Data Security Architecture Lead & Engineer (Hybrid)

Cyber security is critical to every organisation. We are shaping strategies and transforming the management of cyber risk, and we need you to join us. You'll build strong relationships as part of our cyber practice with over 450 extremely talented individuals in the UK alone, as part of a Technology and Transformation practice of 7500 people. Cyber security is a business problem, not just a technical problem, and we need people with a diverse array of backgrounds and skills sets to help our clients solve it.

We are seeking experienced Data Security professionals with expertise in both architecture and engineering. The ideal candidate will have a proven track record in leading the design, implementation, and testing of data security solutions. Responsibilities include:

• Developing security architectures
• Creating technical design documents
• Establishing control frameworks for data protection across cloud and on‑premises environments
• Assessing and enhancing existing data security architectures to meet evolving business and regulatory requirements

Define data security use cases, functional and non‑functional requirements, and technical specifications – e.g. data discovery, access governance, classification, DLP, encryption, masking, monitoring, compliance, and AI use cases. Design and architect data security solutions, creating high‑level and low‑level designs that align with business objectives and comply with industry standards (e.g. NIST, ISO 27001). Develop system architecture diagrams with technical descriptions, specify dependencies, and define system specifications to support optimal performance. Integrate workflows with third‑party systems and security tools (SIEM, Varonis, BigID, Azure, etc.) and define the RACI matrix for operation and maintenance. Produce technical documentation, including process guides for data classification, access requests, governance, approval workflows, and lifecycle management. Implement and configure data security components in on‑premises and cloud environments, including servers, databases, agents, and APIs. Manage DLP policies, troubleshoot issues, and provide post‑implementation hyper‑care support. Conduct knowledge transfer to client teams through technical training sessions.

Experience building client relationships and delivering proposals within engagement delivery. Strong interpersonal and relationship skills, managing stakeholders from architects to developers. Broad data security experience across discovery, classification, DLP, posture management, encryption, masking, governance, and privacy. Hands‑on engineering across DLP (email, O365, cloud, web, endpoint), data classification, DRM, cloud security (Azure, AWS, Oracle, GCP), encryption technologies, posture and governance tools. Knowledge of data privacy regulations (GDPR, CCPA) and data governance frameworks. Exposure to DevOps tools and repositories (Git, Azure DevOps, Kubernetes, Docker, Jenkins, Ansible). Practical experience with Linux and Windows operating systems. Understanding of modern data‑centric security concepts (zero trust, data‑centric protection, cloud‑native security). Relevant certifications such as CISSP, CISM, CIPP/E or Microsoft Security, Compliance & Identity Fundamentals add value.

Benefits include a hybrid working policy – you will be based in London with the flexibility to work in the office, virtual collaboration spaces, client sites, and remotely, depending on role requirements. Support for re‑entry into the workplace after an extended career break, including coaching and skill refresh.