Information Security Architect

Job Description To support the Chief Information Security Officer in managing and reporting the Information Security Risks faced by Technology Services (TS) in delivering AJ Bell's systems and services. This role is responsible for facilitating the secure delivery of AJ Bell's technology and business change. The Information Security Architect will play a lead role in designing and implementing security controls and processes. Key to this is assisting and supporting our colleagues in achieving their goals, but in a secure manner. The key responsibilities of the role are: Subject matter expertise for security best practice, ensuring the maintenance of the confidentiality, integrity and availability of AJ Bell's systems and data. Design and implementation of enterprise security technology controls and platforms, following industry best practices. Supporting and advising on projects and change initiatives to ensure that there is no negative impact on our security posture Carrying out internal security reviews both on solutions we develop in house and third-party solutions. Supporting audit and due diligence activities within Technology Services Working with Information Security, Infrastructure and Architecture to define security standards. Acts as an integration point between the CISO and AJ Bell business and technology teams to ensure security is embedded across the organisation Technical Skills: Demonstrable experience of implementing enterprise security platforms Previous experience of delivering and maintaining of technical enterprise security solutions for (but not limited to) the following areas: End Point Protection, Cloud Security, Network Security, DevOps, Security Monitoring & Remediation is advantageous. Knowledge of Secure Software Development Life Cycle best practices Strong understanding and knowledge of Information Security risk management tools and techniques Experience of security governance and compliance, ideally gained in financial services organisations Demonstrable understanding of Information Security control standards and frameworks e.g. ISO27001, NIST, PCI DSS Awareness and understanding of the Information Security threat landscape Deep understanding of Information Security solutions and controls Experience of Cloud security solutions and standards is highly advantageous Competence, knowledge, and skills Competence Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. 5 years' experience in an Information Security role gained in a financial services or e-commerce environment is preferred Knowledge & Skills Excellent communicator, able to translate complex topics to all areas of the business Significant experience in the area of Information security Strong knowledge of core IT and networking concepts Well versed in IT security capabilities, framework and concepts Strong ownership of tasks, attention to detail and, following through to conclusion Ability, The Information Security Architect will support the Chief Information Security Officer in managing Information Security Risks and facilitate secure technology delivery. This includes designing and implementing security controls and processes while advising on projects to maintain security posture.

Information Security, Security Best Practices, Enterprise Security, Cloud Security, Network Security, DevOps, Security Monitoring, Risk Management, Compliance, ISO27001, NIST, PCI DSS, Secure Software Development, Communication, Attention to Detail, Technical Solutions, to challenge approach, strategy and implementation to ensure Information Security is consistently considered and improved Ability to work under own initiative to plan and communicate effectively with colleagues and customers Structured, self-starting, flexible and enjoy working in fast-paced environments Effective communication skills, both written and verbal Ability to plan, organise and follow through on assigned tasks and complete with little or no prompting from management Excellent attention to detail Attained CISSP or similar certification About us: AJ Bell is one of the fastest-growing investment platform businesses in the UK offering an award-winning range of solutions that caters for everyone, from professional financial advisers to DIY investors with little to no experience. We have over 644,000 customers using our award-winning platform propositions to manage assets totalling more than £103.3 billion. Our customers trust us with their investments, and by

continuously striving to make investing easier, we aim to help even more people take control of their financial futures. Having listed on the Main Market of the London Stock Exchange in December 2018, AJ Bell is now a FTSE 250 company. Headquartered in Manchester with offices in central London and Bristol, we now have over 1,500 employees and have been named one of the UK's 'Best 100 Companies to Work For' for six consecutive years and in 2025 named a Great Place to Work®. At AJ Bell you can expect a friendly working environment with a strong sense of teamwork, we have a great sense of pride in what we do, and this is reflected in our guiding principles. Our perks and benefits: Starting holiday entitlement of 26 days, increasing up to 31 days with length of service and a holiday buy and sell scheme A choice of pension schemes with matched contributions up to 7% Discretionary bonus scheme Annual free share awards scheme Buy As You Earn (BAYE) Scheme Health Cash Plan - provided by SimplyHealth Discounted private healthcare scheme and dental plan Free on-site gym providing a wide range of free classes Employee Assistance Programme Bike loan scheme Sick pay+ pledge Enhanced maternity, paternity, and shared parental leave Discounted nursery fees at Kids Planet on Exchange Quay Loans for travel season tickets Death in service scheme Paid time off for volunteer work Charitable giving opportunities through salary sacrifice Calendar of social events, including monthly payday drinks, annual Christmas party, summer party and much more Parking at Exchange Quay (Subject to availability) Personal development programmes built around you and your career goals, including access to personal skills workshops Ongoing technical training Professional qualification support Talent development programmes Peer recognition scheme, with rewards including restaurant and shopping vouchers or time off Monthly leadership breakfasts and lunches Casual dress code Access to a range of benefits from our sponsorship deals Hybrid working: At AJ Bell, our people are the heart of our culture. We believe in building strong connections by working together. That's why we offer a hybrid working model, where you'll spend a minimum of 50% of the month in the office. For new team members, the first 3 months will be spent full-time in the office to help you immerse yourself in our business and build valuable relationships with your colleagues. AJ Bell is committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and all employees are empowered to bring their whole self to work. We do not discriminate on the basis of race, sex, gender identity, sexual orientation, age, pregnancy, religion, physical and mental disability, marital status and any other characteristics protected by the Equality Act 2010. All decisions to hire are based on