Lead Security Architect in Wokingham

About The Role

National Energy System Operator (NESO) recognises the potential of bright and talented individuals, and we encourage you to join us as Great Britain’s energy system undergoes an ambitious, exciting, and vital transformation. Together with industry, we are creating a cleaner, more sustainable energy future. The Lead Security Architect is responsible for overseeing and facilitating the daily operations and development of the security architecture function. This position ensures that enterprise security architecture standards are applied consistently, using a pragmatic and risk‑based approach across solution design, delivery, shared technology platforms, and business initiatives. Additionally, the Lead Security Architect serves as the operational lead and primary escalation point for the security architecture function. Reporting to the Enterprise Security Architect, the Lead Security Architect helps turn strategic initiatives and direction into secure, practical, and repeatable designs that can be used by both architectural and delivery teams across the organisation.

Key Accountabilities

• Security Architecture Operations: Run the day‑to‑day security architecture function. Apply security standards consistently across all areas of the organisation. Turn enterprise security strategy into practical designs and patterns. Review and approve security aspects of technical and solution architectures. Provide security architecture guidance to architectural teams as part of the design, delivery and change.
• Technical Leadership: Design security across cloud, on‑premises, hybrid and SaaS platforms. Define reusable security patterns and guardrails. Guide teams across identity, network, application, data and platform security. Assess emerging technologies for security impact.
• Stakeholder Engagement: Work closely with wider architectural, engineering, platform and delivery teams. Champion embedding security early in delivery lifecycles. Advise teams on risk and security considerations. Participate in architecture and governance forums.
• Risk, Compliance and Assurance: Work with the Security Assurance teams to ensure architecture designs meet regulatory and industry requirements. Support the identification of risk, assessing impact, and helping teams remain within the organisations risk appetite. Support threat modelling and security reviews.
• Team and Capability Development: Lead and mentor a team of security architects. Set quality standards and development plans to ensure the team stays current with the changing threat landscape and emerging technologies. Identify and improve processes, documentation and tooling.

About You

• Significant experience in security architecture or senior security engineering role.
• Strong knowledge of cloud security architecture, identity and access management, network security and ideally application security.
• Experience in working in large, complex environments with multiple workstreams – ideally regulated industries.
• Strong communicator with excellent writing skills, capable of articulating complex technical concepts to both technical and non‑technical stakeholders.
• Ability to collaborate effectively with cross‑functional teams, demonstrating strong interpersonal skills and a team‑oriented mindset.
• A proactive approach to problem‑solving, with the ability to think critically and strategically about architectural challenges and opportunities.
• Must have a “can do” attitude when working in a fast‑paced and high‑pressured environment.
• Relevant cyber security qualification(s), for example Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC) – CISSP preferred.

What Success Looks Like

• Security architecture is used consistently throughout the organisation, becoming an enabler and efficiency for supporting delivery.
• Design, delivery and change teams proactively engage security architects at the appropriate stages of development.
• Architectural risks are identified early, clearly understood and articulated and effectively managed and reduced.

What You'll Get

A competitive salary of £75,000 - £85,000 dependent on experience and capability. As well as your base salary, you will receive a bonus of up to 15% of your salary for stretch performance, 28 days annual leave as standard, and a competitive contributory pension scheme where we will double match your contribution to a maximum company contribution of 12%.

Benefits

• Flexible Bank Holidays & Holiday Trading
• Additional Birthday Day Off
• Cycle to Work Scheme, Retail & Gym Discounts
• Private Medical Insurance, Critical Illness Insurance & Personal Accident Insurance

About Us

At the National Energy System Operator (NESO), we play a vital role in tackling climate change and securing Great Britain’s energy future. We already operate the world’s fastest decarbonising electricity system and are working towards our ambition to run it carbon‑free for a short period this year – provided the market supplies electricity exclusively from renewable sources. Alongside this, we provide expert advice to government on how to deliver a clean power system by 2030. In autumn 2024, the Electricity System Operator (ESO) transitioned to become NESO – an independent, expert public corporation with a whole‑system view across electricity, gas, and hydrogen. NESO operates independently and transparently, always acting in the best interests of all energy users. Licensed and regulated by Ofgem, we make impartial decisions that balance sustainability, affordability and security. Our organisation is fully independent from government, the regulator and all commercial interests, with a clear focus on system‑wide benefit, long‑term vision and public value.

More Information

This role closes at 23:59 on the day before date shown above, however we encourage candidates to submit their application as early as possible and not wait until the published closing date as this can vary.