Security Architect

Job Description


Location: Warminster, Wiltshire (hybrid working)Type: PermanentClearance: Must hold security clearance above BPSS. Applicants must be sole British nationals, hold a valid British passport, and be eligible to obtain UK Security Clearance. Dual nationals cannot be considered.Travel: Ability and willingness to travel requiredThe opportunityBe part of a high-profile UK defence programme focused on transforming British Army collective training and enabling modern, secure delivery across training and deployed IT environments .

This is a mission-led role with real-world impact, working alongside military stakeholders and multi-disciplinary engineering teams.You'll join a collaborative matrix environment, operating as a senior technical contributor and trusted advisor across the project lifecycle-comfortable working independently when needed and equally effective influencing senior stakeholders.The roleThis Security Architect role requires a versatile individual who can make effective contributions across the full programme lifecycle. The position is critical to successful delivery of the transformation programme, ensuring systems and services meet demanding operational needs.The role concentrates on Information Assurance and Cyber Security , but may also include support to physical and personnel security elements.You'll be able to engage both technical experts and wider organisational stakeholders, applying a holistic approach to shape secure solutions that support strategic objectives.Key responsibilitiesDevelop and manage the security vision, architecture specifications, architecture analysis, threat modelling, requirements, standards, design patterns, reference architectures, strategies and roadmapsApply security design principles to produce practical security architecturesLead security engagement with senior internal and external stakeholdersSupport security assurance of systemsProvide strategic direction for security projects to deliver the information security strategyCapture, expand and analyse security requirementsDevelop innovative security solutions aligned to long-term architecture goalsDrive security technology evaluations and proof-of-conceptsBuild strong cross-organisational relationships and influence architecture/stakeholdersSupport security technologies lifecycle managementEnsure security is embedded across wider technology domain architectures (working with other architects)Conduct/assist with peer reviewsEvaluate and assess security risk throughout application and system lifecycle managementStay current with security technologies and recommend adoption based on risk mitigation and business valueAdvise leadership on cybersecurity issues, processes, products and servicesMaintain oversight to ensure appropriate security controls are included in design and implementationAct as the cybersecurity SME contributing to overall system architectureEssential skills & experienceSelf-starter; able to prioritise and plan complex work in a rapidly changing environmentStrong customer/stakeholder engagement skills (internal and external)Excellent problem-solving and critical thinkingHighly organised, discreet, outcome-focused; able to work at paceAble to articulate complex security concepts to technical and non-technical audiencesCollaborative team approach; able to constructively challengeAble to interpret diverse business and technical requirements and identify viable controls/solutionsStrong strategic awareness and ability to shape solutions aligned to organisational goalsConfident communicating risk implications at senior levelsStrong stakeholder expectation management under high-risk/high-complexity constraintsExperience leading security design/review activities with architects/engineering teamsKnowledge of enterprise architecture approaches (e.g., TOGAF, MODAF or equivalent)Strong grasp of risk methodologies and security risk managementExperience supporting Risk Management Framework documents and controlsSecure by Design understanding/experienceUnderstanding of waterfall and agile delivery methodologiesUnderstanding of how obsolescence affects Information AssuranceBroad understanding of cloud hosting/cloud architecture for major providersExperience or knowledge of DevSecOps tooling and processesWorking knowledge of MoD/Government security environments at classifications including SECRET and aboveProven experience leading a small teamWillingness to travelSecurity clearance above BPSS (or eligible to obtain)DesirableDegree in Information Security or significant programme security experienceCertifications: CISSP, CISM, CRISC, CGRC (any)Knowledge of Government Standard 007, ISO 27001 and NISTStrong written/oral/presentation skillsSupply chain security management experience/knowledgeExperience supporting security awareness/education programmesProblem management and/or ITIL experienceKnowledge of intelligence disciplines and analysis concepts (GEOINT/SIGINT/OSINT/HUMINT etc.)Apply / enquireApply via this advert or get in touch for a confidential discussion. Applications are being managed through the recruitment partner route.TPBN1_UKTJ

Job Details

Company
Defence
Location
Warminster, Wiltshire, UK
Hybrid / Remote Options
Employment Type
Full-time
Posted