Security Architect

Position : Security Architect

Employment Type : Contract

Start : ASAP (November / December2025)

Duration : 6Months (with expected extension)

Location : Wiltshire, UK (Hybrid)

Language(s) : English

Focus on SAP is a specialist SAP and ERP Recruitment organisation offering both permanent and contract staffing solutions on a global scale.

Client – Partnered with a global leader in digital transformation and IT services, working with some of the world’s biggest brands. Their mission is not only to deliver cutting‑edge technology but also to empower organisations to create meaningful impact for the people and communities they serve. For you, this means working on challenging projects that demand innovation, collaboration, and thought leadership.

Role – We are seeking an experienced Security Architect with strong expertise in service mesh security and API security to join a major transformation programme within a highly regulated environment. You will play a key role in designing and governing security controls across hybrid and multi‑cloud platforms, ensuring robust protection of microservices, APIs, and data flows while aligning with industry security, compliance, and regulatory standards.

This role offers the opportunity to influence and shape security architecture across critical platforms, working closely with senior security, engineering, and architecture teams to uplift cyber maturity across a major transformation initiative.

• Define and maintain security architecture for service mesh deployments across Kubernetes and containerised platforms.
• Conduct risk assessments and develop mitigation strategies for identified vulnerabilities.
• Create detailed threat models aligned to MITRE ATT&CK and STRIDE frameworks.
• Design and review secure API gateway patterns using IBM DataPower.
• Lead implementation of Zero‑Trust, mTLS, RBAC and policy enforcement within service mesh environments.
• Define and enforce security standards, controls, and policies for microservices, APIs, and data flows.
• Ensure architecture and implementations support compliance with PCI DSS, ISO 27001, GDPR and other regulatory requirements.
• Configure and manage IBM DataPower for encryption, authentication (OAuth2, JWT, WS‑Security), and traffic mediation.
• Collaborate with engineering, platform, and architecture teams to embed security‑by‑design.
• Communicate security risks, architectural decisions, and recommendations to senior stakeholders and technology leadership.

• Proven experience as a Security Architect in large, complex or regulated environments (Financial Services ideal).
• Strong hands‑on experience with IBM DataPower for API security, policy enforcement and integration.
• Strong understanding of OAuth 2.0, JWT, TLS, WS‑Security, cryptography and secure communication protocols.
• Experience designing secure architectures for hybrid / multi‑cloud environments.
• Strong background in Zero‑Trust, microservices security, and containerised platforms.
• Experienced in building bespoke threat models using MITRE ATT&CK & STRIDE.
• Ability to assess security elements of solution designs, constructively challenge, and drive secure outcomes.

If you are interested or would like to know more, please email jonathan.la@focusonsap.org with your CV and availability to speak.

Applicants must be a UK resident and holds a valid right to work status.