Enable job alerts via email!

Security Architect

Stott and May

Swindon

Hybrid

GBP 80,000 - 100,000

Part time

Yesterday

Be an early applicant

Job summary

A leading financial services firm is seeking an experienced Security Architect in Swindon (Hybrid). You will ensure robust security controls across hybrid and multi-cloud environments, involving cutting-edge technologies. Key responsibilities include developing security architecture, conducting risk assessments, and designing secure API gateways. Ideal candidates have strong knowledge in security architectures and relevant qualifications like CISM or CISSP. This role offers a day rate of £531.25 Inside IR35.

Qualifications

Proven Security Architect experience in large, complex organizations, ideally in financial services (PCI compliance).
Hands-on experience with IBM DataPower, OAuth 2.0, JWT, TLS, WS-Security, and encryption standards.
Strong cryptography knowledge and the ability to design secure architectures for hybrid/multi-cloud environments.

Responsibilities

Develop and maintain security architecture for service mesh and containerised environments.
Conduct risk assessments and implement mitigation strategies.
Create threat models aligned with MITRE ATTACK & STRIDE frameworks.

Skills

Security Architect experience

IBM DataPower

OAuth 2.0

TLS

WS-Security

CISM or CISSP qualification

CI/CD tools (Terraform, Ansible, Git, Jenkins)

Cryptography knowledge

Security Architect

Location: Swindon (Hybrid)
Contract Duration: 6 Months
Start Date: ASAP
Day Rate: £531.25 Inside IR35

Role Overview

We are seeking an experienced Security Architect to join our Realtime Platforms team. You will ensure robust security controls across hybrid and multi-cloud environments for a leading financial services organisation, aligning with regulatory and compliance requirements. This role involves working on cutting-edge technologies including service mesh deployments and IBM DataPower for API security and integration, contributing to high-impact projects that protect sensitive data and digital assets.

Key Responsibilities

Develop and maintain security architecture for service mesh and containerised environments.
Conduct risk assessments and implement mitigation strategies.
Create threat models aligned with MITRE ATTACK & STRIDE frameworks.
Recommend controls and enforce best practices for APIs, microservices, and data flows.
Design and review secure API gateways using IBM DataPower.
Implement mTLS, RBAC, and zero-trust principles.
Configure and manage IBM DataPower for API security, encryption, authentication, and traffic mediation.
Collaborate with teams to integrate security measures and communicate risks to stakeholders.

Required Skills & Knowledge

Proven Security Architect experience in large, complex organisations, ideally in financial services (PCI compliance).
Hands-on experience with IBM DataPower, OAuth 2.0, JWT, TLS, WS-Security, and encryption standards.
Previous experience developing bespoke threat models using MITRE ATTACK & STRIDE.
Ability to design secure architectures for hybrid/multi-cloud environments.
Knowledge of zero-trust security models and microservices security.
Ability to assess security aspects of technical designs and provide constructive guidance.
Strong cryptography knowledge.
Experience in UK Financial Services or similar regulated industry.
Relevant qualification (or working towards) such as CISM or CISSP.
Familiarity with M&A processes and associated security challenges.
Proficiency in CI/CD tools (Terraform, Ansible, Git, Jenkins).
Knowledge of PCI-DSS (including PCI-P), GDPR, and financial regulatory frameworks.
Excellent interpersonal, communication, and client-facing skills.
Assertive, collaborative, and able to lead or support teams effectively.

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.