SC Cleared Security Architect - Contract - 12 Months Initially - Remote

Curo Services
Luton, United Kingdom
2 days ago

Role details

Contract type
Temporary contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English

Job location

Remote
Luton, United Kingdom

Tech stack

Azure
Business Software
Cloud Computing
Cloud Computing Security
Configuration Management
Computer Security
Identity and Access Management
Information Systems Security Architecture Professional
Key Management
Network Security
Microsoft Security Essentials
Zero Trust Network Access
Sherwood Applied Business Security Architecture
Security Information and Event Management
Data Logging
Software Security
Technical Debt
Togaf
SC Clearance
Network Server
Legacy Systems

Job description

SC Cleared Security Architect - Contract - 12 Months Initially - Remote

Role: SC Cleared Security Architect Start Date: ASAP Duration: 12 Months Day Rate: Competitive IR35: Inside (PLEASE NOTE: Employer NI is paid for by the client) Location: Remote (rare on-site visits to Luton)

Security Clearance: SC clearance is highly desirable

Summary: The ideal candidate will be an experienced and highly technical Security Architect with a hands on background and strong Information Assurance (IA) capability. The role spans a wide range of initiatives, including security for security based projects as well as security governance for business applications. A broad and deep technical knowledge base is essential, particularly in: Identity, Zero Trust, Azure, Network Security, and Application Security. The Security Architect must operate at pace and make risk informed decisions in complex delivery environments.

Key Responsibilities: Security Architecture & Technical Leadership:

  • Lead the design and assurance of security architectures supporting obsolescence remediation, including upgrades, platform replacements, migrations, and decommissioning.
  • Provide hands on technical oversight for Legacy on premise systems transitioning to cloud or hybrid architectures.
  • Define secure target architectures aligned to enterprise standards, cloud best practices, and obsolescence strategies.
  • Act as the senior security authority across multiple concurrent programmes.
  • Produce reusable security design patterns, blueprints, and architectural artefacts.

Information Assurance & Risk Management:

  • Conduct risk assessments, threat modelling, and impact analysis for end of life or obsolete technologies.
  • Identify residual risks and define pragmatic remediation or risk acceptance approaches aligned with organisational risk appetite.
  • Ensure Information Assurance principles are Embedded throughout design, implementation, and transition.
  • Provide formal security sign off and assurance artefacts for governance forums.

Cloud & Hybrid Security (Azure Focus):

  • Define and validate security requirements for cloud platforms-particularly Microsoft Azure.
  • Ensure secure-by-design principles across identity, networking, data, workloads, and platform services.
  • Support migrations from traditional datacentre environments to Azure, ensuring continuity of security controls.
  • Advise delivery teams on Azure-native security services and shared responsibility models.

Security Controls & Tooling:

  • Define and oversee implementation of controls across:
  1. Identity & Access Management (IAM)
  2. Network security & segmentation
  3. Encryption & key management
  4. Logging, monitoring & SIEM
  5. Vulnerability and configuration management
  • Lead tooling modernisation, prioritising Microsoft native tooling where appropriate.
  • Ensure Legacy controls are replaced, updated, or retired as part of remediation activity.

Governance, Compliance & Collaboration:

  • Ensure alignment with security standards and regulations (ISO 27001, NIST, GDPR) and internal policies.
  • Work with infrastructure, cloud, application, and programme teams to embed secure-by-design principles.
  • Support audits, compliance reviews, and regulatory assessments of transitioning systems.
  • Produce high-quality documentation, architectural artefacts, and technical decision records.

Essential Skills & Experience:

  • Experience in the UK Defence sector, including operation at OFFICIAL SENSITIVE classification levels.
  • Strong understanding of UK GOV Secure by Design principles.
  • Demonstrable ability to make timely, risk based decisions in complex delivery environments.
  • Extensive experience as a Security Architect on large-scale modernisation or obsolescence programmes.
  • Deep technical background across on-premise enterprise architectures: networks, Servers, identity, Legacy systems.
  • Strong expertise transitioning organisations from on premise to public cloud (Azure).
  • Hands on proficiency in:
  1. Cloud security architectures
  2. IAM
  3. Network and workload security
  4. Encryption & data protection
  • Strong Information Assurance experience in regulated and risk sensitive environments.
  • Proven ability to work across multiple programmes simultaneously.
  • Excellent communication, stakeholder engagement, and documentation skills.

Preferred Qualifications:

  • Certifications such as: CISSP, CCSP, SABSA, TOGAF, Azure Security certifications.
  • Experience with Microsoft security tooling: Microsoft Defender, Sentinel, Entra ID, Azure Policy.
  • Background in environments with significant Legacy technical debt and time-critical remediation.

To apply for this Security Architect contract job, please click the button below and submit your latest CV.

Curo Services endeavours to respond to all applications, however this may not always be possible during periods of high volume. Thank you for your patience.

Curo Services is a trading name of Curo Resourcing Ltd and acts as an Employment Business for contract and temporary recruitment as well as an Employment Agency in relation to permanent vacancies.

Requirements

  • Experience in the UK Defence sector, including operation at OFFICIAL SENSITIVE classification levels.
  • Strong understanding of UK GOV Secure by Design principles.
  • Demonstrable ability to make timely, risk based decisions in complex delivery environments.
  • Extensive experience as a Security Architect on large-scale modernisation or obsolescence programmes.
  • Deep technical background across on-premise enterprise architectures: networks, Servers, identity, Legacy systems.
  • Strong expertise transitioning organisations from on premise to public cloud (Azure).
  • Hands on proficiency in:
  1. Cloud security architectures
  2. IAM
  3. Network and workload security
  4. Encryption & data protection
  • Strong Information Assurance experience in regulated and risk sensitive environments.
  • Proven ability to work across multiple programmes simultaneously.
  • Excellent communication, stakeholder engagement, and documentation skills., * Certifications such as: CISSP, CCSP, SABSA, TOGAF, Azure Security certifications.
  • Experience with Microsoft security tooling: Microsoft Defender, Sentinel, Entra ID, Azure Policy.
  • Background in environments with significant Legacy technical debt and time-critical remediation.

About the company

Curo Services is a trading name of Curo Resourcing Ltd and acts as an Employment Business for contract and temporary recruitment as well as an Employment Agency in relation to permanent vacancies.

Apply for this position