Skip to main content

Beta What do you think of this service? Your feedback will help us to improve it.

  5. Secure System Architecture and Design Associate

Secure System Architecture and Design Associate

Role summary

Secure System Architecture & Design is the designing of an IT system to meet its security requirements, balancing this with its functional requirements.

Role expectations

In this role you will:

  • At this role level, you may:
    • Embed ‘secure by design’ principles into application development, integrating security tools, standards, and processes into product life cycles
    • Support the assessment of application resilience throughout an IT estate, generating regular application security reports to provide information about statistics and trends
    • Follow processes, provide standardised advice on tooling for, and conduct dynamic and static analysis in the product development life cycle
    • Work with development teams to embed secure development life cycle and security awareness, and ensure appropriate tools and skills exist
    • Recommend security controls and identify solutions that support a business objective
    • Provide specialist advice and recommendations regarding approaches and technologies across teams and various stakeholders, assessing the risk associated with proposed changes
    • Inspire and influence others to execute security principles, communicating widely with other stakeholders
    • Help review ongoing security architectural activities
    • Recommend security controls and identify solutions that support a business objective
    • Provide specialist advice and recommendations regarding approaches and technologies across teams and various stakeholders, assessing the risk associated with proposed changes
    • Inspire and influence others to execute security principles, communicating widely with other stakeholders
    • Help review ongoing security architectural activities

Accreditation

For further information on accreditation in this role see the UK Cyber Security Council’s guide on secure system architecture and design.

Skills

Security architecture

Working

Secure design

Working

Secure development

Working

Information risk assessment and risk management *

Working

Protective security

Awareness

Threat understanding

Awareness

Learning Pathway

Core learning

BCS Certificate in Information
Security Management Principles
(CISMP)

CompTIA IT Fundamentals

CREST Practitioner Security
Analyst

Secure by Design

Secure Programming Foundation
Certification (S-SPF)

Foundation Certificate in Cyber
Security

NIST Cyber Security Professional
(NCSP) Foundation Certificate

CompTIA Server+

Recommended for Associate level

SEC530: Defensible Security Architecture

GIAC Defensible Security Architecture (GDSA)

Certified Data Protection Foundation & Practitioner

CompTIA Security+

SEC573: Automating Information Security with Python

GIAC Python Coder (GPYC)

SABSA Chartered Security Architect – Foundation Certificate
(SCF)

Sign up to UK Government Security

Subscribe to our newsletters to receive notifications when changes to strategy, policy, standards, and guidance are published on the website.

Sign up now