Security Architect

We are looking for an individual to join our team supporting ICT system design activities for a UK defence project. You will play an integral role in safeguarding the integrity and confidentiality of our client's data and systems, responsible for designing, implementing, and maintaining security architectures that protect against a wide range of cyber threats., * Designing Security Architecture. This is the core responsibility, involving the creation and oversight of robust security architectures for the ICT capabilities we are designing for our client. This includes planning, designing, building, and maintaining the overall security framework in line with SbD.

• Strategic Alignment. Ensuring that security architectures align with the client's overall business strategy and technology goals. Translate business needs into security requirements.
• Threat and Vulnerability Management. Identifying, assessing, and communicating current and emerging security threats and vulnerabilities. This involves performing or supervising risk analyses and security assessments (including ITHC).
• Security Solution Design and Evaluation. Researching, evaluating, and recommending security technologies, tools (e.g., firewalls, VPNs, IDS/IPS, EDR, SIEM, SOAR), and solutions to mitigate identified threats and address security needs.
• Policy and Procedure Development: Defining, implementing, and maintaining corporate security policies, standards, and procedures to ensure compliance with industry regulations, legal requirements (e.g., GDPR, HIPAA), and best practices.
• Incident Response and Management: Playing a key role in developing incident response plans and coordinating efforts to detect, analyse, and respond to security incidents and breaches.
• Stakeholder Communication and Collaboration: Effectively communicating complex security concepts, risks, and recommendations to diverse technical and non-technical stakeholders, including senior management.

• Degree qualified in Cyber Security, Computer Science, Engineering, or related discipline (or equivalent experience).
• Excellent communication and stakeholder engagement skills, with the ability to influence at senior levels.
• Strong analytical skills with the ability to break down complex security challenges.
• Ability to produce high-quality technical documentation for both technical and non-technical audiences.

Experience:

• 5 years' experience as a Security Architect within UK Defence.
• Deep understanding of computer systems, networking, and cybersecurity principles. They should possess strong analytical and problem-solving skills, as well as the ability to think critically and creatively to identify and address potential security vulnerabilities.
• Knowledge of cybersecurity standards and best practices.
• Ability to design and implement security architectures.
• Ability to stay up-to-date with the latest cybersecurity threats and trends.
• Hands on experience with security technologies such as firewalls, intrusion detection systems, encryption etc.

Standards & Frameworks:

• Experience of MOD security standards and principles (e.g., JSP440, JSP453, Secure by Design), and industry frameworks (e.g., NIST Cyber Security Framework, ISO 27001).
• Professional certifications such as CISSP, CISM, or NCSC Certified Cyber Professional (CCP) [desirable].

People are at the centre of what we do. We offer a competitive package designed to attract and retain talent. In addition to standard benefits, UK employees receive free single medical cover, digital GP services, enhanced family-friendly policies, employee assistance programmes, and reimbursement for professional development. Our community initiatives include matched-funding schemes, paid volunteering, and charitable contributions.

Amentum is a global leader in engineering, project and programme management, and solutions integration. Built on strong programme and engineering delivery experience, supported by deep specialist capabilities, Amentum is a recognised partner across major UK Government and commercial programmes.