Principal Enterprise Security Architect

About the Role

Our world‑leading Time & Frequency department seeks a Principal Enterprise Security Architect to lead cyber security architecture, assurance, and operational services. This is an exceptional opportunity to join the global authority in precision timing at a defining moment for UK digital infrastructure. Backed by a government investment of £180 million in the National Timing Centre (NTC) programme, we are developing a world‑first resilient time distribution capability that will provide industry with a robust complement to satellite systems (such as GPS) – which are increasingly vulnerable to disruption from solar storms, jamming and spoofing. This will underpin essential services, including telecommunications, online banking, emergency response, transport networks, and wider digital and data‑driven operations. Together, these services form the backbone of modern society – and your leadership will help ensure they remain secure, reliable and robust even if global navigation satellite systems fail.

Key Responsibilities

• Lead the Cyber Security architecture and design function across NPL's PNT programmes, to deliver at national scale
• Oversee design, delivery, and running of Cyber Operational capability, and develop an enterprise architecture aligned with NPL's guiding principles
• Lead the technical Cyber Security design of systems and services across several PNT programmes and technologies (at an organisational / inter‑organisational level)
• Research, identify, validate and adopt new security tech, architecture, and methodology
• Lead engagement with NPL's customers (across both UK Government and the private sector) on security risk and decision‑making
• Communicate current or emerging threats, whilst designing security architecture to mitigate against them

About You

Reporting to the Head of Cyber Security in CIO, you will provide enterprise‑wide risk consultancy, stakeholder engagement, and leadership. To be successful in this role, you will have the following skills, experience, and qualifications.

• Referenceable, in‑depth knowledge and experience in Cyber Security and IT (including business process design)
• Understanding of IT networking and virtualisation technologies
• Ability to define architecture roadmaps and associated strategies (including design analysis)
• In‑depth assessment of IT systems, cloud offerings and IT Security controls, to provide an independent view of their compliance and effectiveness with Security Policy, IT Security standards, and regulatory requirements
• Assessment of architectural designs to determine whether the relevant Security controls have been identified; in‑line with business objectives and risk mitigation
• Experience of cross‑security domain approaches and solutions
• 1 of the following certifications: Certified Information Security Systems Professional (CISSP), SABSA Chartered Security Architect (SCF), Certified Information Security Manager (CISM)
• +2 (or more) industry‑recognised Security certifications or qualifications

Security Clearance

To work at NPL, you will need to obtain BPSS security clearance. For this role in the Time & Frequency department, you will need to have an SC clearance with no restrictions, or you must have the ability to obtain an SC clearance.

Equal Opportunities & Diversity

We actively recruit citizens of all backgrounds. Nationality, residency and security requirements can be more tightly defined than others. This role requires SC clearance. NPL welcomes applications from candidates irrespective of their background, gender, race, sexual orientation, religion or age. Applications from women, disabled and black, Asian and minority ethnic candidates in particular are encouraged. All disabled candidates who satisfy the minimum criteria will be guaranteed an interview under the Disability Confident Scheme.