design/review activities with various segment and corporate groups and security assurance activities

  • Engaging risk & compliance, Enterprise Architecture and Operational Security (SOC) at appropriate stages in the project

  • Researching and recommendation/implementation of changes to procedures and systems to enhance security aligned with corporate policies

*Job dimensions*:

  • This role has a significant impact on defining security requirements and ensuring that the programme meets these requirements, or that exceptions and issues are noted and remediated as appropriate.

  • Indirect support (influence) of budget across the entire IS organisation and specific set of Business Systems (e.g. Customer Systems, Corporate Systems, etc. specific to project/s design.

  • No. of direct reports – None.

  • Budget - None

_Knowledge & Experience Required:_

  • Educated to degree level (or equivalent combination of education and experience).

  • Information Security Qualifications such as CISSP, SABSA and ISSAP preferred.

  • Other Qualifications such as SANs, CCNA, CCNP preferred.

  • Experience of working as an Engineer working closely with business stakeholders and Enterprise Architects.

  • Knowledge of SCADA protocols like Modbus, IEC 60870-5-101 or 104, IEC 61850 and DNP3 and other major SCADA protocols.

  • Experience with the use of NIST, NERC-CIP v3/v5 standards and developing security architectural patterns.

  • Working experience of applying security architecture within a large multi-national enterprise.

  • Strong knowledge and experience designing and implementing technical security solutions such as IDS/IPS, secure remote access, firewalls, encryption, secure protocols, IT network security (secure LAN, WAN, vlan technology, MPLS, and secure network zoning and restricted network design) and database, operating system and application security, data protection, data loss prevention and identity management solutions.

  • Experience working with a diverse team of people comprised of internal and external resources

  • Demonstrated strength in relationship building with success influencing leaders at all levels

  • Strong analytical and problem solving skills, negotiation, interaction management, and presentation skills are required with the ability to create consensus and understanding around security architecture

  • Ability to multi-task, effectively structure work to handle multiple demands and competing activities

  • Experience of designing and managing security controls within service providers and the cloud.

  • Strong communication, leadership, influencing, and partnering skills to collaborate with, and influence business stakeholders to explore best in class, innovative solutions to business challenges

  • Prepared to challenge business colleagues and have the “difficult conversations” where needed in the interests of National Grid.

  • Previous experience of IT/OT technologies and utility industry experience preferred with an awareness of utility specific security threats

  • Demonstrated experience in applying emerging technologies to develop secure solutions across diverse network/communication protocols.

  • Must demonstrate strong ethics, influence and negotiation, leadership, interpersonal skills, communication, the ability to effectively manage stress and engage in continuous learning by staying current with relevant technology and innovation.

  • Knowledge with Enterprise Architecture (TOGAF) and Security Architecture frameworks (0-ESA, SABSA) Certifications preferred.

  • Experience of developing security reference architectures and patterns

  • Appreciation of wider information security related principles, likely to be gained in industry or from a consultancy background.

  • Prepared to challenge

the program and IS colleagues and have the “difficult conversations” where

needed in the interests of National Grid

This position is one of National Grid’s career path roles which provide for promotional opportunities within and across salary bands as you develop and evolve in the position by gaining experience, expertise and acquiring and applying technical skills.

/ /

/National Grid is an equal opportunity employer that values a broad diversity of talent, knowledge, experience and expertise. We foster a culture of inclusion that drives employee engagement to deliver superior performance to the communities we serve. National Grid is proud to be an affirmative action employer. We encourage minorities, women, individuals with disabilities and protected veterans to join the National Grid team./


Job: *IS DIgital Security & Risk

Organization: *IS Digital Security & Risk

Title: Enterprise Security IT/OT Architect

Location: MA-Waltham

Requisition ID: 20181290