Security Architect

Security Architect
Hybrid (Corsham)
SC with a willingness to obtain / or DV Clearance, UK Nationals Only
Up to £760/day Inside IR35

About the Role

We are seeking an experienced Security Architect to join our large defence customers team, playing a crucial role in designing and implementing security solutions for the Seraphim solution. The successful candidate will provide security expertise across the entire solution lifecycle, ensuring compliance with MOD security policies and industry best practices.

Key Responsibilities

Collaborate with the Solution Design Authority to provide security input into OpNET's technological roadmap and High-Level Design (HLD).

Define security interoperability, dependencies, and interactions between infrastructure, platform, and software environments.

Contribute to the development of Intermediate Level Design (ILD) infrastructure solutions, ensuring coherence and compliance.

Review and approve Low-Level Design (LLD) and Detailed Level Design (DLD) solutions.

Identify security vulnerabilities and recommend mitigation strategies.

Assess third-party services for compliance with MOD policies and security best practices.

Define and document security aspects of the Architectural Runway for Platform and Cyber teams (logging, AV, Cyber Defence, FW configuration, etc.).

Essential Skills, Qualifications & Experience

Extensive experience in security architecture across complex, large-scale programmes.

Expertise in the solution design of secure hardware and software solutions.

Strong knowledge of security requirements, risk assessments, and detailed security designs.

Proven ability to select security products based on complex security requirements.

Experience in secure VMware Virtual Desktop Infrastructure (Horizon), VMware ESXi, vCentre, vSAN, and Microsoft Server OS (2008 R2 to 2019).

Expertise in Windows 10, Linux implementations, and Microsoft applications (Exchange, Skype, SQL, Group Policy).

Hands-on experience in Public & Private Cloud architectures using Software Defined Datacentre (SDDC) techniques.

Familiarity with Government Grade Cryptography and MOD security implementations (PKI, ADFS, Proxy Services).

Proven track record in NCSC design patterns and MOD-accredited secure solutions.

Understanding of Defence Lines of Development and MOD Capability Integration.

Proficiency in MOD service management tooling and ITIL frameworks.

Experience with PKI integration and Defence PKI.

SC Clearance (existing) and willingness to undergo DV clearance.

Strong analytical, critical thinking, and communication skills.

Desirable Skills & Experience

Experience working within the public sector, preferably Defence Digital (formerly ISS).

Hands-on experience in Two-Factor Authentication solutions.

Knowledge of .NET Framework, Low-Level API calls, and open-source orchestration tools (Ansible, Puppet, Chef).

Experience using the Atlassian Toolset (JIRA, Confluence, BitBucket).

Familiarity with Automation & Orchestration technologies.

Experience in Agile and Waterfall project environments