Managing Security Architect

We are looking for a Managing Security Architect to help embed security best practice and secure-by-design principles across a broad range of client engagements.

Reporting to the Security Architecture Lead within Cyber Security, you will work closely with architects, delivery teams, and stakeholders across the organisation to ensure security is built into solutions from the outset, rather than added later. You will play a key role in shaping secure, practical, and business-aligned outcomes for our clients.

In this role, you will develop security architecture blueprints and supporting documentation, including high-level and low-level designs, review proposed architectures, and carry out security gap analyses to inform remediation and roadmap planning. Using a risk-based approach and recognised security architecture frameworks, you will design controls that address both current and emerging cyber threats while supporting client business objectives.

This is an exciting opportunity to lead from the front in cyber security and deliver meaningful value to our clients.

This is a hybrid role, and travel is required to customer sites, which are predominantly based in the South of England.

What you will be doing:

• Lead security activities for large client engagements, building strong and trusted relationships with both customers and internal stakeholders.
• Develop and maintain security control frameworks that align with client objectives, contractual obligations, and regulatory requirements.
• Analyse existing and proposed solution architectures to identify security risks, recommend mitigating controls, and apply secure architecture principles to strengthen security posture.
• Translate customer requirements into effective, innovative, and practical security solutions.
• Produce and review security architecture documentation, including high-level and low-level designs, implementation detail, and testing requirements.
• Lead security contributions to bids, proposals, and new business opportunities.
• Develop security control roadmaps that align organisational plans with regulatory, legal, and contractual requirements.
• Contribute actively to the Cyber Security Centre of Excellence.
• Promote awareness of emerging cyber threats, vulnerabilities, and industry best practice across the Cyber Security team and wider organisation.
• Support the growth and development of the Cyber Security team through mentoring, coaching, and recruitment support.

What you bring:

• A strong track record in a Security Architecture role, including experience leading security work across large client engagements.
• The ability to understand complex technical and business information and communicate clearly with both technical and non-technical audiences.
• Strong knowledge of security architecture principles and frameworks, including SABSA and guidance from organisations such as NIST and NCSC.
• Experience designing and documenting effective security controls aligned to business objectives using a risk-based approach.
• Strong leadership, influencing, and stakeholder management skills.
• Excellent analytical and problem-solving capability, with the ability to assess complex situations, identify risks, and recommend practical solutions.
• Excellent written and verbal communication skills, with confidence engaging audiences from end users to executive leadership.
• Good project management skills, with the ability to manage multiple priorities and initiatives simultaneously.
• Strong client relationship management skills.
• The ability to work independently, using sound judgement and taking ownership of outcomes.
• A relevant cyber or information security qualification, such as CISSP, CCSK, CCSP, TOGAF, or SABSA.

It would be great if you had:

• Cloud security reference architectures, such as AWS and Azure.
• NIST Cybersecurity Framework and SP 800-53 controls.
• NCSC guidance and standards.
• Secure-by-Design methodologies.
• Specialist security domains such as Identity and Access Management, Infrastructure Security, and Data Security.

If you are interested in this role but not sure if your skills and experience are exactly what we’re looking for, please do apply, we’d love to hear from you!

Employment Type: Permanent

Location: UK Mobile – travel required

Security Clearance Level: Active SC and willingness to go through DV

Internal Recruiter: Jane

Salary: £80,000 to £90,000

Benefits: Bonus, 25 days annual leave with the choice to buy extra days,£5,400 car allowance, 3% flex fund, medical insurance, life assurance, and 6% pension

Loved reading about this job and want to know more about us?

Sopra Steria’s Aerospace, Defence and Security business designs, develops and deploys digital solutions to Central Government clients. The work we do makes a real difference to the client’s goal of National Security, and we operate in a unique and privileged environment. We are given time for professional development activities, and we coach and mentor our colleagues, sharing knowledge and learning from each other. We foster a culture in which employees feel valued and supported and have pride in their work for the customer, delivering outstanding rates of customer satisfaction in the UK’s most complex safety- and security-critical markets.