Be at the heart of actionFly remote-controlled drones into enemy territory to gather vital information.

Apply Now

Lead Security Architect

Manchester Digital
Manchester
4 months ago
Applications closed

Related Jobs

View all jobs

Lead Security Solution Architect

Control Testing Lead - Cyber Security

Lead PAM Security Solution Architect

CISO

Cyber Security Architect

Security Architect

Join the Home Office as a Lead Security Architect and steer the secure‑by‑design delivery of critical systems that protect citizens and national interests. Working with the Principal Security Architect, you will own security architecture for a major portfolio, translate business goals and threat intelligence into practical controls, and mentor SEO‑level architects to raise capability across multiple programmes.

You will engage senior stakeholders, balance risk against usability and cost, and shape patterns that let teams adopt cloud, DevSecOps, IoT and zero‑trust approaches safely. If you can blend deep technical insight with clear, influential communication and enjoy turning complex risks into elegant proportionate solutions, this role offers the chance to make a tangible impact on services millions rely on every day.

As Lead Security Architect you will direct secure architecture across a portfolio worth hundreds of millions of pounds. Working with product owners, delivery managers and enterprise architects, you will ensure every new or changed service conforms to Home Office and NCSC standards while enabling rapid, user‑centred delivery.

You will analyse emerging threats, advise on proportional mitigations, and produce or tailor reference patterns covering identity, network segmentation, container security, data protection, and monitoring. By modelling risks with frameworks such as ISO 27005, NIST, or STRIDE, you will justify design choices to technical and non‑technical audiences and document them for re‑use.

What You'll Do:

  • Set portfolio‑level vision & patterns in line with Principal Security Architect strategy, translating them into reusable templates and guardrails.
  • Lead architecture reviews for high‑risk projects, providing actionable recommendations and tracking remediation through to closure.
  • Perform and interpret threat‑modelling / pen‑test results, converting findings into road‑mapped improvements and measurable risk reductions.
  • Advise on security controls for hybrid and cloud platforms (AWS, Azure, Kubernetes, serverless), balancing usability, cost and compliance.
  • Mentor and quality‑assure SEO Security Architects' work, fostering a culture of continuous learning and knowledge sharing.
  • Engage senior stakeholders across technology, policy and operations, presenting security trade‑offs in business terms and gaining consensus.
  • Scan the horizon for emerging threats, tooling and regulatory change, recommending timely adoption or mitigation strategies.
  • Oversee vendor and SaaS evaluations, ensuring contracts include appropriate security clauses and ongoing assurance.

Essential skills:

  • Risk‑based decision‑making: expert in ISO 27001 / NIST / CIS controls, able to quantify and articulate risk, then select proportionate, cost‑effective controls.
  • Technical depth: hands‑on knowledge of cloud security, IAM, container & API security, network segmentation, encryption and DevSecOps toolchains; capable of explaining exploitability of complex vulnerabilities.
  • Pen‑testing & threat‑modelling: scoping, overseeing and translating results into enforceable patterns and backlog items.
  • Influential communication: proven ability to engage C‑suite and delivery squads alike, adapting style to gain agreement and drive secure‑by‑design culture.
  • Mentoring & governance: experience line‑managing or coaching security architects/engineers and running architecture assurance or design‑review boards.

At the Home Office, your work has real-world impact, shaping the safety and security of millions. We offer:

  • Meaningful Work: Contribute to critical national security and public service initiatives.
  • Career Growth: Benefit from tailored development frameworks and professional communities.
  • Flexible Working: Balance your professional and personal life with hybrid work options.
  • Diversity and Inclusion: Join a workplace where your unique background and talents are celebrated.
  • Learn more about our benefits: Benefits - Home Office Careers

Additional Information:

  • This role requires SC clearance. To meet national security vetting requirements, you must typically have been resident in the UK for at least five years. Unfortunately, we cannot sponsor visas.

More jobs at Home Office Digital, Data and Technology
#J-18808-Ljbffr

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Cyber Security Recruitment Trends 2025 (UK): What Job Seekers Must Know About Today’s Hiring Process

Summary: UK cyber security hiring has shifted from title‑led CV screens to capability‑driven assessments that emphasise incident readiness, cloud & identity security, detection engineering, governance/risk/compliance (GRC), measurable MTTR/coverage gains & secure‑by‑default engineering. This guide explains what’s changed, what to expect in interviews, & how to prepare—especially for SOC analysts, detection engineers, blue/purple teamers, penetration testers, cloud security engineers, DFIR, AppSec, GRC & security architecture. Who this is for: SOC & detection engineers, security operations leads, DFIR analysts, penetration testers/red teamers, purple teamers, AppSec/DevSecOps engineers, security architects, cloud security engineers, identity/IAM engineers, vulnerability managers, GRC/compliance specialists, product security & security programme managers targeting roles in the UK.

Jobs

Why Cyber Security Careers in the UK Are Becoming More Multidisciplinary

Cyber security used to be viewed primarily as a technical discipline: firewalls, encryption, intrusion detection, penetration testing. In the UK today, it’s far broader. Organisations now face complex legal frameworks, ethical dilemmas, human-behaviour risks, communication challenges & usability hurdles. This shift means cyber security careers are becoming more multidisciplinary. From protecting NHS patient records to defending financial services, securing supply chains & safeguarding national infrastructure, cyber security now touches every sector. Employers increasingly want professionals who understand law, ethics, psychology, linguistics & design alongside traditional technical skills. In this article, we’ll explore why UK cyber security careers are expanding in this way, how these five disciplines shape the profession, and what job-seekers & employers need to know to thrive in this new landscape.

Jobs

Cyber Security Team Structures Explained: Who Does What in a Modern Cyber Security Department

Cyber security has become a top priority for UK organisations of all sizes. From small businesses to financial institutions, healthcare providers, and government bodies, the risk of cyber attack is now a constant concern. Threats are more sophisticated, regulations more demanding, and customers more aware of data privacy than ever before. But defending against cyber threats isn’t simply about having the right tools — it’s about having the right team. A modern cyber security department relies on clearly defined roles and responsibilities to ensure that defences are proactive, incidents are managed swiftly, and compliance is maintained. This article explains the structure of a modern cyber security team, the roles you’ll typically find within it, how they collaborate, and what skills, qualifications, and salaries are expected in the UK job market.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.