IT Security Architect

Company Information
The Company’s main activities are the design, supply, installation, operation and life extension of Floating Production, Storage and Offloading (FPSO) vessels. These are either owned and operated by SBM Offshore and leased to its clients or supplied on a turnkey sale bases. Other products include: semi-submersibles, TLPs, FPSO LNGs, turret mooring systems, brownfield, offshore (off)loading terminals and most recently solutions for renewable energy. With an operating fleet of thirteen FPSOs, two FSOs, one MOPU and one semi-submersible in operation worldwide and almost 300 years of cumulative FPSO operational experience within the industry, the Company is considered a market leader in providing leased production floating systems.

Department Information
The Group IT Enterprise Architecture Team is responsible for supporting IT strategy and providing technology vision aligned to the Company strategy in its digital transformation, providing architectural guidance and support for IT related programs and projects, providing guidance and consultation on project work from the initiative to the delivery. The team is composed of Enterprise, Solution and Technical Architects expert in Infrastructure, Applications, Data, Business Intelligence and Security, managed by the Enterprise Architecture Manager, and part of the IT Project Department.

Role description

We are seeking an experienced IT Security Architect, with a strong background in scoping and designing critical IT security solutions. This is a leading role for a technical expert with a solid ranging from hands-on and practical deployment experience to design concepts and security by layers.

The successful candidate will be a self-starting, detail-minded design expert, with proven

understanding of designing appropriate and profitable solutions.

The architect will be responsible for providing internal consultancy, technical design and assist the required project managers for designing and supporting IT security solution delivery at group level.

• Architect new or existing IT security solutions adapted to traditional and cloud services, applications and infrastructures based on security by design best practices,
• Ensure adherence to IT security standards supporting IT security policies and influence missing IT security solutions towards the global IT security solution future state model,
• Ensure that IT security solution designs are fit for purpose, well thought-through, clearly articulated, documented and compliant with standards, of good quality and can be delivered using an appropriate development methodology that aligns to the needs and constraints of the project,
• Collaborate with business stakeholders managing industrial control system, and provide support to follow Purdue Enterprise Reference Architecture model,
• Support internal and external audit activities, such as supplying design information.
• Write or review detailed technical documents making sure the non-functional requirements are addressed by the technical design of the solution,
• Building strong partnership relationships with project teams, IT Security and IT Operation teams through internal consultancies and thought leadership activities,
• Maintain IT security solution catalogue, design standards and documentation, and ensure that the jointly agreed design standards and methods adopted by SBM stakeholders, clients and 3rd party suppliers are maintained,
• Proactively review current IT security solutions and propose improvements and strategic direction, anticipating internal IT security goals,

Role Requirement
Our preferred candidate for the role of IT Security Architect has a master degree in Computer Science, Information (Systems) Management or equivalent. You have significant experience with the field of IT, with relevant experience in IT security operations, with solid understanding of the state of the art security domains in cloud, application, infrastructure, network and data (offshore and industrial control system knowledge is a plus). Excellent communication skills in English, both written and verbally and the experience with working with global teams in various time zones. Certifications like CompTIA, Microsoft Azure Security, Cisco (CCNP Security) are a plus but not a requirement.

In addition to this, you should have knowledge on the following subjects:

• Provide support for the strategy & vision for all global IT security solutions based on IT security policies and processes defined by Group IT Security - including the edge, core datacenter, access and offshore areas,
• Demonstrable skills in designing IT security architecture for large-scale global integration projects,
• Strong experience in the design & deployment of cloud security architectures (Microsoft Azure security components),
• Experience with Identity & Access Management governance, standards and technology,
• Handle the design & assisting for deployment of enterprise IT security solutions across the entire global IT environment,
• Experience with security technologies and protocols (Firewalling, IDS/IPS, NAC, ATP, Email Security, MFA, RProxy, LoadBalancing, WAF, CASB, DLP, IAM),
• Strong experience with enterprise IT security vendors (Microsoft, Cisco, F5, Carbon Black, Secure Auth),
• Fully adopt latest cybersecurity best practices and methodologies for all proposed solutions adapted to SBM Offshore context – security by design approach,
• You are autonomous, energetic and show initiative,
• You are a good communicator and proactively develop and maintain good relationships,
• You have strong ethics, and can exercise discretion and fluent in English