Software Architect - Security Design

The Company

Superb opportunity to join a leading financial services client with offices in Edinburgh, Sheffield and Birmingham.

This is an initial 9-month contract inside IR35. There will be a requirement to be in one of the offices up to 3-days per week.

The Role

We are looking for a Security Design Engineer to lead secure software and application design across a critical in-house platform. You will own end-to-end solution design, produce high-quality architecture artefacts, and provide technical leadership across delivery and transformation programmes.

The role

You will support and evolve an internally developed portal — a web application with an Azure-hosted data lake backend used for firewall rule recertification (Check Point, Illumio, Fortinet). The role includes designing new features to support WAF, network segmentation, and proxy capabilities, as well as contributing to the re-platforming of the service onto new infrastructure.

Key responsibilities

• Own and deliver secure solution designs aligned to architecture standards and reference models
  
  
• Define architecture patterns, design decisions, risks, and deviations
  
  
• Collaborate with enterprise and solution architects to ensure strategic alignment
  
  
• Provide technical assurance and consultancy to engineering teams
  
  
• Present designs and recommendations to design authorities and senior stakeholders
  
  
• Ensure compliance with security controls and manage risk remediation
  
  
• Promote strong documentation, governance, and peer review practices
  
  What you’ll bring
  
  
• Strong experience in software and solution architecture, including:
  
  
  • System design and architecture patterns
    
    
  • Data modelling and entity relationship design
    
    
  • API design and system integration
    
    
• Broad IT background with the ability to engage confidently with non-security SMEs
  
  
• Experience across both operational and transformational security environments
  
  
• Proven delivery within large-scale IT transformation programmes
  
  
• Ability to represent security at technical and design authorities
  
  Technology & tools
  
  
• Experience with Check Point, Illumio, Fortinet, or similar firewall technologies
  
  
• Architecture modelling tools (BizzDesign, Archi, UML or equivalent)
  
  
• Jira for delivery tracking and Confluence for documentation
  
  Technology stack
  
  
• Python, JavaScript, Flask, FastAPI, NGINX, Databricks, PostgreSQL, Red Hat Enterprise Linux, GitHub, Jenkins, HashiCorp Vault
  
  Qualifications (preferred)
  
  
• Degree in cybersecurity, computer science, software engineering, or related field
  
  
• CISSP, CISM, or equivalent security certification
  
  
• SABSA or TOGAF certification
  
  This is a high-impact role offering the opportunity to shape secure application architecture, influence senior stakeholders, and drive meaningful improvements across a critical enterprise security platform.
  
  More details available on successful application