Description

Role Purpose

The Security Architect, Cloud will provide technical leadership, design, implementation, integration, and oversight of the Firm’s cloud-based security solutions and systems, with an emphasis on securely facilitating business operations.

The Security Architect, Cloud will utilize an extensive IT background, advanced security knowledge, an appreciation for compliance and risk management principles, and excellent communication skills to develop and promote effective and sustainable solutions; educate constituents and champion such solutions directly and in concert with Firm leadership.

The Security Architect, Cloud will protect the confidentiality, integrity, availability, and recoverability of information, systems and facilities in compliance with organizational policies and standards; and seek continual improvement and growth relative to a cloud capability maturity model (CMM).

Main Responsibilities

  • Provide advanced technical support of key cloud security systems and technologies, such as CASB, IAM/MFA/PIM, and AWS/Microsoft/Google, including development and maintenance of supporting tools, scripts, dashboards, and metrics
  • Architect, implement, and support event management and logging solutions identified as necessary for the protection of Firm assets
  • Integrate and connect disparate systems to achieve synergistic incident detection, reporting, and response outcomes
  • Seek new opportunities for the application of SOAR technologies, principles, and concepts across technical teams, processes, and systems
  • Provide input, create documentation, and review information security policies and procedures
  • Utilize common security toolsets (SIEM, IAM MDM, CASB, etc) to identify issues and analyze compliance with existing policies and procedures
  • Monitor control systems to ensure that appropriate information access levels and security clearances are maintained
  • Stay abreast of the threat, capability, and technology landscape
  • Participate in the definition of the organization’s IT disaster recovery and continuity plans for cloud security systems
  • Serve as an internal information security consultant and mentor regarding cloud security event concepts to the Security Team and other constituents by monitoring information security technologies and trends, providing expert guidance, and assisting with knowledge development/mentoring activities
  • Serve as a 3rd-level support resource for the purposes of ticket resolution and change management activities
  • Analyze, recommend, and implement controls as determined necessary by management
  • Support Firm standard security applications, utilities, and processes. Utilize remote control and remote access software in the performance of duties
  • Critically analyze proposed and existing solutions for adherence to the Firm's design requirements, including requirements resulting from the ISMS Policy, client contracts, the regulatory environment, and professional obligations
  • Provide expert counsel to constituents regarding their information security obligations and facilitate an acceptable outcome based upon the tenets of the Firm's Risk Management Framework

Travel requirements

Ad hoc travel will be required

About The Team

The Firm's Technology function is responsible for designing, developing and maintaining the firm's global technology infrastructure, including architecture, hardware, software, computer networking, communications and data management. The function works closely with lawyers, clients and PBS functions to ensure our technology offering is best-in-class and forward-thinking, allowing the Firm to provide its clients with cutting-edge, innovative legal and business advice via up-to-date technology products and solutions.

The Firm's Technology function is responsible for designing, developing and maintaining the firm's global technology infrastructure, including architecture, hardware, software, computer networking, communications and data management. The function works closely with lawyers, clients and PBS functions to ensure our technology offering is best-in-class and forward-thinking, allowing the Firm to provide its clients with cutting-edge, innovative legal and business advice via up-to-date technology products and solutions.

This role will report to the Associate Director, People Solutions

The direct reports of this role are with the Product Managers, People Solutions

The key relationships of this role are with the following:

  • Talent Management Leads
  • Portfolio Managers for the other PBS/PKS functions
  • Technical Services teams

About The Candidate

Technical skills, qualifications and experience

  • Computer Science Bachelor’s degree or substantial equivalent experience
  • Extensive experience with advanced information IT and security systems, including TCP/IP networking, scripting, and incident handling
  • Strong experience of designing and implementing cyber security solutions in a large enterprise
  • Good demonstrable experience managing Microsoft Azure cloud platforms
  • Some exposure to AWS and/or Google cloud platforms
  • Experience of using scripts or other development tools to automate and integrate diverse systems
  • Proven experience acting in a security advisory capacity to multiple constituencies
  • CCSP and CCSK preferred
  • Experience of Microsoft Azure Cloud Architect or Engineer is preferred
  • Experience of CISSP, SSCP, CRISC, or CGEIT would be beneficial
  • Expert knowledge of key Microsoft cloud technologies, including Azure: MFA, Advanced Threat Protection, Cloud App Security, Key Vault, AD, storage, monitoring, access control, policy management, and Resource Manager
  • Familiarity with common cloud automation, management, and deployment tools such as Pivotal, Jenkins, Ansible, Docker, Kubernetes, etc.
  • Expertise with integrating and deploying IAM solutions for both cloud and on-prem scenarios
  • Authoritative knowledge and experience with cloud deployment and integration activities
  • Working knowledge of information security frameworks such as ISO27001, NIST, and CIS
  • Authoritative understanding of security threats, qualitative and quantitative risk valuation models, and effective tools, tactics, and techniques for risk reduction
  • Working knowledge of SOAR concepts and toolsets, including how to architect, automate, and integrate cloud systems with logging, event correlation, and incident response platforms
  • Authoritative understanding of data communications and information systems hardware, software, and design principles, such as VPN, segmentation, WAF, access control, CASB, etc
  • Working knowledge of the principles, theories, techniques, and methods of information system analysis and programming, particularly secure coding practices
  • Working knowledge of encryption technologies and standards, both at-rest and in-flight
  • Expert analytical skills, including the gathering and analyzing of facts, formulating objective conclusions modified by subjective and experience-based qualifiers when appropriate, defining problems, and promoting solutions
  • Ability to adapt, integrate, and modify existing programs or vendor-supplied package programs for use with existing information systems
  • Proficient in oral and written English
  • Ability to be productive and maintain focus without direct supervision

Personal qualities

These personal qualities represent the shared characteristics of high performers across Baker McKenzie, regardless of job level and location. 

Know how

  • Keeps across key developments in all relevant areas and demonstrates the ability to develop substantive authority in relation to the Firm's specialist fields 
  • Demonstrates the ability to identify the real issue, and to anticipate requirements and potential consequences; distils a range of possibilities by thinking in a considered, prudent manner
  • Able to move through a variety of tasks requiring different approaches, knowledge, and expertise, with agility of mind and capacity for analysis and synthesis

Dedication

  • Driven by a strong personal sense of integrity and upholds exemplary quality standards
  • Prepares thoroughly, takes responsibility, uses initiative and is self reliant to ensure work progresses to the fullest extent possible
  • Hardworking and diligent with a keen understanding of client demands
  • Demonstrates composure when dealing with difficult situations

Personal Impact

  • Creates a positive impression at all times; develops relationships through collaboration and reciprocity 
  • Negotiates to achieve outcomes that are mutually satisfactory; shows good judgement on when to stand strong and when to compromise 
  • Invests in, nurtures and builds a network of productive relationships

Humanity

  • Respectful to others, regardless of their position, and earns the respect of others by being transparent 
  • Has care and concern for others and a genuine interest in others as people
  • Treats delicate or confidential issues with grace and discretion

Why Join Us?

Baker McKenzie is a truly global law firm. Founded in 1949, we advise many of the world's most dynamic and successful business organisations through our 13,200 people in 78 offices in 46 countries. Yet big does not mean impersonal. We work hard to ensure that everyone knows their role and has the support they need to perform it to the highest standard. Our culture encourages this - how we work, think and behave in a collaborative and fulfilling way.

In London you will be part of an 950 person office, which is also our largest office globally. Originally opened in 1961, Baker McKenzie London is well established in the UK as a leading international law firm and is regularly involved in some of the country's most high-profile legal matters. We can offer you the work, pride and experience of being part of a leading law firm but in a local office environment that is hardworking, yet friendly and supportive.

The strength of the firm and our culture is evidenced by a number of recent awards, including:

  • Acritas' Sharplegal Global Elite Brand Index, 2010- 2020 - ranked 1st
  • The Sunday Times' Best Companies to Work For 2011, 12, 13, 14, 15, 17: currently ranked 66th
  • The Times Top 100 Graduate Employers 2018: currently ranked 65th
  • Thomson Reuters ranked the Firm No. 1 for cross-border deals for the last 12 years. More than 70% of our deals are cross-border.
  • For the 14th consecutive year, the Firm was ranked first for deals with emerging market involvement, by both number of announced and completed deals.
  • Law360 ranked the Firm as the leading global law firm in its annual survey.
  • Identified as one of the best law firms for women by Working Mother magazine, Law360 and Euromoney.
  • Named one of Stonewall's Top Global Employers for the fourth consecutive year in 2019.
  • Recognised in 2019 as a top 10 employer in the UK for LGBT+ equality, and named as one of 10 Top Trans Employers, in Stonewall's Top 100 Best Employers listing.
  • Featuring in Business in the Community's Top 100 Employers for Race listing.
  • Ranking 5th in the 2019 Social Mobility Employer Index.
  • Winning the Best International Firm (UK), Best International Firm for Minority Women Lawyers, and Best International Firm for Women in Business Law at the European Women in Business Law Awards 2019.

To Apply

Please click on the Apply icon to start the online application process for this role. We will then be in touch with you once we have reviewed your application. If you are unable to apply online, please contact the Recruitment Team on either 020 7919 1000 or Recruitment.London@bakermckenzie.com

For more information about this position or to discuss any adjustments you may require during the process please contact in confidence, Vanessa Renforth, Recruitment Manager, on 020 70725731 or Vanessa.Renforth@Bakermckenzie.com

Please review our Applicant Privacy Notice here

NO AGENCIES PLEASE

Please note Baker McKenzie does not accept unsolicited CVs. Please click here for details of our Agency Policy and commitment to sourcing directly.

Our Commitment to Diversity & Inclusion

As the first truly global law firm, diversity and inclusion are foundational to our culture and strategic vision. We are a Firm of individuals from across the globe with different backgrounds, ideas, and points of view who collegially work together to solve complex problems and design practical solutions for our clients. Our multiple perspectives come from many sources, including the diverse ethnicity, culture, gender, nationality, age, sex, sexual orientation, gender identity and expression, disability, parental status, education, social background and life experience of our people.

Our global strategy is focused on our people, our culture, our clients and the communities where we operate. In 2019 we enacted ambitious new targets related to gender, racial and ethnic diversity at the Firm. These targets are viewed as a floor, not a ceiling, to advancing underrepresented groups, and they are backed by a variety of strategic initiatives aimed at achieving our goals. Our strategic vision is supported in London by six active employee led networks which champion diversity, lead on a number of internal campaigns and deliver a range of activity to celebrate differences in identity, inclusion, and key dates throughout the year including: LGBT+ History Month, International Women’s Day, International Trans Day of Visibility, Mental Health Awareness Week, Pride, Black History Month, Social Mobility Week, International Day of Disabled Persons and many more!  

Baker McKenzie London has been accredited by Disability Confident, joining over 18,000 organisations that have signed up to help change behaviours and cultures in businesses, networks and communities and reap the benefits of inclusive recruitment practices.