Enterprise Security Architect

Company Description At Endava, technology is at the heart of everything we do, and how we protect it matters. Enterprise Security Architecture is not just about theory — it’s a key function ensuring we build secure, resilient, and scalable foundations for growth. Company Description At Endava, technology is at the heart of everything we do, and how we protect it matters. Enterprise Security Architecture is not just about theory — it’s a key function ensuring we build secure, resilient, and scalable foundations for growth. We’re building something ambitious, and we need the best people to help us do it. This role places you at the centre of securing how Endava scales, working with a high-calibre team of architects, engineers, cybersecurity experts, and business leaders who don’t just talk about resilience—they deliver it. Job Description We seek a strategic thinker with significant security architecture expertise across enterprise environments including cloud, data, identity, and application security. You will be instrumental in embedding secure-by-design and defence-in-depth principles, enabling risk-aware decision-making across our business. This is a rare opportunity to shape the enterprise security architecture function at scale across a global organisation. If you’re passionate about making security a business enabler, not a blocker, and you want to drive measurable outcomes in a collaborative and empowered environment—let’s talk. Responsibilities Security Architecture Strategy & Governance Define and drive Endava’s enterprise security architecture strategy aligned to business objectives and risk appetite. Develop security blueprints, standards, and architectural patterns for secure infrastructure, applications, data, and integrations. Champion secure-by-design principles across programmes and architectures. Lead security architecture governance, ensuring compliance with regulatory, privacy, and corporate standards. Enterprise-Wide Engagement & Influence Act as a trusted advisor to senior business, technology, and security leaders. Represent security architecture in executive forums, design authorities, and strategic planning workshops. Distill complex security risks into insights for non-technical or non-specialist stakeholders across the business, providing pragmatic guidance. Advocate for proactive security integration across IT and change delivery lifecycles. Architecture Integration & Portfolio Support Collaborate with enterprise and solution architects to embed security into architecture roadmaps and project designs. Contribute to the development of target state architectures that account for cyber resilience and threat landscape evolution. Support gap analysis, threat modelling, and risk assessment activities for major programmes. Provide hands-on guidance for technology selections, design decisions, and trade-off analysis. Security Innovation & Emerging Risk Management Identify and evaluate emerging security technologies and evolving threats (e.g., AI, Zero Trust, post-quantum cryptography). Guide secure adoption of cloud platforms, SaaS, and APIs at scale. Lead security input into pilot projects and proofs of concept. Drive threat-informed decisions to reduce business risk while enabling innovation. Operational Integration & Resilience Engineering Partner with cyber operations, identity and access management, and infrastructure teams to guide consistent security enforcement through architectural standards and principles. Define architecture patterns for data protection, secure access, logging, monitoring, and incident response. Ensure architecture supports resilience objectives including business continuity and disaster recovery. Shape and influence DevSecOps practices and shift-left testing approaches. Qualifications Skills & Experience Needed Proven experience as a senior or lead security architect in complex enterprise environments. Deep understanding of security frameworks (e.g., NIST CSF, ISO 27001, SABSA, Zero Trust), risk management, and regulatory compliance. Strong understanding of application and infrastructure security architecture, including SaaS adoption, integration security, and third-party risk considerations Track record of influencing senior stakeholders and embedding security in enterprise architecture and transformation initiatives. Familiarity with security tooling ecosystems and automation strategies. Knowledge of enterprise architecture frameworks (e.g., TOGAF) and how security integrates into broader EA models. Additional Information Personal Attributes Visionary yet pragmatic — able to shape a long-term security strategy while guiding in-flight designs. Confident and collaborative — capable of influencing without authority and building strong relationships across business and technology. Risk-aware but not risk-averse — focused on secure enablement, not just control. Strong communicator — able to simplify and articulate technical concepts to diverse audiences. Driven by impact — focused on measurable security improvements that support business outcomes. Why Join Endava? Be the driving force behind Endava’s digital transformation. As our Enterprise Security Architect, you will: Influence strategic technology decisions and shape future business models. Shape the overall Security Architecture at a pivotal stage in Endava’s growth. Work at the intersection of business and technology, delivering high-impact solutions. Be part of a forward-thinking, collaborative leadership team driving innovation. If you are a strategic thinker with a passion for security architecture and business transformation, we invite you to shape the future with us. Apply now and be part of Endava’s next phase of growth! At Endava, we’re committed to creating an open, inclusive, and respectful environment where everyone feels safe, valued, and empowered to be their best. We welcome applications from people of all backgrounds, experiences, and perspectives—because we know that inclusive teams help us deliver smarter, more innovative solutions for our customers. Hiring decisions are based on merit, skills, qualifications, and potential. If you need adjustments or support during the recruitment process, please let us know. Seniority level Seniority level Mid-Senior level Employment type Employment type Full-time Job function Job function Information Technology Industries IT Services and IT Consulting Referrals increase your chances of interviewing at Endava by 2x Get notified about new Enterprise Security Architect jobs in London, England, United Kingdom . We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI. #J-18808-Ljbffr