Security Architect

Security Architect (Permanent) – Active SC Clearance

Overview

An opportunity for an experienced Security Architect to join a high-performing security function supporting UK Government / public sector-aligned environments. This role is ideal for someone with active Security Check (SC) clearance and proven experience delivering security architecture across organisations such as the Ministry of Justice (MOJ), Cabinet Office, Home Office, or closely aligned environments.

You’ll work with senior technical and non-technical stakeholders to design, assure and govern secure solutions across cloud, on‑prem and hybrid platforms-ensuring alignment with UK Government security standards and risk appetite.

Role Details

• Type: Permanent
• Clearance: Active SC required
• Sector: UK Government / MOJ / Cabinet Office / Home Office-aligned programmes
• Location / Working Pattern: (Insert site location + hybrid expectations)
• Salary: DOE

Key Responsibilities

• Produce and own security architecture across programmes, platforms and services (new and existing).
• Lead architecture assurance and governance activities, including security design reviews and technical risk assessments.
• Develop and maintain security patterns, reference architectures, and control frameworks for consistent delivery.
• Translate business and operational requirements into secure-by-design technical solutions.
• Perform and document threat modelling, security risk analysis, and mitigations (including residual risk).
• Work closely with engineering, infrastructure, network, and application teams to embed security into delivery lifecycles (DevSecOps where applicable).
• Support security accreditation / assurance activity and relevant documentation (e.g., security cases, risk treatment plans, architecture packs).
• Engage with stakeholders across programmes including delivery leads, technical authorities, and governance boards.

Essential Skills & Experience

• Active SC clearance (must be current).
• Proven experience as a Security Architect within UK Government / Justice / Home Affairs-aligned environments (e.g., MOJ, Cabinet Office, Home Office, agencies, arm’s-length bodies, policing, or CNI with comparable governance).
• Strong understanding of security architecture principles across:
• Cloud security (Azure/AWS/GCP) and hybrid environments
• Network & infrastructure security (segmentation, boundary controls, secure connectivity)
• Identity & access management (SSO, MFA, PAM, RBAC/ABAC concepts)
• Endpoint / server hardening and secure platform baselines
• Working knowledge of relevant standards and frameworks such as:
• NCSC guidance / CAF, ISO 27001/27002, NIST (where relevant)
• Experience producing clear, client-ready documentation: HLD/LLD security inputs, architecture diagrams, design decisions, risk/controls mapping.
• Strong stakeholder management skills-comfortable challenging designs and influencing technical direction.

Desirable (Nice to Have)

• Experience with UK Government security governance (e.g., architecture boards, service assessments, secure-by-design reviews).
• Knowledge of protective monitoring / SIEM concepts and how logging/telemetry should be architected.
• Exposure to Zero Trust principles and modern security patterns.
• Relevant certifications:
• SABSA, CISSP, CCSP, CISM, CCSK, ISO 27001 Lead Implementer/Auditor, Azure/AWS security certs.