Skip navigation

Have you considered using our job search? Click here to search our current jobs.

Have you considered using our job search? Click here to search our current jobs.

Associate Principal Security Architect (Embedded Products)

Summary

Salary
Competitive
Team
Information Technology
Location
United Kingdom - Hullavington Office

Why Dyson’s Enterprise Security team? 

At Dyson, we research, design, manufacture and sell a range of cutting-edge technology enabled products. We constantly innovate, exploring new markets and technologies, connecting with customers and products in new ways. Our technology solutions support a great variety of functions globally - everything from secure research facilities, to AI enabled robotic manufacturing, to apps connecting owners with products, to our physical and online retail operations worldwide. This all presents a highly complex, challenging and ever-evolving cyber risk landscape, and a need for continual review and vigilance to reflect emerging new threats. 

Dyson’s Cyber Security team have a key role to play, as we:

  • Enable the successful delivery of exciting new projects – both business and security
  • Manage the digital security of our products
  • Maintain and develop the digital security of our manufacturing sites and supply chain
  • Operate Dyson’s cyber defences

With board level commitment to significant investment in our Cyber Fusion Centre capabilities, and supported by the IT Senior Leadership team, this role reflects the importance of world class cyber defence and security engineering to Dyson.

 

The role

One of three new Associate Principal Security Architect roles, this role specifically focusses on Embedded Product Security Architecture.

Alongside technical expertise, the role requires strong business partnering and relationship building skills. You’ll work closely with project teams in business areas to develop practical solutions to mitigate business risks. There’s ample scope to share and build on your existing technical expertise, and we invest heavily in the development and training of our team

Responsibilities

  • Consult on business and IT-led initiatives, design cyber security elements, ensure adequate security solutions are in place 
  • Plan, research, design and build robust security architectures for new projects
  • Design, coordinate and oversee security testing and assurance of products
  • Improve efficiency, automation, and performance of security, reduce cost of ownership. Drive Quality, Security, and Speed
  • Engage with new business initiatives - deliver secure, supportable solutions, make the quick easy way the secure way 
  • Develop and maintain strong working relationships with key IT, business, and supplier contacts
  • Provide security risk assessment & recommendations throughout delivery lifecycle - produce designs, define / draft patterns, engage with delivery (Waterfall, Agile and DevSecOps). Support application development, database design, network/platform projects.
  • Help project teams comply with enterprise and IT Security policies, industry regulations, computer forensic investigations and best practices

About you

  • Strong background in security architecture of enterprise, OT or IOT platforms, including engineering of core best-in-class security products. 
  • Awareness of current industry security threats, challenges, and mitigation techniques
  • Interpersonal and communication skills, able to influence and build effective working relationships with a broad range of people and roles globally

Required Technical Experience 

Experience in some or all of  

  • End point technology
  • Connected devices
  • Core infrastructure/cloud and/or business applications. 
  • Designing and delivering secure eCommerce, Ownership Experience, Retail against a backdrop of major standards / frameworks such as PCI-DSS, ISO27001, NIST 800 series, ISA/IEC 62443.
  • Supporting project teams with high and low-level security consultancy, design and delivery, with a wide-ranging understanding of security considerations across key technologies such as Cisco, Microsoft, SAP, Oracle, market-leading SaaS applications, public cloud, etc
  • Operational technology / manufacturing / supply chain security
  • Embedded product software security

Knowledge across several security topics, ideally: 

  • Security Architecture, including: designing infrastructure security solutions, architecting secure business applications and integrations, horizon-scanning, trends and technologies
  • Security Consultancy, including: setting security requirements, regulations (e.g. GDPR, PCI-DSS, other international privacy requirements), security good practice
  • System-level Security, including: operating system hardening, endpoint security, network security, web and application services, database security, privileged user management
  • Cloud Technologies, including: Platform as a Service (PaaS), Infrastructure as a Service (IaaS), Content Delivery Networks (CDN), Web Application Firewall (WAF)
  • OT security technology and models
  • DevOps practices, embedding security in the software development lifecycle
     


Dyson is an equal opportunity employer. We know that great minds don’t think alike, and it takes all kinds of minds to make our technology so unique. We welcome applications from all backgrounds and employment decisions are made without regard to race, colour, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other any other dimension of diversity.

Interview guidance

We are following the government guidelines regarding COVID19. At this time all interviews will be conducted via video or telephone. We’re taking these precautionary measures to protect both our employee and candidate wellbeing. Our Talent Acquisition team will work with you and provide further information as appropriate.