Principal Enterprise Security Architect

Legal & General (L&G) is a leading UK financial services group and major global investor.

We've been safeguarding people's financial futures since 1836, and strive to build a better society, while improving the lives of our customers and creating value for shareholders.

We are one of the world's largest asset managers and provide powerful asset origination capabilities. Together, these underpin our retirement and protection solutions: we are an international player in pension risk transfer, in UK and US life insurance, and in UK workplace pensions and retirement income.

Our Group Functions provide the services that all areas of the business need. This requires a talented and diverse team behind the scenes, who enable everyone at L&G to do what they do best.

Joining us means helping to improve the lives of our customers and contributing to the success of the business every day.

We are seeking an experienced Principal Enterprise Security Architect to lead the secure design and development of solutions across Legal & General. This role is critical in shaping and maintaining a robust enterprise security architecture by leveraging the collective expertise of the L&G security architecture community.

The successful candidate will be responsible for defining and embedding enterprise-level security processes and artefacts, ensuring that all solutions align with our strategic security objectives and industry best practices.

What you'll be doing:

• Bringing together the security architecture community across the group by chairing the Security Architecture Community Forum and interfacing with other governance forums to represent collective insights
• Developing tailored artefacts and methodologies for Legal & General, adapting frameworks such as NATO Architecture Framework, Zachman, and SABSA to suit organisational needs
• Maintaining an Enterprise Security Reference Architecture that illustrates how our architecture addresses cyber risks, including documenting accepted risks and associated design patterns
• Collaborating with the Security Policy and Standards team to define and maintain architecture requirements that embed security into solutions and services, ensuring consistency, quality, and strategic alignment
• Leading the transition towards pattern-based design and working with workflow product teams to establish processes for workflow-enabled assurance, identifying what can and cannot be assured through this method
• Producing development roadmaps for central security capabilities in partnership with technology and security teams, shaping priorities to meet future needs and participating in relevant committees
• Ensuring that business and system changes follow best practices and comply with the IT Change Management Standard and approved methodologies

Who we're looking for:

• Holding a certification in Information Security or IT (e.g. CISSP, CISM, CCP) is preferred but not essential
• Demonstrating applied knowledge of security architecture methodologies such as NATO Architecture Framework, Zachman, or SABSA
• Applying threat modelling techniques to assess and mitigate risks effectively
• Understanding pattern-based design and workflow-enabled assurance; experience with ServiceNow implementation is advantageous
• Possessing strong expertise in enterprise architecture, roadmap design, and defining system requirements
• Bringing practical experience in designing and delivering enterprise solutions from concept to production
• Communicating complex security and architecture concerns credibly with senior IT and business stakeholders
• Influencing strategic direction through thought leadership, with experience in Critical National Infrastructure or Government environments considered beneficial

• The opportunity to participate in our annual, performance-related bonus plan and valuable share schemes
• Generous pension contribution
• Life assurance
• Healthcare Plan (permanent employees only)
• At least 25 days holiday, plus public holidays, 26 days after 2 years' service. There's also the option to buy and sell holiday
• Competitive family leave
• Participate in our electric car scheme, which offers employees the option to hire a brand-new electric car through tax efficient salary sacrifice (permanent employees only)
• There are the many discounts we offer - both for our own products and at a range of high street stores and online
• In 2023, some of our workspaces were redesigned. Our offices are great spaces to connect and collaborate and have your wellbeing at the heart

At L&G, we believe it's possible to generate positive returns today while helping to build a better future for all.

If you join us, you'll be part of a welcoming, inclusive culture, with opportunities to collaborate with people of diverse backgrounds, views, and experiences. Guided by leaders with integrity who care about your future and wellbeing. Empowered through initiatives which support people to develop their careers and excel.

We care passionately about outcomes rather than attendance and are therefore open to discussing all kinds of flexible working options including part-time, term-time and job shares. Although some roles have limited flexibility due to customer demand, we accommodate requests when we can.

It doesn't matter if you don't meet every single criterion in this advert. Instead, think about what you excel at and what else you can bring in terms of strengths, potential and connection to our purpose.

Videos To Watch
https://www.youtube.com/watch?v=djTs2V4JUFs