Security Architect

Summary

As a Security Architect supporting a secure system build project, you will be responsible for designing, assuring, and governing the security architecture of critical IT systems. You will ensure that security controls are embedded from inception through delivery, aligning with organisational security standards, regulatory requirements, and industry best practices. This role is integral to safeguarding sensitive information and ensuring the confidentiality, integrity, and availability of systems within a high-assurance environment.

Key Responsibilities

• Design and oversee the implementation of secure architectures across infrastructure, cloud, network, and application components.
• Develop and maintain security architecture artefacts, including security models, control frameworks, and design documentation.
• Conduct threat modelling, risk assessments, and security impact analyses to identify and mitigate potential vulnerabilities.
• Ensure alignment with applicable security frameworks and compliance requirements (e.g., ISO 27001, NIST, CIS, or equivalent).
• Embed security-by-design principles into system build and integration activities.
• Provide architectural oversight during system development, testing, and deployment phases.
• Support accreditation and assurance activities, including documentation for Authorising Officials where required.
• Advise technical teams and stakeholders on secure configuration standards and risk treatment strategies.
• Monitor emerging threats, vulnerabilities, and technologies to continuously strengthen security posture.
• Deliver guidance and awareness sessions to project teams on security best practices.

Qualifications & Experience

• Bachelor’s degree in Computer Science, Information Technology, Cyber Security, or a related discipline (or equivalent experience).
• Minimum 2+ years’ experience in IT security, security architecture, or a related technical security role (senior experience highly regarded).
• Strong understanding of enterprise security architecture, network security, identity management, and cryptographic principles.
• Experience designing secure solutions in complex or regulated environments
• Familiarity with recognised security frameworks and standards (e.g., ISO 27001, NIST, CIS, ISM, or equivalent).
• Demonstrated analytical, risk assessment, and problem-solving capability.
• Excellent written and verbal communication skills, including the ability to produce formal security documentation.
• Relevant certifications such as CISSP, CISM, SABSA, or equivalent are highly desirable.