Security Architect

Security Architect

Job Description

[Up to c. £250k Comp Package | On-Site Working]

Role Overview

We’re working with a highly regarded London-based investment firm seeking a Security Architect to shape secure design across cloud, Kubernetes, application delivery, identity, and enterprise security controls. Sitting within a small, high-impact cybersecurity function, this role will act as a technical design authority across modern platforms, partnering closely with engineering, infrastructure, cloud, development, trading, investment, and compliance teams to embed security into technology decisions from the outset...

Key Responsibilities

• Lead security architecture across cloud, Kubernetes, secure software delivery, identity, infrastructure, and enterprise control domains
• Define practical security principles, reference designs, patterns, standards, and reusable guardrails for engineering teams
• Act as a security design authority for cloud platforms, Kubernetes clusters, application architectures, CI/CD pipelines, developer workflows, and supporting infrastructure
• Review new systems, platforms, applications, and material technology changes, identifying risks and recommending proportionate controls
• Shape cloud security architecture across identity, networking, encryption, logging, workload protection, secrets management, CSPM, and policy-as-code
• Define Kubernetes security patterns covering cluster design, workload isolation, admission control, image security, runtime security, network policies, observability, and secure deployment
• Influence secure software development practices across threat modelling, secure design, CI/CD controls, application testing, dependency risk, secrets scanning, and software supply chain security
• Contribute to security roadmaps, control maturity plans, technical documentation, decision records, risk assessments, and target-state architecture

What You’ll Bring…

• 7+ years of cybersecurity experience, including strong exposure to security architecture, security design, or senior technical security leadership
• A strong academic background from a highly selective university or international equivalent, ideally in a technical discipline
• Strong cloud security architecture knowledge across identity, networking, encryption, logging, monitoring, posture management, and workload protection
• Experience designing or reviewing controls for Kubernetes, containers, and cloud-native platforms
• Experience with policy-as-code, infrastructure-as-code security, and automated guardrails across cloud or Kubernetes environments
• Strong understanding of secure software development, including threat modelling, secure design, CI/CD security, application testing, secrets management, dependency management, and software supply chain risk
• Ability to assess technical designs, identify risk, explain trade-offs, and recommend practical security controls for engineering teams
• Experience defining security standards, architecture patterns, control requirements, and technical guardrails across complex enterprise environments
• Strong communication and stakeholder skills, with the ability to influence infrastructure, cloud, development, security, risk, and business teams
• Clear architecture documentation skills, including design principles, control requirements, risk assessments, decision records, and target-state recommendations
• (Preferred) Relevant certifications such as CISSP, CCSP, GIAC, AWS Security Specialty, Azure Security Engineer, or equivalent practical experience
• (Preferred) Experience with CSPM, container security, Kubernetes policy enforcement, SCA, SAST, DAST, secrets scanning, CI/CD security, or cloud-native security tooling
• (Preferred) Familiarity with DevSecOps models and embedding security controls into developer workflows

...

Apply for this role

All fields marked with * are required.