Security Architect

Contract Role - Security Architect

Location: Hybrid - Wokingham or Warwick (1-2 days onsite per week)
Contract: 6 Months (likely extension)
IR35: Inside IR35
Security Clearance: Active SC Clearance Required

Role Overview

Our client is seeking an experienced Security Architect to support a major internal programme responsible for delivering capabilities that underpin critical infrastructure operations.

This role will embed within an agile delivery programme while also contributing to the wider Security Architecture Community of Practice, working alongside enterprise and domain security architects to strengthen security architecture practices across the organisation.

The successful candidate will provide security architecture leadership for an internal application within the programme, ensuring security is embedded throughout the development lifecycle using secure-by-design and shift-left principles.

You will work closely with engineering, architecture, and delivery teams to ensure security risks are identified early, appropriate controls are designed, and systems are resilient against evolving threats.

Key Responsibilities

Programme Security Architecture

  • Own the security architecture for an internal application supporting critical infrastructure programmes.
  • Embed secure-by-design and shift-left practices within agile delivery teams.
  • Work closely with engineers and product teams to ensure security is integrated into design and development activities.
  • Provide architectural guidance across agile sprints and feature releases.

Security Risk & Threat Analysis

  • Conduct threat modelling independently across application and platform designs.
  • Perform risk assessments to identify vulnerabilities and architectural weaknesses.
  • Design appropriate security controls, including identifying where compensating controls may be required.
  • Provide security architecture input into release planning and technical decision making.

Security Architecture Governance

  • Ensure solutions align with organisational security policies, regulatory obligations, and industry best practice.
  • Maintain clear and accessible security architecture documentation.
  • Support security-related incident response activities where architectural insight is required.

Community of Practice Contribution

  • Contribute to the Security Architecture Community of Practice, supporting the maturity of the clients security architecture capability.
  • Help identify capability gaps and support the development of consistent approaches across teams, including:
    • Threat modelling frameworks
    • Secure development lifecycle practices
    • Security architecture standards
  • Provide ad-hoc security architecture support across other programmes where needed.

Essential Skills & Experience

  • Active SC Clearance (recently lapsed clearance may be considered for exceptional candidates).
  • Strong experience as an application or Software Security Architect.
  • Demonstrable experience embedding security within agile development environments.
  • Proven ability to conduct threat modelling independently.
  • Strong experience in designing security controls (architectural level rather than hands-on implementation).
  • Strong expertise in containerised services and container security.
  • Experience working with DevSecOps practices and secure SDLC frameworks.
  • Ability to communicate complex security concepts clearly to both technical and non-technical stakeholders.
  • Experience supporting systems operating within regulated or high-assurance environments.

Desirable Experience

  • Experience within the energy, utilities, or similar highly regulated sectors.
  • Experience supporting systems related to critical infrastructure operations.
  • Familiarity with large-scale enterprise transformation programmes.

Working Model

This role follows a hybrid working model, with 1-2 days per week onsite in either:

  • Wokingham
  • Warwick

Attendance onsite may vary depending on team collaboration needs and programme milestones.

Interview Process

The recruitment process consists of two stages conducted via Microsoft Teams:

Stage 1 - Informal / Cultural Fit Interview
Discussion around experience, approach to security architecture, and team fit.

Stage 2 - Technical Competency Interview
Panel interview assessing practical capability in areas such as:

  • Threat modelling
  • Secure architecture design
  • DevSecOps practices
  • Security risk management

We use generative AI tools to support our candidate screening process. This helps us ensure a fair, consistent, and efficient experience for all applicants. Rest assured, all final decisions are made by our hiring team, and your application will be reviewed with care and attention.

Pontoon is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills, and unique experience in an inclusive environment that helps them thrive. If you require reasonable adjustments at any stage, please let us know and we will be happy to support you.

Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly.

Please email me

Apply Now
Apply Now

Job Details

Company
Pontoon
Location
Wokingham, Berkshire, United Kingdom
Hybrid / Remote Options
Employment Type
Contract
Posted