Zero Trust Security Architect

A leading global technology and transformation consultancy is looking to hire experienced Zero Trust Security Architects to support large-scale enterprise security transformation programmes across public and private sector clients. This is an opportunity to work on complex, enterprise-grade security environments, helping organisations modernise legacy security architectures and implement cloud-first, identity-centric Zero Trust models.

The Role

You will be responsible for designing, implementing, and optimising enterprise-scale Zero Trust architectures across users, devices, applications, networks, and data. Working closely with cross-functional engineering and security teams, you will help shape secure access strategies, cloud security roadmaps, and modern SASE/SSE environments.

Key Responsibilities

• Design and implement enterprise Zero Trust architectures aligned to modern security frameworks such as NIST 800-207 and SASE/SSE principles

• Deliver secure access solutions using technologies such as Zscaler ZIA, ZPA, and ZDX

• Create enterprise-wide security blueprints, standards, and reference architectures

• Design identity-centric controls using SSO, MFA, conditional access, device posture, and least privilege principles

• Support migration from traditional VPN and perimeter-based security models to cloud-native Zero Trust environments

• Configure and optimise security policies including DLP, CASB, FWaaS, segmentation, and secure web access

• Integrate Zero Trust solutions with identity providers, SIEM/SOAR platforms, and endpoint security tooling

• Conduct threat modelling, risk assessments, and security architecture reviews

• Troubleshoot complex deployment and access issues across enterprise environments

• Provide technical leadership and guidance across security and networking teams

• Strong experience in cyber security architecture or senior security engineering roles

• Hands-on expertise with Zero Trust and SASE technologies such as Zscaler, Netskope, Prisma Access, or similar platforms

• Strong understanding of Zero Trust principles, identity security, and cloud-native security architectures

• Experience with identity and access management technologies including Entra ID, Okta, or Ping

• Good understanding of networking concepts including SD-WAN, DNS security, routing, and secure remote access

• Experience with endpoint security, EDR/XDR platforms, and device posture assessment

• Strong stakeholder engagement and communication skills with the ability to explain technical concepts to both technical and non-technical audiences

• Experience working within large enterprise or consulting environments

Desirable

• Zscaler certifications (ZCCA, ZCCP etc.)

• CISSP, CCSP, or equivalent security certifications

• Cloud certifications across Azure, AWS, or GCP

• Experience with other SSE/SASE vendors such as Palo Alto Prisma or Netskope

• Networking certifications such as CCNA or equivalent

Additional Information

• UK-wide opportunities available with hybrid working

• Candidates must be eligible for Security Clearance (SC)

• No sponsorship available for this position

• Some client site travel may be required depending on project needs

This is an excellent opportunity to join a growing cyber security practice delivering high-profile transformation programmes across complex enterprise environments.