Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead secure design and threat modelling for cloud and hybrid architectures.
- Company: Join a leading organisation focused on security in digital projects.
- Benefits: Remote work, competitive salary, and opportunities for professional growth.
- Why this job: Make a real impact by embedding security in innovative projects.
- Qualifications: Active SC clearance and experience in secure-by-design principles required.
- Other info: Work in a dynamic environment with occasional travel to London.
The predicted salary is between 60000 - 80000 £ per year.
As Security Architect, you will be supporting digital and infrastructure projects by ensuring that security considerations are embedded from the outset. You will advise engineering teams and senior stakeholders on secure design, oversee cloud architecture (primarily Azure), and ensure compliance with government policies and recognised standards. The role will involve threat modelling, writing and maintaining security policies and embedding Secure by Design principles to meet standards such as ISO27001 and BS10008. Working closely with security and technical leads, you will also be involved in internal and external IT health checks and contribute to upcoming workstreams in business continuity management, service resilience, service management and auditing.
Key responsibilities
- Secure design & threat modelling: Lead the design and review of cloud, on-premise and hybrid architectures; perform threat modelling and identify vulnerabilities. Ensure solutions adhere to security frameworks such as ISO27001, NCSC standards and GDPR and incorporate secure by design principles.
- Policy and assurance: Draft and maintain security policies and procedures to meet ISO27001 and BS10008 requirements. Develop reusable security patterns and coordinate evidence for national assurers and continuous assurance programmes, including internal and external IT health checks.
- Guidance & risk management: Provide specialist advice on security controls, risk assessments and technology choices. Support business continuity, service resilience, service management and auditing workstreams by integrating security considerations into planning and operations.
- Collaboration & communication: Communicate security principles effectively to stakeholders and influence decision-making across multidisciplinary teams. Engage with partners and vendors to align solutions with best practice and regulatory requirements.
- Resilience & incident support: Contribute to incident response, disaster recovery and continuity planning by ensuring that architecture and processes support resilient operations.
Essential requirements
- Security Check (SC): Candidates must hold active SC clearance.
- Secure-by-design experience: Demonstrable experience embedding secure-by-design principles in software development or system integration projects.
- Technical expertise: Broad knowledge of secure system design, cloud and hybrid architectures, threat modelling, identity and access management, networking and cryptography.
- Risk and compliance: Experience applying governance, risk and compliance frameworks (ISO27001, NIST, NCSC) and translating the CIA triad into practical controls.
- Communication and leadership: Able to articulate complex security concepts to stakeholders and influence decisions; collaborate across multidisciplinary teams and support colleagues during assurance activities.
Desirable
- Recognised security certification (e.g., CISSP, CISM, CISA, CCSP).
- Demonstrable ability to write security policies and procedures that comply with ISO27001 and BS10008.
- Experience with assurance frameworks such as GovAssure and the NCSC Cyber Assessment Framework; familiarity with internal and external audit processes and IT health checks.
- Knowledge of Business Continuity Management, Service Resilience and Service Architecture practices.
- Understanding of policing or justice-sector requirements and the unique challenges of working with classified police information.
- Experience working within government or regulated environments is a plus.
This role will fall Inside IR35 and is only open to candidates with sole UK Nationality and a current and valid UK Government SC Clearance or above. The role will be remote with very occasional travel to London offices. Candidates must be UK based. Please do not apply if you cannot meet these requirements as you will not be eligible and cannot be considered.
Security Architect employer: Apsley Recruitment Ltd
Contact Detail:
Apsley Recruitment Ltd Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Architect
✨Tip Number 1
Network like a pro! Reach out to your connections in the security field, especially those who work in roles similar to the Security Architect position. A friendly chat can lead to insider info about job openings or even referrals.
✨Tip Number 2
Show off your skills! Prepare a portfolio or case studies that highlight your experience with secure design and threat modelling. When you get the chance to chat with potential employers, share these examples to demonstrate your expertise.
✨Tip Number 3
Stay updated on industry trends! Follow relevant blogs, podcasts, and forums to keep your knowledge fresh. This will not only help you in interviews but also show employers that you're passionate about the field.
✨Tip Number 4
Apply through our website! We make it easy for you to find and apply for roles that match your skills. Plus, it shows you're serious about joining our team and helps us keep track of your application.
We think you need these skills to ace Security Architect
Some tips for your application 🫡
Tailor Your Application: Make sure to customise your CV and cover letter to highlight your experience with secure-by-design principles and cloud architectures. We want to see how your skills align with the role, so don’t hold back on showcasing relevant projects!
Show Off Your Technical Know-How: When detailing your experience, be specific about your technical expertise in areas like threat modelling and compliance frameworks. We love seeing candidates who can articulate complex security concepts clearly, so let your knowledge shine through!
Keep It Clear and Concise: While we appreciate detail, make sure your application is easy to read. Use bullet points for key achievements and keep paragraphs short. This helps us quickly grasp your qualifications and makes a great first impression!
Apply Through Our Website: We encourage you to submit your application directly through our website. It’s the best way to ensure your application gets into the right hands and shows us you’re serious about joining our team at StudySmarter!
How to prepare for a job interview at Apsley Recruitment Ltd
✨Know Your Security Frameworks
Make sure you’re well-versed in security frameworks like ISO27001 and NCSC standards. Be ready to discuss how you've applied these in past projects, especially in relation to secure design and threat modelling.
✨Showcase Your Communication Skills
As a Security Architect, you'll need to communicate complex security concepts to various stakeholders. Prepare examples of how you've influenced decision-making in multidisciplinary teams and how you’ve effectively communicated security principles.
✨Prepare for Technical Questions
Expect technical questions about cloud architecture, particularly Azure, and secure system design. Brush up on your knowledge of identity and access management, networking, and cryptography to demonstrate your expertise.
✨Demonstrate Your Policy Writing Skills
Be prepared to discuss your experience in drafting and maintaining security policies. Bring examples of policies you've written that comply with ISO27001 and BS10008, and be ready to explain the process you followed to create them.