Security Architect

• Design, develop, and maintain secure system architectures for MOD platforms, applications, and networks
• Liaise with security stakeholders (MOD, NCSC etc.), Information Assurance teams, and other stakeholders to support security assurance processes
• Produce and maintain security documentation including; Security Architecture Documents, Security Risk Assessments, and Security Management Plans
• Ensure alignment with relevant standards and frameworks including; NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance
• Collaborate with engineering and development teams to ensure security requirements are met from the outset
• Keep up to date of evolving threat landscapes and propose mitigations aligned with system requirements
• Lead and support secure design reviews and contribute to engineering assurance gates

Do you have knowledge of MOD security requirements?

Do you have experience in Secure by Design?

• Certified Information Systems Security Professional (CISSP)
• Strong knowledge of MOD security requirements (e.g. JSP 440, JSP 604, DEF STANs)
• Hands-on knowledge of risk management frameworks (e.g. HMG IS1/IS2, NIST RMF)
• Experience developing artefacts to support MOD security assurance
• Proven experience in cyber security architecture within a defence, aerospace, or critical national infrastructure environment
• Solid understanding of systems engineering principles and secure development lifecycles
• Excellent communication skills, both written and verbal – able to present to technical and non-technical stakeholders
• Certified Information Security Manager (CISM)
• SABSA, TOGAF or equivalent architecture certifications
• A robust background in security architectures, processes, and both industry and government compliances (e.g. ISO 27001, CE/CE+)
• Good working knowledge and experience of Secure by Design

Offering £85ph Inside IR35