We’re looking for a Security Architect responsible for creating, maintaining, and enforcing the frameworks, processes, and technical designs that safeguard N Brown’s data, systems, and overall digital ecosystem.
You’ll serve as the primary bridge between business priorities and needs, ensuring that all technology initiatives are aligned with robust principles. You’ll join the Architecture Chapter (Governance and Transformation) whilst being embedded within the Information Security Chapter (engineering and operations) and the GRC Team (governance, risk, and compliance). This unique placement enables the role to integrate security as a core element in business transformations, system operations, and governance activities, providing a 360-degree approach to enterprise security.
What will you be doing?
Information Security Architecture
Develop enterprise-wide data strategies to ensure the confidentiality, integrity, and availability of information assets.
Establish and maintain standards, policies, and guidelines that align with regulatory frameworks, business objectives, and industry best practices.
Work closely with the Data Governance team to integrate controls for sensitive data across its lifecycle, including classification, storage, access, and transfer.
Drive the adoption of encryption standards and other data protection mechanisms across applications, databases, and file systems.
Cyber Security Architecture
Design and implement layered defence architectures to protect against an ever-evolving threat landscape.
Define the posture for enterprise infrastructure, including network segmentation, secure endpoints, and resilient cloud environments.
Collaborate with engineering teams to build scalable, secure applications following secure coding principles and frameworks.
Develop strategies for integrating monitoring and detection tools (e.g., SIEM, IDS/IPS) into the organisation's IT landscape to provide real-time threat visibility.
Cloud Security Architecture
Define security strategies for hybrid and multi-cloud environments, ensuring consistent protection across all platforms.
Evaluate and recommend cloud-native tools and controls, such as cloud access security brokers (CASBs), cloud firewalls, and key management systems.
Collaborate with Cloud Operations and DevOps teams to implement secure infrastructure-as-code practices and cloud deployment pipelines.
Secure Development Lifecycle (SDL)
Establish and champion the Secure Development Lifecycle across all application development teams.
Provide guidance on secure coding practices, static/dynamic application testing (SAST/DAST), and code review processes.
Work with development teams to ensure security is considered at every stage, from design through deployment.
Introduce automated tools to enhance SDL efficiency, such as vulnerability scanning in CI/CD pipelines.
What skills and experience will you have?
A good understanding of cloud security controls and tooling, ideally in AWS but GCP and Azure will also be beneficial.
Understanding of secure coding and application design principles.
Good knowledge of the ecommerce threat landscape and a pragmatic approach to applying relevant controls to mitigate those threats.
Experience of building strong governance into guard rails.
Experience of applying controls and mitigations iteratively in an agile/DevSecOps environment where all requirements will not be delivered on day one.
Practical experience of governing solutions in an architecture function.
Awareness of IT industry trends and being vendor and technology neutral to enable best-fit solutions to be found.
What’s in it for you?
Hybrid working
24 days holiday (+ 8 bank holidays) with the option to buy an additional 10 days
Annual bonus scheme
Enhanced maternity and adoption leave
Access to Apricity, a self-funding IVF benefit at a reduced rate
Company pension with up to 8% N Brown contribution
Mental Health support both internally and externally, including access to our wellbeing champions and counselling services
A range of financial wellbeing support
Colleague discount across all N Brown brands
Onsite café with subsidised rates and local restaurant discounts!
Life Assurance and Private Medical Insurance
Paid volunteer time – all our colleagues can take a full day paid to volunteer for a charity of their choice
N Brown – who we are and why work for us?
We’re an equal opportunity employer and value diversity. We do not discriminate based on race, religion, colour, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status.
In May 2024 we were delighted to be named one of The Sunday Times Best Places to Work 2024. We work hard to create a happy and inclusive culture for everyone and we’re so proud to have made this list - as voted for by our very own colleagues!
Ways of Working
We offer hybrid working which varies across the business depending on the role you’re in. Our Head Office is located in the Northern Quarter in Manchester City Centre. So if you are travelling by train, tram or bus we’re perfectly located, plus we’re surrounded by cool cafes, trendy bars and the best places to eat!
Our working hours are 36.17 per week and our core working hours are between 10am - 4pm. Given we don’t have strict working hours you can find the working pattern that’s right for you.
What happens when you apply to a role at N Brown?
As soon as we receive your application, we’ll send you an email to let you know. We always aim to come back to you as soon as possible with an update and we really appreciate you taking the time to apply for a role with us. Good luck
