Security Architect

The Security Architect plays a key role in safeguarding a global defence technology organisation's products and systems. The successful candidate is responsible for designing and implementing secure architectures, embedding security throughout the software development lifecycle, and ensuring compliance with both regulatory and defence-sector standards.

• Deep understanding of security frameworks (ISO 27001, NIST 800-30/53, OWASP).
• Strong capability in risk assessment, threat modelling, and vulnerability analysis.
• Expertise in secure-by-design principles and secure software development.
• Experience with MOD and HMG security standards (JSP, Def Stan 05-138/139).
• Knowledge of penetration testing, incident response, and remediation.
• Ability to communicate complex security concepts to both technical and non-technical audiences.
• Familiarity with cloud security architectures (AWS, Azure, GCP).
• Strong analytical, documentation, and problem-solving skills., + Degree in Cybersecurity, Computer Science, or a related field (or equivalent experience).
• Certifications such as CISSP, CISM, OSCP, GIAC (preferred but not mandatory).
• Must be eligible for SC security clearance.
• Experience working in defense, government, or high-security environments is a plus.
• Knowledge of cloud security architectures (AWS, Azure, GCP) is advantageous. This is a strategic and technically advanced role - ideal for someone who can bridge deep security engineering expertise with architectural vision and risk governance, ensuring the organisation's defence technologies remain robust, compliant, and resilient.