1 to 25 of 69 Remote Zero Trust Jobs in the UK

Date posted 25/11/2025 Location Cambridge, United Kingdom Category IT We’re looking for an experienced Zero Trust Identity and Access Management (IAM) Security Architect to shape how Arm secures its global workforce and systems. You’ll design and guide the strategy behind secure, scalable … define IAM standards, integrate new technologies and make identity simple and secure for every team. Responsibilities Lead the design and implementation of enterprise Zero Trust IAM architecture across AD, Entra ID, SSO, MFA, PAM, and PKI. Create and maintain Zero Trust IAM security roadmaps, patterns ...

networking services across AWS and Azure (VPCs/VNets, subnets, routing, NAT, hybrid connectivity). Configure and operate Cloudflare services including WAF, DDoS protection, Zero Trust access, DNS, load balancing, and API protection. Engineer and support Fortinet security controls including firewall policies, VPNs, segmentation, and secure ingress/… egress. Implement network security patterns such as Zero Trust networking, least privilege access, micro-segmentation, and private service access. Automate networking and security configuration using Infrastructure as Code (Terraform, ARM/Bicep, CloudFormation). Integrate security controls into CI/CD pipelines and promote secure-by-design cloud ...

networking services across AWS and Azure (VPCs/VNets, subnets, routing, NAT, hybrid connectivity). Configure and operate Cloudflare services including WAF, DDoS protection, Zero Trust access, DNS, load balancing, and API protection. Engineer and support Fortinet security controls including firewall policies, VPNs, segmentation, and secure ingress/… egress. Implement network security patterns such as Zero Trust networking, least privilege access, micro-segmentation, and private service access. Automate networking and security configuration using Infrastructure as Code (Terraform, ARM/Bicep, CloudFormation). Integrate security controls into CI/CD pipelines and promote secure-by-design cloud ...

networking services across AWS and Azure (VPCs/VNets, subnets, routing, NAT, hybrid connectivity). Configure and operate Cloudflare services including WAF, DDoS protection, Zero Trust access, DNS, load balancing, and API protection. Engineer and support Fortinet security controls including firewall policies, VPNs, segmentation, and secure ingress/… egress. Implement network security patterns such as Zero Trust networking, least privilege access, micro-segmentation, and private service access. Automate networking and security configuration using Infrastructure as Code (Terraform, ARM/Bicep, CloudFormation). Integrate security controls into CI/CD pipelines and promote secure-by-design cloud ...

Architecture Document for cloud edge and DMZ hosting (including diagrams, logical and physical topology). Hybrid Connectivity Design Principles and Standards (DNS-based policy, Zero Trust segmentation, firewalling). Detailed Bill of Materials (vendor/platform options, sizing, licence models, costs to Class 4 estimate). Delivery Project … Architecture Document for cloud edge and DMZ hosting (including diagrams, logical and physical topology). Hybrid Connectivity Design Principles and Standards (DNS-based policy, Zero Trust segmentation, firewalling). Detailed Bill of Materials (vendor/platform options, sizing, licence models, costs to Class 4 estimate). Delivery Project ...

Architecture Document for cloud edge and DMZ hosting (including diagrams, logical and physical topology). · Hybrid Connectivity Design Principles and Standards (DNS-based policy, Zero Trust segmentation, firewalling). · Detailed Bill of Materials (vendor/platform options, sizing, licence models, costs to Class 4 estimate). · Delivery Project … Architecture Document for cloud edge and DMZ hosting (including diagrams, logical and physical topology). · Hybrid Connectivity Design Principles and Standards (DNS-based policy, Zero Trust segmentation, firewalling). · Detailed Bill of Materials (vendor/platform options, sizing, licence models, costs to Class 4 estimate). · Delivery Project ...

Architecture Document for cloud edge and DMZ hosting (including diagrams, logical and physical topology). · Hybrid Connectivity Design Principles and Standards (DNS-based policy, Zero Trust segmentation, firewalling). · Detailed Bill of Materials (vendor/platform options, sizing, licence models, costs to Class 4 estimate). · Delivery Project … Architecture Document for cloud edge and DMZ hosting (including diagrams, logical and physical topology). · Hybrid Connectivity Design Principles and Standards (DNS-based policy, Zero Trust segmentation, firewalling). · Detailed Bill of Materials (vendor/platform options, sizing, licence models, costs to Class 4 estimate). · Delivery Project ...

Cyber Security teams (approx. 5 people). This is a broad, hands-on role split between Security Operations and project-based work across Azure, Zero Trust, DLP, and IAM. You’ll play a pivotal role in both the day-to-day running of security operations and the strategic … security best practices across the organisation. Key Responsibilities Split focus: 50% on Security Operations (monitoring, threat detection, incident response) 50% on project delivery (Azure, Zero Trust, DLP, IAM) Embed security controls and guardrails within Azure environments Ensure compliance with internal policies and external assurance frameworks Support deployment ...

practices Conduct security risk assessments, architecture reviews and produce high-level and low-level security designs Advise engineering and product teams on identity, encryption, zero trust, network security and data protection approaches Work alongside client CISOs, architects and delivery teams, providing strategic security guidance Support bid work, proposals … APIs, CI/CD pipelines and DevOps workflows Knowledge of identity and access management (OAuth2.0, OpenID Connect, SSO), encryption, container security (Docker, Kubernetes) and zero trust principles Strong stakeholder engagement skills able to influence technical and non-technical audiences Experience in consultancy or client-facing environments would ...

service teams with expert security guidance Technical Delivery & Implementation Lead the end-to-end delivery of complex security transformation programmes, including identity re-architecture, Zero Trust alignment, and phased implementation of modern security controls across multi-tenant estates Design and implement Conditional Access frameworks that account for risk … based policies, break-glass strategy, device trust, session controls, privileged access scenarios, and operational edge-cases Oversee full Intune security baselining, including secure device provisioning, compliance models, remediation scripts, endpoint hardening, managed configurations, and integration with incident response Architect and tune the Microsoft Defender XDR stack, including advanced hunting ...

Guide solution evaluation and vendor selection for IAM technologies such as IGA, PAM, SSO/MFA, federation, and directory services. Provide expert advisory on Zero Trust models, least privilege, and identity-driven security strategies. Support incident response and architecture reviews related to identity threats, misuse, or vulnerabilities. Mentor … improvement programmes in mid-to-large enterprise environments. Strong understanding of IAM frameworks and best practices, including NIST, ISO 27001/27701, CIS, and Zero Trust Architecture (ZTA). Hands-on exposure to IGA, PAM, SSO/MFA, federation, and directory technologies (e.g., Azure AD/Entra ...

edge and DMZ hosting, including diagrams, logical and physical topology. Design and agree on Hybrid Connectivity Design Principles and Standards, including DNS-based policy, Zero Trust segmentation, and firewalling. Provide a Detailed Bill of Materials, covering vendor/platform options, sizing, licence models, and costs to Class … network performance engineering, including capacity planning, QoS, and traffic engineering. Strong background in security, including firewalls, VPNs, IDS/IPS, secure segmentation, and Zero Trust architecture. Experience with threat detection/response, SIEM integration, and incident response. Familiarity with compliance frameworks such as ISO 27001, NIST, and GDPR. ...

edge and DMZ hosting, including diagrams, logical and physical topology. Design and agree on Hybrid Connectivity Design Principles and Standards, including DNS-based policy, Zero Trust segmentation, and firewalling. Provide a Detailed Bill of Materials, covering vendor/platform options, sizing, licence models, and costs to Class … network performance engineering, including capacity planning, QoS, and traffic engineering. Strong background in security, including firewalls, VPNs, IDS/IPS, secure segmentation, and Zero Trust architecture. Experience with threat detection/response, SIEM integration, and incident response. Familiarity with compliance frameworks such as ISO 27001, NIST, and GDPR. ...

Management solutions. Define certificate templates and integrate cloud Hardware Security Modules (HSM) with Certificate Authorities for enhanced cryptographic security. Establish infrastructure and rulesets for Zero Trust Network Access (ZTNA) and future VPN solutions. Discover VPN-dependent applications and plan firewall changes to support ZTNA implementation. Collaborate with stakeholders … Netskope administration, and EntraID integration. Skilled in PKI design and lifecycle management, with knowledge of quantum-resistant cryptography and cloud HSM integration. Experience in Zero Trust Network Access (ZTNA) implementation, network segmentation, and VPN migration planning. Collaborative and detail-oriented, with a track record of working across security ...

Management solutions. Define certificate templates and integrate cloud Hardware Security Modules (HSM) with Certificate Authorities for enhanced cryptographic security. Establish infrastructure and rulesets for Zero Trust Network Access (ZTNA) and future VPN solutions. Discover VPN-dependent applications and plan Firewall changes to support ZTNA implementation. Collaborate with stakeholders … administration, and EntraID integration. Skilled in PKI design and life cycle management, with knowledge of quantum-resistant cryptography and cloud HSM integration. Experience in Zero Trust Network Access (ZTNA) implementation, network segmentation, and VPN migration planning. Collaborative and detail-oriented, with a track record of working across security ...

high-growth consultancy.? Role overview Hybrid (South East/Central London base), you will lead solution design from RFP through to deployment, ensuring zero-trust security, scalability and TCO optimisation across MSP service towers. Leverage your defence/MSP background to architect for cleared clients requiring SC compliance … workshops, crafting HLDs/LDLs for cloud-native (Azure/AWS), hybrid infra, SD-WAN and managed security solutions.? Design secure, compliant architectures with zero-trust, IAM, endpoint protection and SIEM integrations for SC-cleared environments.? Support pre-sales with TCO models, PoCs and RFI responses; collaborate with ...

Senior Security Engineer Focus: Cloud First/Zero Trust/Azure/Identity Management/Security Principles Salary: £90,000 + 20% Bonus + 20% Pension Location: Central London – Hybrid Join a prestigious, family-run financial organisation embarking on a large-scale digital transformation. With around 500 employees … security and DLP You don’t need experience in all areas , but you’ll be instrumental in driving the business towards a cloud-first, zero-trust model, taking stakeholders on the journey. Experience Required: Broad experience as a Cyber Security Generalist, covering multiple domains Ability to implement best ...

most suitable patterns for authentication, authorisation and federation. The role suits someone who combines strong identity knowledge with an understanding of secure cloud environments, Zero Trust models and enterprise scale access controls. You will also help ensure identity services align with programme governance and broader security requirements. Required … Deep knowledge of identity standards including SAML, OAuth2, OpenID Connect and SCIM Experience designing identity components across Microsoft and Azure environments Good understanding of Zero Trust Architecture and Conditional Access Familiarity with Secure Enclaves and hardened environments Ability to produce clear and structured design documentation Experience working with ...

Responsibilities Develop and implement network architecture for Cisco ACI and NSX-T environments. Design and optimize Firewall solutions (Cisco ASA & Checkpoint) aligned with Zero Trust principles. Assess current Firewall rule base and migrate to NSX Distributed Firewall (DFW). Consolidate physical to virtual Firewall environments. Utilize tools such … Cisco ACI: Architecture, Design, and Operations VMware NSX-T: Architecture, Design, and Operations Firewalls: Cisco ASA & Checkpoint expertise Routing: Strong understanding of BGP Security: Zero Trust principles Automation: Familiarity with Scripting and IaC tools Excellent communication and stakeholder management skills Strong technical writing and documentation abilities Ability ...

most suitable patterns for authentication, authorisation and federation. The role suits someone who combines strong identity knowledge with an understanding of secure cloud environments, Zero Trust models and enterprise scale access controls. You will also help ensure identity services align with programme governance and broader security requirements. Required … Deep knowledge of identity standards including SAML, OAuth2, OpenID Connect and SCIM • Experience designing identity components across Microsoft and Azure environments • Good understanding of Zero Trust Architecture and Conditional Access • Familiarity with Secure Enclaves and hardened environments • Ability to produce clear and structured design documentation • Experience working with ...

everything from product strategy to user experience. Over 180,000 businesses, from Fortune 100 leaders to the world’s most innovative AI companies, trust 1Password to help their teams securely adopt the SaaS and AI tools they need to do their best work. If you're excited about … Bachelor's or Master’s degree in Marketing, Business, or a related technical field. Product marketing or cybersecurity certifications (e.g., Pragmatic Institute, PMA, Security+, Zero Trust frameworks). Experience working at cybersecurity vendors in identity, PAM, passwordless, or endpoint security spaces. Experience & Expertise 8+ years of B2B SaaS ...

operate alongside the existing Network Architect and play a key role in proof of concepts, pilot programmes, BAU transitions, and new initiatives like Zero Trust, NAC, and SD-WAN. If you're a Senior Network Engineer ready to make the step into architecture or a hands-on Network … engineering or network architecture Strong expertise with Cisco Meraki – design, rollout, and troubleshooting Experience producing high-quality network documentation (HLD, LLD, Confluence) Familiarity with Zero Trust, SD-WAN, or NAC principles Experience supporting large, distributed network environments (ideally multi-site or retail) Salary: £70,000–£80,000 (depending ...

operate alongside the existing Network Architect and play a key role in proof of concepts, pilot programmes, BAU transitions, and new initiatives like Zero Trust, NAC, and SD-WAN. If you're a Lead Network Engineer ready to make the step into architecture or a hands-on Network … DHCP, TCP, and BGP Strong expertise with Cisco Meraki – design, rollout, and troubleshooting Experience producing high-quality network documentation (HLD, LLD, Confluence) Familiarity with Zero Trust, SD-WAN, or NAC principles Experience supporting large, distributed network environments (ideally multi-site or retail) The role is remote with ...

clients cyber risk management and incident response programmes. What you will do The Identity and Access Senior Architect will be part of the Digital Trust team, and will be responsible for maintaining the identity and access management (IAM) security of the firms assets. This role is critical in translating … security certifications e.g. CISSP, SABSA, TOGAF. Legal or professional services experience is highly desirable. Knowledge of additional cloud platforms e.g. AWS, GCP. Experience with zero trust architecture implementation and least privilege principles. Background in application security and secure SDLC practices Should you require additional support at any stage ...

partnerships. Networking Architecture & Operations Enhance office and cloud networking, focusing on routing, firewalls, SD WAN, and VPN. Manage cloud networking solutions and implement Zero Trust designs to boost security. Who You Are: You're a proactive leader with a Bachelor's in Computer Science or a related field ...