Security Architect

The Security Architect will be responsible for the design, implementation, and ongoing development of the security architecture of the client's IT systems.

The Security Architect will draw upon Enterprise Security Architecture or Security Solutions Architecture to:

• Identify business objectives, user needs, risk appetite, and cyber security obligations
• Identify vulnerabilities, perform threat modelling, undertake risk assessment, evaluate the effectiveness of security controls
• Verify and evidence alignment to 'Secure by Design' principles, corporate security policy/standards, as well as industry-recognized frameworks and best practices

What you'll be doing:

• Develop, deliver, and continually enhance a coherent approach to the design of secure client end-to-end solutions
• Develop secure conceptual, logical, and high-level designs by identifying appropriate security controls to be embedded in solutions that meet business requirements whilst evidencing alignment to the target risk appetite
• Own the design and be able to articulate and justify design recommendations at security architecture assurance gates
• Draft design documentation, options papers, risk assessments, stakeholder presentations, and communicate these effectively to both technical and non-technical stakeholders
• Contribute to a reference architecture of established patterns, principles, and guidelines
• Research emerging technologies and new products, positioning them against the evolving threat landscape and client risk appetite
• Distil complex information into key discussion points to facilitate resolution rather than just identifying challenges
• Contribute to developing the Security Practice's skills and capabilities, including coaching and mentoring junior team members
• Lead the development of collateral to support security consulting propositions and service offerings
• Lead the development and presentation of client proposals in collaboration with teams across the business
• Manage relationships with stakeholders at senior levels to enable consensus on secure client solutions
• Guide and deliver value through security advisory services and secure transformational delivery engagements
• Provide expertise on security standards and certifications, measure and control security controls effectiveness, and maintain the Information Security Management System
• Develop and deliver Security Management Plans incorporating regulatory, legal, and compliance considerations
• Identify and analyze cyber security vulnerabilities and threats, leading risk mitigation plans
• Work with Service Management to ensure partners and suppliers adhere to standards and policies, and verify compliance and security KPIs
• Collaborate with the first, second, and third lines of defense on cyber security, data privacy, and compliance matters
• Enhance governance, risk, and compliance frameworks aligned with policies and industry best practices
• Continuously assess, analyze, and report security metrics to support informed risk-based decisions
• Challenge established processes to identify improvements and ensure security responsibilities are understood at all levels
• Review and verify documentation related to security controls and processes

What experience you'll bring:

• Minimum of 5 years’ experience in a multi-tiered IT enterprise environment or GRC role
• Proven track record in delivering security solutions for large-scale infrastructure, transformation, or integration projects
• Practical knowledge of industry security frameworks such as NIST CSF, NIST 800-53, NCSC CAF, and other guidelines
• Good understanding of networking (switching, routing, firewalls)
• Experience with Cloud platforms (AWS and/or Microsoft Azure), including native security features and best practices
• Deep knowledge of modern security concepts, attack vectors, malware, security analytics, and threat intelligence
• Understanding of security testing and vulnerability management, including pen testing, CVSS, and CVE
• Experience with security standards such as ISO 27001, 27002, 27017, and 27108

DESIRABLE SKILLS AND EXPERIENCE

• CISSP, CISM, CCSP, CRISC, or similar certifications
• Knowledge of Active Directory, Cryptography, IAM, PKI, server hardening, SIEM, SOAR, and virtualization (VMware)
• Experience in pre-sales activities and supporting delivery collateral
• Familiarity with MITRE ATT&CK and ITIL frameworks

Who we are:

We’re a global business empowering local teams, undertaking exciting work that changes the world. Our portfolio spans consulting, applications, business processes, cloud, and infrastructure services, enabling you to achieve great things with talented colleagues and clients.

Our inclusive environment promotes mutual respect, accountability, and continuous learning, fostering collaboration, well-being, growth, and agility. We proudly support various Inclusion Networks such as Women’s Business Network, Cultural and Ethnicity Network, LGBTQ+ & Allies Network, Neurodiversity Network, and Parent Network.

For more on Diversity, Equity, and Inclusion, please visit: Creating Inclusion Together at NTT DATA UK | NTT DATA

What we'll offer you:

We provide tailored benefits supporting your physical, emotional, and financial well-being. Our Learning and Development team offers ongoing growth opportunities, and flexible work options are available.

We are an equal opportunities employer committed to diversity, equity, and inclusion. We are a Disability Confident employer and support reasonable adjustments during the recruitment process. We look forward to your application.