Solution Security Architect (18 months FTC) in London

Company Description

Legal & General (L&G) is a leading UK financial services group and major global investor. We’ve been safeguarding people’s financial futures since 1836, and strive to build a better society, while improving the lives of our customers and creating value for shareholders. We are one of the world’s largest asset managers and provide powerful asset origination capabilities. Together, these underpin our retirement and protection solutions: we are an international player in pension risk transfer, in UK and US life insurance, and in UK workplace pensions and retirement income. Our Group Functions provide the services that all areas of the business need. This requires a talented and diverse team behind the scenes, who enable everyone at L&G to do what they do best. Joining us means helping to improve the lives of our customers and contributing to the success of the business every day.

Job Description

We are seeking a Solutions Security Architect to join Legal & General as part of a major programme of technology simplification and modernisation across the Group. This transformation aims to reduce complexity, enhance resilience, and enable secure digital innovation. The Project-Based Solutions Security Architect will play a pivotal role within the Group CISO organisation, providing security architecture leadership across key projects and programmes, with a particular focus on simplification initiatives. Reporting to the Group Enterprise Security Architect, this position ensures that security is embedded by design into modern, standardised, and streamlined technology solutions. Acting as a trusted partner to delivery and change teams, the successful candidate will ensure that all solutions are secure, proportionate, compliant with Group security standards, and aligned with Legal & General’s overall risk appetite.

What you’ll be doing:

• Defining and assuring secure, end-to-end solution architectures across technology simplification initiatives, ensuring alignment with Group Enterprise Security Architecture, policies, standards, and reference models.
• Providing expert security input into solution design across applications, infrastructure, networks, and integrations, supported by clear architecture artefacts, including design documentation and decision records.
• Supporting architecture governance processes by delivering robust security assurance, identifying risks, and recommending appropriate, proportionate controls.
• Contributing to large-scale modernisation initiatives, including application rationalisation, platform consolidation, and cloud and network transformation, ensuring security is embedded throughout.
• Identifying, assessing, and managing security risks associated with legacy systems, transition states, and decommissioning activities, safeguarding the organisation’s security posture during change.
• Providing strategic guidance on secure software development, including secure-by-design principles, identity and access management, API security, encryption, and DevSecOps integration.
• Defining and assuring secure network and infrastructure architectures across on-premise, cloud, and hybrid environments, ensuring resilient, standardised, and secure connectivity across the Group.
• Conducting security design reviews, threat modelling, and risk assessments, communicating risks and mitigation strategies effectively while collaborating with stakeholders to ensure compliance with regulatory requirements and organisational risk appetite.

Who we’re looking for:

• Proven experience as a Solution Security Architect within large, complex organisations, delivering secure and scalable solutions.
• Strong expertise in software security, including secure application design, integration patterns, and secure-by-design principles.
• Deep knowledge of network security, covering segmentation, secure connectivity, and cloud networking across hybrid environments.
• Ability to communicate security risks clearly and pragmatically to both technical and non-technical stakeholders.
• Excellent stakeholder engagement skills, with the ability to influence and collaborate effectively across cross-functional teams.
• Experience supporting technology simplification, legacy reduction, or platform modernisation initiatives within enterprise environments.
• Strong understanding of regulated environments, ideally within financial services or insurance, with awareness of compliance requirements.
• Familiarity with modern security architecture principles, including zero trust, alongside experience with cloud platforms (e.g. Azure, AWS) and agile or DevSecOps delivery models.

Whatever your role, we reward performance and behaviour with a package that looks after all the things that are important to you. Here are some of the benefits we offer:

• The opportunity to participate in our annual, performance-related bonus plan and valuable share schemes.
• Generous pension contribution.
• Life assurance.
• Healthcare Plan (permanent employees only).
• At least 25 days holiday, plus public holidays, 26 days after 2 years’ service. There’s also the option to buy and sell holiday.
• Competitive family leave.
• Participate in our electric car scheme, which offers employees the option to hire a brand-new electric car through tax efficient salary sacrifice (permanent employees only).
• There are many discounts we offer – both for our own products and at a range of high street stores and online.
• We’re creating net-zero carbon workplaces by 2030 by investing in our sustainable, modern offices across the UK, all designed to bring people together and elevate the in-person experience.

Additional Information

At L&G, we believe it's possible to generate positive returns today while helping to build a better future for all. If you join us, you’ll be part of a welcoming, inclusive culture, with opportunities to collaborate with people of diverse backgrounds, views, and experiences. Guided by leaders with integrity who care about your future and wellbeing. Empowered through initiatives which support people to develop their careers and excel. We care passionately about outcomes rather than attendance and are therefore open to discussing all kinds of flexible working options including part-time, term-time and job shares. Although some roles have limited flexibility due to customer demand, we accommodate requests when we can. It doesn’t matter if you don’t meet every single criterion in this advert. Instead, think about what you excel at and what else you can bring in terms of strengths, potential and connection to our purpose.