Network Security Architect - EN03 Engineer E3, Nationwide House (Swindon) / 1 Threadneedle Street (London)

Description

You will provide direction and solutions to product owners and delivery teams working on a variety solutions for both colleagues and members. This will include developing solution intents and designs, threat models and architectural guardrails.

This opportunity is within the Security Architecture team, and part of Security and Resilience. The team have a challenging mandate to architect, engineer and assure the delivery and consumption of effective and pragmatic security controls as an enabler for innovative solutions across our hybrid on-premises and cloud IT environments. We want your expertise within Nationwide to cement our reputation for always being there when it matters, with services that our members can trust.

We are happy to consider flexible working approaches to help you perform at your best.

At Nationwide we offer hybrid working wherever possible. More rewarding relationships are supported through our hybrid approach, bringing colleagues together across our UK wide estate, whilst also supporting generous access to home working. We value our time in the office to solve problems, to learn, and to feel connected.

For this job you'll spend at least two days per week, or if part time you'll spend 40% of your working time, based at either our Swindon or London office. If your application is successful, your hiring manager will provide further details on how this works. You can also find out more about our approach to hybrid working here.

If we receive a high volume of relevant applications, we may close the advert earlier than the advertised date, so please apply as soon as you can.

What you’ll be doing

A Network Security Architect within Nationwide offers a genuinely ever-changing day-to-day experience. Working closely with technology delivery teams you will help to identify and document the key actors and architectural threats to Nationwide; where security policy, standards and regulatory requirements apply, and communicate in simple and actionable terms what compliance means.

In conjunction with Security and Resilience colleagues and those in the Networking teams you will identify solutions that deliver key security controls and mitigate threats within risk appetite and ensure that solution delivery is compliant with security policy, standards, and regulatory requirements.

You will be part of a team managing the technology controls framework ensuring a roadmap for maturity, coverage and effectiveness is maintained. Coherent, repeatable, and practically consumable advice is critical to our efficiency and success, and you will be part of a team responsible for the creation of knowledge artefacts that provide practical thought leadership to our architecture and engineering colleagues.

The members of the team fulfil a number of different roles and you will have the opportunity to use your existing knowledge and develop your skills and expertise; working with teams building critical member facing applications, back-end systems and future initiatives, producing architecture patterns and developing and improving the practices and services offered by the team.

About you

You will be able to show significant prior experience or aptitude in some of the following areas:

Identity and Access, AAA, TACACS, RADIUS, NAC, MFA, SAML, PAM, NTLM, Kerberos, IDP
IPv4 and IPv6, TCP, UDP, IMCP, BGP, OSPF, MPLS, IPSEC, HTTPS, SSH, TLS, DNS, VLAN, VXLAN, ACI, CNF, CWAN, QoS, Wireless Security
Automation, API, SDN, IaaC, Ansible, Terraform, CI/CD Security, Bash, PowerShell
Zero Trust, micro segmentation, VPN, MACSEC, IPS/IDS, NGFW, WAF, DLP, Antimalware
Cloud Security, DNS Security, SaaS, CDN, SSE, SASE, DDoS mitigation, Global Load Balancing, CASB

On a more general level you will have:

A general appreciation of enterprise-wide security threats, controls and principles across the above areas.
Experience or aptitude for threat evaluation and documenting enterprise-level architectural solutions that mitigate, or offer a risk aligned roadmap to mitigation. Producing artefacts such as solution intents, security designs, patterns and options papers.
An appreciation of working with security policy, standards, and security audit findings, and producing them into clear and practical solutions.
Experience working with and maintaining a security controls coverage and maturity framework (such as NIST CSF, ISO27001, CSA-CCF, MITRE) and enterprise policies and standards.
Good knowledge of PCI-DSS, GDPR and other financial regulatory requirements.
Professional qualifications in security and relevant technologies and practices, with a passion for continual improvement g. CISSP, ISSAP.

Our customer first behaviours put customers and members at the heart of how we work together. They are the set of behaviours that every colleague needs to display, in every role:

Feel what customers feel - We step into our customers’ shoes, using their feedback and insights to empathise with them and to understand their needs, so that every decision we make starts and finishes with our customers in mind
Say it straight - We are brave in speaking out and saying what we think – we’re honest and direct with good intent, openly sharing diverse perspectives to reach the best conclusions and using language everyone can understand
Push for better - We don’t settle for mediocrity, we challenge the status quo, taking responsibility for continuous improvement and personal development
Get it done - We prioritise what will have the greatest impact, we are decisive, and we take accountability for delivering brilliant customer outcomes.

You can strengthen your application by showing how our customer first behaviours resonate with you, and where you may have already demonstrated these.

The extras you’ll get

There are all sorts of employee benefits available at Nationwide, including:

A personal pension – if you put in 7% of your salary, we’ll top up by a further 16%
Up to 2 days of paid volunteering a year
Life assurance worth 8x your salary
A great selection of additional benefits through our salary sacrifice scheme
Wellhub – Access to a range of free and paid options for health and wellness
Access to an annual performance related bonus
Access to training to help you develop and progress your career
25 days holiday, pro rata

Banking – but fairer, more rewarding, and for the good of society

We forge our own path at Nationwide.

As a mutual, we’re owned by our members - those customers who bank, save or have a mortgage with us. We challenge the financial sector status quo. We don’t see customers as the engine of our own profit. We share our profits with them and put their needs first. Always there when they need us. Supporting them and their lives.

If you’re inspired by fairer finances, passionate about making a meaningful impact, and truly care about our customers, you’re one of us.

At Nationwide, you are challenged to grow and rewarded for doing so. Valued. Recognised. Inspired to be your best. As a community we want our working lives to count. As a team, we celebrate what we achieve. As a standard-setter, we work for the good of customers, communities, and broader society.

We are Purpose-driven. Uncompromisingly Customer. Unstoppably Nationwide.