Senior Data Security Architect/Engineer (London Hybrid)

We are seeking experienced Data Security professionals with a strong background in architecture and engineering. The ideal candidate will have experience in supporting the design, implementation and testing of data security solutions. Ability to maintain and operate the technology is a strong asset.

Responsibilities:

• Support the definition of data security use cases, functional and non‑functional solution requirements, and technical specifications e.g., data discovery, data access governance, data classification, data loss prevention, encryption, data masking, monitoring, and compliance requirements.
• Define next‑gen use cases covering data security posture management and AI use cases.
• Support designing data security solutions by creating high‑level and low‑level designs that align with business objectives and comply with industry cybersecurity standards (e.g., NIST, ISO 27001).
• Create high‑level and low‑level system architecture diagrams with technical descriptions of each component.
• Define the dependencies to implement the solution, e.g., network rules, server resources, storage requirements.
• Define the system specifications to support optimal performance.
• Integrate workflows with third‑party systems and security tools, such as SIEM solutions, data discovery and classification tools (e.g., Varonis, BigID), and cloud platforms like Microsoft Azure.
• Define the RACI matrix to operate and maintain the solution’s infrastructure components.
• Support the development of technical documentation for data security implementations including process documentation to enable operation of the solution, e.g., defining processes which cover data classification, data access requests, data governance, approval workflows, and data lifecycle management.
• Support implementing data security solutions by supporting the following activities:
• Installing components (e.g., servers, databases) in on‑premises/cloud environments and configuring cloud‑based elements, including scripting or coding plug‑ins and extensions for cloud platforms.
• Installing and configuring servers for data discovery and deploying agents for DLP scanning across endpoints and network devices.
• Integrating data security solutions with enterprise applications and systems such as directories, cloud applications, and third‑party data repositories.
• Configuring and implementing API integrations and reverse proxy architectures with cloud services to enable secure data flows.
• Implementing, fine‑tuning, and managing DLP policies to address business requirements and minimise false positives.
• Collaborating with IT infrastructure teams to ensure all prerequisites and dependencies are addressed prior to deployment.
• Executing unit, integration, functional, and non‑functional testing for data security solutions, and troubleshooting issues such as data access failures, policy conflicts, and data protection errors in coordination with vendors.
• Providing post‑implementation services, including hyper‑care support and advanced troubleshooting to resolve production issues and ensure smooth operation.
• Conducting knowledge transfer to client data security teams through technical training sessions, enabling clients to operate and maintain the solution effectively.

Skills and Experience:

Whilst a bachelor's degree (or equivalent) in Computer Science or Engineering is desirable, we are more interested in your real‑world professional experience and your ability to turn this into impactful client outcomes.

Key skills – not all required but familiarity with or experience in the majority:

• Building strong client relationships, particularly within engagement delivery.
• Ability to understand client problems and issues and develop a proposal for how we can support.
• Strong interpersonal and relationship skills.
• Broad enterprise data security understanding and/or experience across data classification, DLP, encryption, data masking, data governance, and data privacy, with demonstrable ability to build data security strategies which integrate into client enterprise architectures and beyond.
• Experience working in a digital transformation environment supporting the definition and implementation of data security architecture leveraging Microsoft cloud‑native and hybrid solutions.
• Understanding of data privacy regulations (e.g., GDPR, CCPA), data governance frameworks, and emerging trends in data security.
• Exposure to/understanding of DevOps tools and repositories (e.g., Git, Azure DevOps, Kubernetes, Docker, Jenkins, Ansible).
• Role‑based access control (RBAC) and data access governance design within Microsoft environments.
• Experience with modern data security concepts such as data‑centric security, zero trust data access, and cloud‑native data protection.

Desirable Certifications:

• Relevant certifications (e.g., CISSP, CISM, CIPP/E, Microsoft Certified: Security, Compliance, and Identity Fundamentals).

Location: You’ll be based in London with hybrid working.