Security Architect

Role Title: Security Architect

Duration: contract to run until 30/09/2026

Location: London or Southampton hybrid working 3 days per week onsite

Rate: up to £496.80 p/d Umbrella inside IR35

Role purpose / summary

Architecture & Design: Develop secure architectures and reference patterns across cloud, infrastructure, applications, and data platforms. Ensure alignment with business goals, risk appetite, and regulatory requirements.
Solution Delivery: Provide architectural guidance during project lifecycle (HLD/LLD), review designs, and ensure solutions meet security requirements.
Risk & Threat Management: Conduct threat modelling, assess vulnerabilities, and ensure appropriate mitigating controls are designed and implemented.
Governance & Standards: Define and maintain security policies, standards, and guardrails. Ensure adherence to architectural principles and regulatory obligations (e.g., GDPR, FCA).
Collaboration: Partner with engineering, cloud, network, IAM, and operational teams to embed secure by design principles and resolve architecture level issues.
Security Tooling & Controls: Evaluate and guide the adoption of security technologies including IAM, encryption, network security, detection/response, and cloud-native controls.
Incident Support: Provide architectural expertise during incidents, investigations, and post incident reviews.
Continuous Improvement: Monitor emerging threats, technologies, and patterns to enhance the organisation's security posture.

Required Skills & Experience:

5+ years in security architecture or security engineering roles.
Strong understanding of security protocols, authentication/authorization models, encryption, identity management, and cloud security patterns.
Experience producing high quality architecture documentation (HLD/LLD, patterns, data flows).
Hands on understanding of cloud environments (Azure/AWS/GCP), networks, applications, and data protection.
Familiarity with threat modelling, risk assessment, and regulatory compliance.
Excellent communication skills, able to explain complex security topics to technical and non-technical audiences.
Technical standards, security patterns, baseline security configurations
Cloud first (ideally Azure) environments, strong identity and data security understanding
Cloud policy definition to support 'policy as code' implementations
3rd party connectivity, material outsourcing and integrated SaaS environments
Threat and risk-led security (e.g. Mitre Attack)
DevSecOps
Control maturity assessments, control mapping

Preferred Qualifications:

Certifications such as CISSP, CISM, SABSA, AWS/Azure Security, or Cybersecurity Architect Expert.
Experience in financial services or other regulated industries.
Knowledge of DevSecOps, API security, and secure software delivery.

All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply