Security Architect

Roke imagines a more secure world. A world where technology protects, rather than exposes. A world where expert engineers, consultants, and business support staff collaborate to protect what matters most to our clients.

We are a friendly and flexible team with a culture of 'time, trust, and freedom'. The role may offer opportunities to work on client sites, from the office, in shared workspaces, or from home as necessary. We pride ourselves on listening to each other's aspirations and accommodating wherever possible.

Roke is a leading technology & engineering company with clients spanning National Security, Defence, and Intelligence sectors. We work alongside our customers to solve complex and unique challenges. As a member of the Security Team working on a large Defence programme, your day will be diverse, involved, and rewarding.

You will collaborate with Security SMEs, the Technical Project Manager, and the Lead Solution Architect to establish Security first principles within the Initial Security Architecture for our Defence business unit.

1. Producing high-level Security Architecture and design documents for various projects.
2. Acting as the Security SME to either customer or Roke Project Managers and Technical Leads, ensuring solutions are developed and delivered in adherence to MOD security policy.
3. Coordinating Security Risk Analysis and Management activities to support design and assurance of solutions, including maintaining the security risk register and managing Risk Balance Cases.
4. Developing Security Architectural diagrams.
5. Producing and maintaining security documentation such as Secure by Design Documentation, Security Management Plans, Security Operating Procedures, and Security Cases.
6. Supporting the team lead in the development and deployment of cyber services.
7. Identifying and capturing project and programme Security Risks.

The role requires extensive experience, including but not limited to:

1. Delivering cross-cutting Engineering Security Architectures.
2. Providing security assurance services supporting Defence Digital, DE&S, or Strategic Command.
3. Supporting MOD projects following JSP 604 / 453 and JSP 440 methodologies, including Secure by Design (SbD).

The role also requires knowledge of:

1. Defence CIS, Land Tactical CIS, pan-Government, and NATO CIS services.
2. MOD Equipment currently in service or to be released within the next 5 years.
3. MOD Secure by Design principles.
4. NIST 800-53 and CSF Framework.

Beneficial but not essential knowledge includes:

1. EA Sparks and Archimate certification.
2. TOGAF certification.
3. ITIL service-oriented architecture approach.
4. Relevant Cyber Security Qualifications (e.g., CISSP, ISSAP, CGRC).

1. Excellent written and verbal communication skills, able to understand and apply security concepts at a technical level and communicate risk implications to diverse stakeholders.
2. Proficiency with security technologies used by Defence, with an understanding of vulnerabilities and impacts on system design.

We offer a competitive salary and flexible benefits covering health, wellbeing, savings, protection, life, leisure, and entertainment.

Roke has a vibrant community with groups sharing interests in tools, technologies, and techniques.

We are committed to Equal Opportunity, Diversity, and Inclusion. Our environment is friendly, creative, and supportive of a diverse workforce, including those with additional needs.

Due to the nature of this position, you must be willing and eligible to achieve a minimum of SC clearance. To qualify, you should be a British Citizen and have resided in the UK for the last 5 years.