Enterprise Security Architect / Client Security Lead

Excited to grow your career? Our purpose is to make it easy for people to save and invest for a better future. We are looking for great people to join us, so please come and invest in YOUR future at Hargreaves Lansdown.

About the role

We are seeking an experienced Enterprise Security Architect to join our rapidly evolving financial services organisation. This role will be instrumental in shaping and securing our digital future as we undergo significant transformation across our technology landscape. The position will focus primarily on securing customer interactions and fraud prevention while championing security-by-design principles across our product development lifecycle. You will be required to have a strategic input into enterprise security architecture, with a direct influence on the security posture of our customer-facing services. Additionally, you will provide mentorship and guidance to our security architects, product security specialists and product development teams.

What you'll be doing

• Strategic Leadership
  • Lead the development and evolution of security architecture frameworks and patterns focusing on customer-facing services and internal systems.
  • Drive the adoption of security-by-design principles across all product development and engineering initiatives.
  • Provide thought leadership in identity and access management (IAM) architecture and fraud prevention technologies for both client and colleague solutions.
• Architecture & Design
  • Design and oversee the implementation of robust security architectures for cloud and cloud-native environments.
  • Develop reference architectures and patterns for secure customer authentication and authorisation flows.
  • Review and approve security designs for critical systems and client-facing applications.
  • Establish security controls and standards for protecting customer data and transactions.
• Digital Transformation
  • Ensure security architecture aligns with agile delivery methods and DevSecOps practices.
  • Design security controls that enable rather than hinder digital transformation initiatives.
  • Develop migration strategies for securing legacy systems during modernization.
• Governance & Risk Management
  • Participate in security governance forums, design authority and architecture review boards.
  • Conduct security architecture assessments and risk analyses.
  • Ensure compliance with regulatory requirements (e.g., GDPR, PSD2, DORA).

About you

• Extensive experience in security architecture, preferably within the Financial Services Industry.
• Proven experience in designing and implementing IAM solutions.
• Deep understanding of cloud security architecture and control (AWS, Azure).
• Experience with modern authentication protocols (OAuth 2.0, OIDC, SAML) and fraud prevention technologies.
• Extensive knowledge and expertise on securing mobile apps, API transactions and system integrations with optimal combination of security capabilities.
• Knowledge of application cryptography, PKI infrastructure and use of mobile TEE.
• Strong communication and stakeholder management skills, with the ability to translate complex technical concepts for non-technical audiences.
• Able to work under pressure in a fast paced, transformation-focused environment.
• Bachelor's degree in Computer Science, Information Security, or related field.
• Relevant security/cloud certifications (e.g., CISSP, TOGAF, SABSA, CCSP).

Interview process

This will be a 3-stage interview process, consisting of competency and behavioural based interviews and a technical assessment.

Working Schedule

We are based in Bristol, BS1 5HL. This role is permanent, full time, 37.5 hours per week, Monday to Friday. We have returned to the office, however for this role we offer a flexible working pattern to enable you the option of working from home and coming into the office occasionally (12 visits per year).

Why us?

Here at HL, we're the UK's number 1 investment platform for private investors, based in Bristol. For more than 40 years we've helped investors save time, tax and money on their investments. To achieve our mission, we believe we have a workplace like no other, with constant learning, dynamic teams, and a great ethos. We're steered by core values that promote service, quality, innovation, and opportunity in everything we do.

What's on offer?

• Discretionary annual bonus* and annual pay review.
• 25 days* holiday plus bank holidays and 1-day additional Christmas closure.
• Option to purchase an additional 5 days holiday**.
• Flexible working options available, including hybrid working.
• Enhanced parental leave.
• Pension scheme up to 11% employer contribution.
• Income Protection and Life insurance (4 x salary core level of cover).
• Private medical insurance*.
• Health care cash plans - including optical, dental, and outpatient care.
• Health screening programme.
• Confidential support including mental health counselling and remote GP.
• Wellhub - unlimited access to fitness providers and wellness coach sessions.
• Variety of travel to work schemes with bike storage and shower facilities.
• Inhouse barista and deli serving subsidised coffee and sandwiches.
• Two paid volunteering days per year.

Hargreaves Lansdown is an inclusive employer that values diversity in its workforce. We encourage applications from all individuals without regard to race, religion, gender, sexual orientation, national origin, disability or age. This role may also be available on a flexible working or part time basis - please ask the Recruitment & Onboarding team for more information. Please note, we are unable to provide employment sponsorship to candidates.