Software Security Architect (DV Security Clearance)

Position Description:

The Space, Defence and Intelligence business unit in CGI is a true IT Systems Integrator. We work, build, and operate bespoke, technically complex, mission-critical systems which help our clients keep us all safe and secure. We bring innovation to our clients using proven and emerging technologies, agile delivery processes and our deep expertise across the breadth of space, defence, intelligence, aerospace and maritime, all underpinned by our end-to-end cyber capability. We work collaboratively with global technology companies, cutting edge SMEs and academia to deliver the optimal solution for each client.

CGI was recognised in the Sunday Times Best Places to Work List and has been named one of the ‘World’s Best Employers’ by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you’ll be part of an open, friendly community of experts. We’ll train and support you in taking your career wherever you want it to go.


*** Applicants Must be solely UK National and already hold HLC clearance ***

Role Location: Gloucester & Tewkesbury

We are seeking a Software Security Architect to come and join our secure innovation and advisory area that is currently working within a high-security defence environment.

You will drive the design and implementation of secure software architecture, ensuring that systems supporting space, defence, and intelligence missions are robust, compliant, and resilient.

Your future duties and responsibilities:

• Build & Operate GitLab CI/CD Infrastructure
• Develop & Maintain Code
• Integrate Security into CI/CD Workflows
• Implement Provenance & Attestation
• Threat Modelling & Security Automation

Required qualifications to be successful in this role:

• CI/CD Pipelines: Proven experience configuring and managing GitLab CI/CD infrastructure.
• Programming/Scripting: Strong coding ability in languages such as Python, Go, Bash, etc.
• DevSecOps: Hands-on experience embedding automated security checks into delivery pipelines.
• Sigstore Proficiency: Experience implementing artifact signing/attestation using Sigstore components (Cosign, Fulcio, Rekor).
• Infrastructure Integration: Ability to collaborate with internal infrastructure and external service providers for CI/CD tooling.
• Security Mindset: Familiar with threat modelling, SLSA, and DevSecOps best practices

The position requires team members to work from client-site to ensure the reliability and availability of critical systems.

Skills: