Security Architect (SC), 3 Month Contract, Fully Remote, Outside IR35
Rate: £500 per day Outside IR35
Active SC is Mandatory
Overview
We are looking for an experienced Security Architect to join a public sector programme on an initial 3 month contract basis. This is a fully remote engagement, sitting outside IR35, and is focused on delivering robust cloud security architecture across AWS and Azure environments. The successful candidate will play a key role in shaping security design across the programme, ensuring alignment with industry frameworks and government standards. You will work closely with engineering, delivery, and governance teams to define and document architectural patterns, lead threat modelling activity, and provide hands-on guidance across cloud workloads and infrastructure.
Key Responsibilities
* Design and own end-to-end security architecture across AWS and Azure cloud environments, ensuring solutions are secure by design and aligned to programme objectives.
* Develop and maintain architectural artefacts including HLDs, LLDs, and security design documentation in line with standards and wider government frameworks.
* Lead threat modelling and risk assessment activities across cloud workloads, identifying security gaps and providing actionable remediation guidance.
* Ensure adherence to relevant security frameworks including NCSC Cyber Essentials, NIST, ISO 27001, and the Government Security Classification (GSC) policy.
* Engage with technical and non-technical stakeholders to communicate security requirements, influence design decisions, and support governance and assurance processes.
Key Skills
* Proven experience in security architecture roles with demonstrable delivery across AWS and/or Azure cloud platforms, including IAM, network segmentation, and data protection controls.
* Strong working knowledge of security frameworks such as NIST CSF, ISO 27001, NCSC guidance, and experience applying these within regulated or public sector environments.
* Ability to produce high quality security design documentation and architecture artefacts, with experience working within structured delivery methodologies (Agile or Waterfall).
* Experience conducting threat modelling, risk assessments, and security reviews across complex cloud native or hybrid environments.
* Excellent stakeholder engagement and communication skills, with the ability to translate technical security concepts for non-technical audiences across large programme teams.