Zero Trust Security Architect - London

Role: Zero Trust Security Architect

Career Level: Consultant / Manager

Location: London

Travel/Mobility Requirement: Flexibility to travel to client site where required.

Please Note: Due to the nature of client work you will be undertaking, you will need to be willing to go through a Security Clearance process as part of this role, which requires 5+ years UK address history at the point of application.

In our team you will learn:

• How to design, implement, and optimise enterprise-scale Zero Trust security architectures.
• You will gain hands-on experience with leading Zero Trust platforms such as Zscaler and develop a strong understanding of modern identity-centric, cloud-first security models.
• Working alongside cross-functional teams, you will help to shape secure architectures, define strategic roadmaps, and support secure transformation across networks, applications, and endpoints.

As a Zero Trust Architect, your responsibilities will include:

• Architecture & Design

• Leading the design and implementation of Zero Trust architectures for enterprise environments, covering users, devices, applications, and data.
• Establishing secure access patterns using cloud-based security and zero-trust platforms (e.g., Zscaler ZIA, ZPA, ZDX).
• Creating enterprise-wide security blueprints and reference architectures aligned with Zero Trust principles (NIST 800-207, CISA).
• Designing scalable identity-centric security controls using SSO, MFA, device posture, and least-privilege access models.
• Collaborating with networking teams to modernize WAN and remote access using cloud security and SASE frameworks.

• Deploying, configuring, and optimising Zero Trust technologies, including: Policy creation and fine-tuning (e.g., URL filtering, DLP, CASB, FWaaS).
• Managing App segmentation and connector deployment.
• Zero Trust Client Connector configuration and rollout.
• Integrating Zero Trust solutions with identity providers (Entra AD, Okta), SIEM/SOAR systems, and endpoint platforms such as CrowdStrike etc.
• Collaborating with infrastructure teams to migrate legacy VPN, proxy, and firewall solutions to cloud native Zero Trust models.
• Conducting proof-of-concept evaluations and technical validation sessions.

• Driving the organization’s Zero Trust strategy and security roadmap.
• Providing architectural governance and ensuring security best practices across projects.
• Conducting threat modelling, gap assessments, and risk evaluations for critical applications and network paths.
• Advocating for the adoption of modern security frameworks and secure-by-design principles.

• Troubleshooting Zero Trust deployment issues, performance concerns, and identity-related access failures.
• Monitoring and tuning telemetry, logs, and analytics to maintain optimal operational performance.
• Providing technical mentorship and training to internal security and networking teams.

The following skills and experience are essential for this role:

• Technical Expertise

• 5–10+ years of experience in cybersecurity architecture or senior engineering roles.
• Strong hands-on expertise with: Zscaler ZIA, ZPA, ZDX or similar Zscaler Client Connector App Connectors, Cloud Firewall, Cloud Sandbox, DLP, CASB.
• Deep understanding of: Zero Trust frameworks (NIST 800-207, SASE, SSE), Identity and access management (Azure AD, Okta, Ping), Modern network design (SD-WAN, DNS security, routing fundamentals), Endpoint security (EDR/XDR, device posture assessment).

• Strong communication and stakeholder management skills.
• Ability to translate complex security concepts into business-friendly language.
• Experience working within large, matrixed enterprises.
• Proven ability to lead cross-functional initiatives.

Set yourself apart:

• By showcasing the following: Zscaler Certification (ZCCA-IA, ZCCA-PA, ZCCP), CISSP, CCSP, or similar security credentials, Cloud certifications in Azure, AWS, GCP (highly desirable), Certifications from other leading SASE/SSE vendors, such as Palo Alto Prisma, Netskope are advantageous, Network certification such as CCNA or equivalent.

What’s in it for you:

At Accenture in addition to a competitive basic salary, you will also have an extensive benefits package which includes 25 days’ vacation per year, private medical insurance and 3 extra days leave per year for charitable work of your choice! Flexibility and mobility are required to deliver this role as there may be requirements to spend time onsite with our clients and partners to enable delivery of the first-class services we are known for.