Senior Security Architect

As a Security Architect, the successful candidate will lead the design and implementation of robust security practices across platforms and services. Working within Agile delivery teams, they will embed security from the ground up, ensuring every stage of the software development lifecycle is protected.

The role involves driving innovation by applying new technologies and approaches, while working alongside talented colleagues. The Security Architect will also play a key role in knowledge sharing—educating both clients and team members on security best practice. Leadership is central to this position, with responsibility for coaching, mentoring and developing staff, managing performance, and guiding teams to solve complex challenges.

Essential Requirements

• Proven experience in secure design and delivery of cloud services and solutions.
• Skilled in identifying security issues in system designs/products and recommending pragmatic mitigations that balance cost, risk and usability.
• Experience in one of the following disciplines - (AI/ML, Cloud, Security Architecture, M365, Data)
• Strong knowledge of security standards and regulations (e.g. NCSC, ISO, SoC, NIST, PCI, GDPR).
• Background in application architecture, software development and/or infrastructure architecture.
• Hands-on experience testing software and infrastructure security using appropriate tools.
• Familiarity with Continuous Security, Continuous Integration and Continuous Delivery practices.
• Solid understanding of network security (OSI, TCP/IP), web application security (OWASP) and cryptographic controls (PKI, TLS).
• Track record in managing, mentoring and coaching team members, with a passion for people development.
• Excellent communication skills, able to explain complex security issues clearly to technical and non-technical stakeholders.

Desirable

• Experience with identity management and authentication/authorisation solutions.
• Exposure to end-to-end security including governance, risk and compliance, operational security, supply chain security and secure user management.
• Relevant penetration testing qualifications (e.g. OSCP, CREST, TIGER or equivalent).
• Experience leading security engineers and junior staff members.