Description

The Enterprise Security Architect leads and governs enterprise-wide security architecture across all platforms and businesses, ensuring alignment with business strategy, risk appetite, and regulatory requirements while enabling secure-by-design solutions. They embed security into digital transformation and emerging technologies to support innovation, agility, and scalability.

The role is responsible for developing and maturing the security architecture capability across the group, including standards, principles, reference architectures, and design governance. It also defines and maintains security architecture standards, reference architectures, patterns, and reusable blueprints such as cloud landing zone controls, identity, logging, encryption, and secure integration patterns.

The architect owns and approves security architecture and design for major programs, platforms, and transformation initiatives, and oversees end-to-end application security architecture throughout the delivery lifecycle. They establish a risk-based, iterative security architecture review model integrated into agile and product delivery, and provide leadership for cloud security across AWS, Azure, and GCP, including secure landing zones and shared responsibility models.

Continuous assessment of emerging technologies and threat trends is required, translating findings into actionable guidance and reporting architecture KPIs such as review cycle time, exception trends, repeat findings, and pattern adoption.

• Lead and mature security architecture capability across the organization, establishing standards, principles, reference architectures, and governance.
• Define and maintain reusable security blueprints (cloud landing zones, identity, logging, encryption, secure integration).
• Own and approve security architecture designs for major programs, platforms, and transformation initiatives.
• Oversee end-to-end application security architecture throughout the delivery lifecycle.
• Implement a risk-based, iterative security architecture review model integrated with agile and product delivery processes.
• Provide architectural leadership for cloud security (AWS, Azure, GCP), including secure landing zones and shared responsibility models.
• Continuously assess emerging technologies and threat trends, translating insights into actionable guidance.
• Define and report architecture KPIs (review cycle time, exception trends, repeat findings, pattern adoption).

Requirements

Candidates need 12+ years of information security experience, including substantial security-architecture work, preferably in regulated or high-risk sectors. Required education includes a bachelor’s or master’s in a related field, and certifications such as CISSP, CCSP, CREST Registered Technical Security Architect, and cloud security specializations. Strong leadership, communication, and interpersonal skills are essential.

• Require 12+ years of information security experience with a strong security architecture background.
• Experience in regulated or high-risk environments such as financial services, large-scale retail, or critical infrastructure.
• Bachelor’s or master’s degree in cybersecurity, computer science, engineering, or a related field.
• Hold certifications: CISSP, CCSP, CREST Registered Technical Security Architect, and cloud security certifications (AWS, Azure, GCP).
• Demonstrate excellent leadership, communication, and interpersonal skills.

Benefits

Training + Development

Interview process

Visa Sponsorship

Security clearance