Network Security Architect - EN03 Engineer E3

You will provide direction and solutions to product owners and delivery teams working on a variety of solutions for both colleagues and members. This will include developing solution intents and designs, threat models, and architectural guardrails.

This opportunity is within the Security Architecture team, part of Security and Resilience. The team has a challenging mandate to architect, engineer, and assure the delivery of effective security controls to enable innovative solutions across hybrid on-premises and cloud IT environments. We seek your expertise to strengthen Nationwide's reputation for reliability and trustworthiness.

We support flexible working arrangements to help you perform at your best. Nationwide offers hybrid working, combining office presence at Swindon or London with home working, fostering collaboration and connection.

If successful, your manager will provide further details on hybrid working arrangements. Please note, due to high application volume, the advert may close early.

As a Network Security Architect, your day-to-day will be dynamic. You will work closely with technology delivery teams to identify and document key actors and threats, ensuring security policies, standards, and regulations are understood and implemented effectively.

In collaboration with Security and Resilience and Networking teams, you will identify solutions that deliver security controls, mitigate threats within risk appetite, and ensure compliance. You will manage the technology controls framework, maintaining a roadmap for maturity, coverage, and effectiveness. Creating practical knowledge artifacts such as solution intents, security designs, and patterns will be essential.

You will also have the opportunity to develop your skills by working on architecture patterns and improving team practices, contributing to critical member-facing applications, backend systems, and future initiatives.

You should have significant experience or aptitude in areas such as:

• Identity and Access Management (e.g., MFA, SAML, Kerberos)
• Networking protocols and security (e.g., IPv4/6, TLS, VPN, Wireless Security)
• Automation and scripting (e.g., API, Ansible, Terraform, Bash, PowerShell)
• Security architectures (e.g., Zero Trust, micro-segmentation, NGFW, WAF)
• Cloud security (e.g., SaaS, SASE, DDoS mitigation)

Additionally, you should have:

• An understanding of enterprise security threats, controls, and principles
• Experience in threat evaluation and documenting architectural solutions
• Knowledge of security policies, standards, and audit findings
• Experience with maturity frameworks like NIST CSF or ISO27001
• Knowledge of financial regulations such as PCI-DSS and GDPR
• Professional security qualifications (e.g., CISSP, ISSAP)

Our customer-first behaviors include:

• Feel what customers feel
• Say it straight
• Push for better
• Get it done

Demonstrating these behaviors will strengthen your application.

Benefits include:

• Pension contributions
• Paid volunteering days
• Life assurance
• Salary sacrifice benefits
• Wellbeing programs
• Performance bonuses
• Training and development
• 25 days holiday (pro-rata)

As a mutual owned by members, Nationwide challenges the financial sector status quo, sharing profits and prioritizing customer needs. If you are inspired by fairer finance and making a difference, you are one of us.

If interested, click 'Apply Now', attach your CV, and answer a few questions. We will contact all applicants after the closing date.