Enable job alerts via email!
Lead Security Architect
ZipRecruiter
London
On-site
GBP 90,000 - 120,000
Full time
Job summary
A global investment bank is seeking a Lead Security Architect to enhance security controls and drive the design of robust architectures to mitigate risks. The role requires 8+ years in Information Security, expertise in lateral movement risks, and familiarity with frameworks like NIST and ISO 27001. The successful candidate will lead the discovery and implementation phases and collaborate with teams to secure the organization's network.
Qualifications
- 8+ years in Information Security with a strong architecture focus.
- Expert in lateral movement risks, network segmentation, and endpoint security.
- Deep familiarity with security frameworks: NIST, ISO 27001, Zero Trust.
Responsibilities
- Lead the development of robust security architectures to detect and contain lateral movement.
- Drive discovery by auditing configurations to identify vulnerabilities.
- Collaborate with Linux and Windows teams to implement secure configurations.
Skills
Tools
Job description
Job Description
Lead Security Architect
The Opportunity
Albany Beck is partnering with a global Investment Bank to deliver a critical Protocol Analysis & Remediation programme. We’re looking for a Lead Security Architect with deep technical expertise and a strategic mindset to drive the design and implementation of security controls focused on reducing the risk of attackers moving undetected between systems within the organisation’s network
This is a hands-on architecture role where you'll lead discovery, design, and implementation efforts, playing a vital role in reducing risk and progressing toward a Zero Trust framework.
Key Responsibilities
- Lead the development of robust security architectures to detect, prevent and contain lateral movement between endpoints and workloads.
- Drive the discovery phase by analysing logs (via Azure Log Analytics) and auditing configurations to identify vulnerabilities and insecure protocols.
- Define and present security architecture designs and risk reduction recommendations to Cyber Security Architecture and Engineering teams for sign-off.
- Collaborate with Linux and Windows SMEs to implement secure configurations and protocol controls.
- Architect and enforce network segmentation and access control models.
- Conduct security assessments, provide remediation strategies, and guide stakeholders in secure design principles.
- Stay current on threats, attack vectors, and mitigation techniques to future-proof the organisation’s security posture.
Experience & Knowledge:
- 8+ years in Information Security with a strong architecture focus.
- Expert in lateral movement risks, network segmentation, and endpoint security.
- Deep familiarity with security frameworks: NIST, ISO 27001, Zero Trust.
- Extensive experience with Windows and Linux hardening.
- Skilled in protocol analysis, network architecture, and infrastructure design.
Technical Toolkit:
- Strong command of Azure Log Analytics, KQL, and Azure-based security tools.
- Scripting: Python, PowerShell, Shell.
- Experience with IDS/IPS, firewalls, SIEMs, and vulnerability management tools.
- Strong grasp of Active Directory, Azure AD, and access governance.
- Familiarity with secure infrastructure platforms: SQL Server, Oracle, HA clustering.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
Follow us
