AWS Security Architect

Rayo, a UBDS Group company, is seeking a Security Cleared AWS Security Architect to lead the design and implementation of secure cloud solutions. This role is pivotal in ensuring that robust security practices are embedded into every stage of the cloud architecture lifecycle. The successful candidate will have demonstrable expertise in AWS security, threat modelling, compliance alignment, and guiding technical teams to deliver secure and scalable cloud environments.

Key Responsibilities

• Design and maintain secure architectures across new and existing AWS deployments.
• Develop and evolve cloud security reference architectures and frameworks.
• Lead threat modelling sessions, risk assessments, and architecture-level security reviews.
• Define, implement, and enforce security policies, standards, and architectural guardrails for AWS environments.
• Work closely with solution architects, DevOps, and platform engineering teams to embed security controls into CI/CD pipelines.
• Oversee Identity and Access Management (IAM) strategies, ensuring principles of least privilege and segregation of duties.
• Assess, implement, and optimise AWS-native and third-party security tools (e.g., GuardDuty, Security Hub, AWS Inspector).
• Ensure ongoing compliance with relevant frameworks and regulations, including ISO 27001, PCI DSS, and the UK GDPR.
• Conduct periodic architecture reviews and security assessments to identify gaps and recommend enhancements.
• Support incident response activities and lead post-incident reviews to strengthen cloud resilience.
• Remain abreast of emerging cloud threats, AWS security service advancements, and industry best practices.

Requirements

• Active SC (Security Check) Clearance is essential.
• Proven track record of architecting secure AWS environments in complex, regulated settings.
• Deep understanding of AWS security services and architectural best practices.
• Expertise in IAM, encryption, network security, and secure cloud design.
• Strong familiarity with security standards and frameworks such as NIST, CIS Benchmarks, and the Cloud Security Alliance (CSA).
• Certifications such as AWS Certified Security Specialty, AWS Certified Solutions Architect (Professional or Associate), or equivalent.
• Excellent stakeholder engagement, documentation, and communication skills.

Desirable Attributes

• Experience developing multi-cloud security strategies.
• Familiarity with securing Infrastructure as Code (e.g., Terraform, AWS CloudFormation).
• Demonstrated ability to mentor technical teams on cloud security principles.
• Contribution to security communities or open-source security projects.

Benefits

• Training: All team members are offered a number of options in terms of personal development, whether technical led, business acumen or methodologies.
• Private medical cover for you and your spouse/partner, offered via Vitality.
• Discretionary bonus based on a blend of personal and company performance.
• Holiday: You will receive 25 days holiday, plus 1 day for Birthday and 1 day for work anniversary in addition to UK bank holidays.
• Electric Vehicle leasing with salary sacrifice.
• Contributed Pension Scheme.
• Death in service cover.

About UBDS Group

At UBDS Group our mission is to support entrepreneurs who are setting new standards with technology solutions across cloud services, cybersecurity, data and AI, ensuring that every investment advances our commitment to innovation, making a difference, and creating impactful solutions for organisations and society.

Equal Opportunities

We are an equal opportunities employer and do not discriminate on the grounds of gender, sexual orientation, marital or civil partner status, pregnancy or maternity, gender reassignment, race, colour, nationality, ethnic or national origin, religion or belief, disability or age.