KEY SKILLS & QUALIFICATIONS

• Strong knowledge of OT security, ICS/SCADA cybersecurity, and industrial networking protocols and OT asset discovery solutions
• Deep expertise in Microsoft Azure security (Azure AD, Defender for Cloud, Sentinel, Key Vault, IAM).
• Proficiency in network security, segmentation strategies, firewalls, and IDS/IPS solutions for hybrid IT/OT environments.
• Excellent leadership skills with experience in managing high-performance teams and complex projects.
• Experience with Zero Trust Architecture (ZTA) and Secure Access Service Edge (SASE).

SCOPE OF ROLE:

As a Senior Security Architect, you will play a critical role in defining and implementing robust security architectures across both Operational Technology (OT) and Cloud (Azure) environments at Morgan Advanced Materials. You will collaborate with cross-functional teams to ensure security is embedded into architectural decisions while balancing operational efficiency and compliance requirements. Additionally, you will represent the security function in Change Control Boards (CCB), reviewing architecturally significant changes and providing security control recommendations.
Morgan Advanced Materials is a business rich in history and innovation. Founded in the UK in 1856, we have grown into a global organisation with 70 sites in 18 countries. Our model to serve our customers where they need us has led to a diversified product range using our unparalleled expertise in ceramic and carbon materials, which we exploit to solve difficult problems for our customers across a diverse range of markets.
We are a purpose driven organisation. Our purpose is to use advanced materials to make the world more sustainable and to improve the quality of life. We deliver on that purpose through the products that we make, and the way that we make them.
We help our customers push the limits of their processes and products to meet the demanding requirements they face, from higher process temperatures to higher product performance to increasing miniaturisation.
Key Figures: Revenue £1,114.7m (2023), ~8,500 employees, manufacturing in 20+ countries, and a global customer portfolio. A UK PLC with head office located in Windsor, Berkshire UK. Listed on London Stock Exchange; Member of the FTSE 250 Index.
Responsibilities:

ESSENTIAL DUTIES & REPONSIBILITIES:

Your responsibilities will include overseeing the security architecture approach and working with the IT function and business units to promote security engineering practices and develop security reference architectures for new solutions. This includes defining security controls (document security requirements and applicable design options) to apply in delivering business value while reducing risk.

KEY RESPONSIBILITIES

• OT Security Architecture & Design
• Define and design OT security architecture patterns including network segregation and segmentation for industrial control systems (ICS), SCADA, and IIoT equipment
• Develop and enforce network segmentation and secure remote access strategies in alignment with IEC 62443 and NIST 800-82.
• Evaluate and integrate security monitoring and threat detection solutions (e.g., Armis, Nozomi, Microsoft Defender for IoT).
• Assess risks and recommend security controls for legacy industrial systems with limited security capabilities.
• Work closely with OT working group of engineers and plant IT teams to ensure cybersecurity policies align with operational constraints.
• Cloud Security Architecture (Azure)
• Define and implement cloud security architectures for workloads hosted in Microsoft Azure, ensuring alignment with best practices such as Microsoft CAF and Zero Trust principles.
• Work with cloud engineering teams to enforce security configurations for Azure services, including Identity & Access Management (IAM), Secure Networking, Key Management (Azure Key Vault), and Data Protection (DLP, encryption).
• Design logging, monitoring, and incident response strategies for Azure workloads using Microsoft Defender for Cloud, Sentinel, and Log Analytics.
• Ensure compliance with relevant industry security frameworks (e.g., ISO 27001, NIST CSF, CIS Benchmarks) in cloud environments.
• Security Governance & Change Control Board (CCB)
• Represent the security team in the Change Control Board (CCB) and review architecturally significant changes from a security perspective.
• Provide security control recommendations for infrastructure, application, and cloud changes to mitigate risks while enabling business agility.
• Act as a trusted advisor to IT, OT, and cloud engineering teams on security design decisions.
• Ensure change management processes align with regulatory and security compliance requirements.
• Security Technology Evaluation & Continuous Improvement
• Evaluate and recommend security technologies for network security, endpoint security, identity management, and threat detection across IT, OT, and cloud.
• Drive continuous improvement in security architecture by staying updated with emerging threats, security trends, and evolving regulatory requirements.
• Collaborate with vendors and external security consultants to enhance security capabilities.
  Qualifications: