Overview
Lead Security Architect (Operational) - GLD - G7 – Manchester Digital
Location: Bristol, Croydon, Leeds, London, Manchester
Job Summary
From healthcare to artificial intelligence, energy to national security, we provide legal advice to government departments on nation-changing subjects. The Government Legal Department (GLD) delivers high-quality legal services across government and supports the Government to govern well within the rule of law.
GLD is a non-ministerial government department with offices nationwide. This is an exciting time to join GLD, with cutting-edge legal work and a transformation agenda to modernise the Civil Service.
About the Digital and Data Team
Government Digital and Data is a community of experts leading digital transformation in government. The Digital and Data Team’s mission is to provide GLD with an IT environment that’s ‘fit for the future’, using an agile, user-centred approach to develop and improve products and services while considering sustainability and staff experience.
About the Role
In GLD our Lead Security Architects are responsible for ensuring the secure design and development of solutions across the department. You will work with stakeholders to understand and meet security requirements in projects, ensuring design standards are applied during delivery. This role focuses on implementing cybersecurity controls across GLD’s digital infrastructure across multiple office locations.
You will:
* Provide secure design and technical assurance for digital solutions, aligning with GLD’s architecture standards, risk appetite, and security best practices.
* Identify, assess, and manage cybersecurity risks throughout project delivery and embed security in all technical design decisions.
* Deliver practical, hands-on support for cloud, network, and application security — particularly within Microsoft environments — and lead or contribute to cybersecurity governance and assurance forums, including business continuity and disaster recovery planning.
* Collaborate with internal and external stakeholders to maintain trust and alignment on security matters. Develop and maintain information security policies; oversee penetration testing and vulnerability management to drive continuous improvement.
Responsibilities
* Ensure secure design and development of GLD solutions and adherence to architecture standards.
* Lead or contribute to cybersecurity governance, risk management, and assurance activities.
* Provide hands-on security support for Microsoft 365, Azure security features, and Entra ID.
* Embed security in project delivery and drive continuous improvement in security practices.
* Engage with other government departments to coordinate security matters.
Person specification
Behaviours
* Delivering at Pace
* Communicating and Influencing
* Managing a Quality Service
Experience (Essential)
* Robust working knowledge of NCSC’s cyber security principles in enterprise/government environments.
* Experience designing secure digital services and providing technical security assurance.
* Ability to assess and manage cyber risks using structured methodologies.
* Understanding of Microsoft 365 and Azure security features, including Entra ID.
* Familiarity with common cybersecurity tools and platforms.
* Strong stakeholder engagement and communication skills for technical and non-technical audiences.
* Ability to contribute to ISO27001 implementation and ongoing certification.
Experience (Desirable)
* Experience planning and delivering projects.
* Hands-on experience with security technologies (e.g., Trend Micro, LogRhythm, CyberArk, Penterra, ManageEngine, Semperis or similar).
Technical Skills
* Implementing enterprise security architectural changes and drafting policies using NCSC guidance.
* Cyber essentials+, ISO27001/27005, DSIT/NCSC Secure by Design framework.
* Proficiency in security frameworks (NIST, ISO 27001, CIS, Zero-Trust).
* Threat modelling, risk assessment, and vulnerability management.
* Ability to evaluate and implement digital security technologies and controls across enterprise systems.
* Microsoft 365 and Azure Security, Entra ID.
Qualifications – Eligibility
* Relevant certifications such as CCSP, CISSP or SANS/GIAC preferred.
Security Clearance
All GLD employees must hold BPSS security clearance. If successful, you must hold, or be willing and able to obtain, DV level security clearance. You may start before obtaining the clearance. More information on vetting and clearance levels is available before applying.
Sponsorship and Visas
GLD may sponsor skilled workers if eligible under current immigration legislation. Sponsorship is not guaranteed. Applicants must ensure eligibility for sponsorship and must notify the Resourcing Team at onboarding if sponsorship is required.
Seniority level
* Mid-Senior level
Employment type
* Full-time
Job function
* Information Technology
Industries
* Technology, Information and Internet
Referrals increase your chances of interviewing at Manchester Digital. Get notified about new Security Architect jobs in Manchester, England, United Kingdom.
#J-18808-Ljbffr