Cloud Security Architect

Job Description

What will your ‘typical’ day look like? Different that’s for sure…:

As a Security Architect you are a technical leader and an accelerator. You’ll translate our strategic objectives into a robust security architecture that protects our customers while enabling the safe, rapid adoption of new services. You’ll partner with product and engineering teams to move away from “tick-box” compliance and toward a culture of security by design, ensuring a sustainable flow of value across our entire estate.

In your first year, you’ll have the autonomy to build deep stakeholder relationships, contribute to our evolving security capability, and create the momentum needed to mitigate risks and reduce long-term technology debt.

What you’ll be doing:

• Leading Design: Architecting scalable, resilient, and secure solutions for new products and features.
• Strategic Roadmapping: Developing aspirational “future state” architectures that bridge the gap between product ambition and technical reality
• Conversational Governance: Moving beyond rigid frameworks by engaging in ongoing coaching, communicating standards, and capturing architectural decisions (ADRs) in real-time.
• Cultivating Commitment: Building strong ties with Value Stream leads to ensure security initiatives are prioritized and understood at the leadership level.
• Modern Defense: Applying principles like Zero Trust and Defense-in-Depth to modern patterns like microservices, event-driven architecture, and serverless computing.
• DevSecOps Integration: Partnering with DevOps to bake security directly into our CI/CD pipelines.
• System Resilience: Proactively identifying architectural risks to improve system health and eliminate technical debt.

What do we need from you?

• Deep experience in design, implementation, or consulting within a security context.
• You’re a practitioner in at least one (ideally more) of these areas: Cloud Security, AppSec, Data Security, IAM, or Network Security.
• You understand how to secure microservices and cloud-native environments (bonus points for GCP, Vertex AI, or Thought Machine).
• A systematic and disciplined approach to problem-solving with a high attention to detail.
• You can navigate technology governance processes constructively and inspire others to deliver excellent technical outcomes.
• Ideally, you hold a CISSP, CISM, or CCSP, and have experience with frameworks like NIST or ISO 27001.
• Familiarity with Lean/Agile methodologies and “Value Stream” ways of working.