Network Architect
Role details
Job location
Tech stack
Job description
Security Architect (Infrastructure & Network Security) - freelance - hybrid, London, UK Contract | Comgent | United KingdomPosted On 03/09/2026Job Information Standard Business working Hours YesWork Experience 8-10City LondonState/Province City of LondonN/ASpecial Considerations We are committed to building an inclusive workplace and encourage applications from women and other under-represented groups in tech. All qualified candidates are welcome.Start date: Apr/ May 2026Location: London, UK (Hybrid - minimum 2 days per week in office)Job Description The organisation currently lacks formal security architecture governance at the infrastructure level - there are no documented security standards guiding network or infrastructure design. This role will establish that function, ensuring all new infrastructure designs conform to defined security standards and that the organisation's security posture improves in step with the broader transformation programme. Key responsibilities Define, Global Infrastructure & Cloud Architect; Azure, AWS; London WC2N ; £130,000 + Benefits represents a career-defining opportunity for an energetic technical powerhouse to lead and evolve the foundational technology services of a truly worldwide corporation. Reporting..., Location(s):UK, Europe & Africa : UK : London BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed...
Requirements
and document infrastructure security architecture standards and principles aligned to industry frameworks Review and provide security sign-off on network and infrastructure designs as part of the transformation programme.Key responsibilitiesDefine and document infrastructure security architecture standards and principles aligned to industry frameworks.Review and provide security sign-off on network and infrastructure designs as part of the transformation programme.Identify security gaps across the current environment (network, server, voice, hosting) and produce a prioritised remediation roadmap.Work with the CISO function to establish technical security policies where none currently exist.Evaluate and rationalise the existing security tooling estate (firewalls, network security tools, monitoring).Provide guidance on firewall architecture (Palo Alto migration from ASA, segmentation strategy).Advise on secure cloud architecture and landing zone design for hybrid/multi-cloud environments.Support procurement and vendor selection with security assessment criteria.Requirements Technical RequirementsStrong network security architecture skills: firewall design, micro-segmentation, DMZ architecture, east-west traffic controlPalo Alto Networks (PA-40 series): policy design, migration from legacy ASAUnderstanding of regulatory requirements applicable to financial services (FCA, PRA, JFSA reporting obligations)Knowledge of security frameworks: NIST, ISO 27001, CIS ControlsCloud security: Azure, AWS security architecture, secure landing zonesVulnerability management, threat modelling, and security risk assessmentExperience defining and implementing security policies for hybrid environmentsAdvantageousCISSP, CISM, or equivalent professional qualificationExperience with network automation and security orchestrationFamiliarity with SIEM, NDR, or network observability toolingUnderstanding of trading floor and financial services technology riskAble to operate without pre-existing governance frameworks and build structure from scratchPragmatic risk-based approach to security - able to prioritise and communicate trade-offsStrong stakeholder management skills, including engagement with C-suite and regulatory audiencesCommercial awareness - able to assess security tooling value and total cost of ownership#J-18808-Ljbffr Similar jobs
