Lead Security Architect in Wolverhampton

Here at the Ministry of Housing and Local Communities (MHCLG), we work on things that make a real difference to people's lives. Whether it's through the homes we live in, the work of our local councils, or the communities we're all a part of, our work is at the top of the political agenda. We have ambitious and far-reaching outcomes to achieve this year and, if you're thinking of joining us, there's never been a more exciting time. We have circa 3,500 staff who are based in 20 offices across the UK.

We are looking for a highly skilled Lead Security Architect to shape and deliver our organisation's security architecture strategy. You will ensure our digital and cloud services are secure, resilient, and aligned with government standards, working across Azure and AWS environments.

• Set security architecture direction, standards, and governance approach.
• Set direction and contribute to, as well as create, reusable cloud design patterns that embed security standards and controls, while providing expert security architecture guidance and advice.
• Collaborate with Enterprise Architects, Platform Architects, and Cyber Security teams.
• Embed secure by design principles across programmes and projects.
• Conduct design reviews for projects and platform teams artefacts ensuring alignment with security best practices, standards and policies.
• Lead the design and assurance of secure system architectures, defining reusable patterns, principles, and guardrails for complex cloud and network services in collaboration with Enterprise Architects.
• Act as a trusted technical advisor to product, cyber, architecture, and engineering teams, enabling the delivery of secure, scalable, cloud hosted service.
• Communicate security and risk considerations effectively to both technical and non-technical stakeholders, aligning expectations and building consensus.
• Drive risk based decision making through threat modelling, structured risk assessments, and assurance of major change and transformation initiatives.
• Develop, maintain, and embed architectural standards, policies, and models that align with regulatory and organisational requirements.
• Ensure services adhere to NCSC and wider government Secure by Design principles throughout the delivery lifecycle.
• Provide architectural and security guidance, mentoring, and support; foster a culture of collaboration, inclusion, and continuous improvement across engineering and architecture communities.
• Contribute to the organisation's future state architecture, including cloud migration strategies and platform modernisation initiatives.
• Offer line management, coaching, and thought leadership to build high performing teams and an environment that encourages innovation and professional growth.

Candidates will be asked to prepare a 10-minute presentation, further details will be provided on invitation to interview.

Sifting is envisaged to take place the week commencing 6th April 2026. Interviews are envisaged to take place the week commencing 20th April 2026 and are currently being held remotely via videocall. This could be subject to change.

• Demonstrable track record in designing and assuring secure architectures across premises environments and major cloud platforms (AWS and Azure).
• Strong experience producing enterprise patterns, templates, and reusable architectural designs.
• Deep expertise in AWS/Azure security, governance, architecture practices, and cross-platform service design including AI-related services.
• Strong understanding of security in the SDLC (shift-left), including GitHub, Terraform, Microsoft 365 Defender, Databricks, and Zero Trust.
• In-depth knowledge of security frameworks and regulatory requirements (GDPR, PCI DSS, etc.).
• Expertise in network security: segmentation, firewalls, VPNs, IDS/IPS.
• Familiarity with IAM, SIEM, DLP, encryption, vulnerability management, and SOAR.
• Strong understanding of application security for web, APIs, and microservices, including secure coding and threat modelling.
• Demonstrated leadership within enterprise architecture; able to set standards and guide teams effectively.
• Ability to deliver enterprise architectures and security roadmaps, especially for cloud transformation; strong senior level stakeholder management, professional security or cloud security certifications (e.g., CISSP, SABSA, AWS Security Specialty, Microsoft Cybersecurity Architect Expert).
• Experience applying Secure by Design and GovAssure approaches across government or large federated organisations.
• Experience in AI security, including emerging model threats, data interaction risks, and appropriate mitigation strategies.

The basic pay for this role will be between £61,745 - £72,112 (London), £56,167 - £66,581 (National). Candidates will usually be recruited to the median of the payscale. A digital allowance may also be payable depending on the level of assessed capability.

Benefits alongside your salary include contributions towards you being a member of the Civil Service Defined Benefit Pension scheme. At MHCLG we offer many benefits that range from tailored career pathways and flexible working to MyLifestyle Childcare Voucher and Cycle to Work Schemes.

• Stage 1: Sift (CV) – Experience & Technical. Candidates must align skills and experience as per the person specification.
• Stage 2: Interview – Behaviours, Experience, Technical questions.