About the Role:
This is a senior role, operating across multiple delivery domains to ensure solutions are secure, pragmatic, and aligned to NEXT's architectural direction.
The Security Solution Architect will be responsible for designing and delivering secure, pragmatic, and cost-effective solutions that align with NEXT's technology strategy and security standards. They will ensure all solutions consider security, resilience, operability, and compliance from the outset, while being easy for delivery teams to adopt and operate.
They will act as a trusted representative of the InfoSec function within projects, providing clear guidance and options to stakeholders, and defining secure best practices when existing standards or patterns do not exist. They will collaborate across Product, Engineering, Platform, and InfoSec domains to ensure solutions are well-integrated and deliver measurable business value.
Key Responsibilities:
* Design and document end-to-end secure solutions for key projects, translating security standards into practical implementation guidance.
* Govern delivery against approved designs, managing exceptions and documenting architectural decisions and risks.
* Work closely with project and engineering teams to embed security by design into new and existing solutions.
* Define secure, best-practice approaches in areas without existing patterns, balancing business needs with security principles.
* Develop and promote reusable security patterns, reference architectures, and guardrails that drive consistency across solutions.
* Contribute to the wider architecture community, sharing knowledge and helping to shape standards and future-state designs.
About you:
We're looking for an experienced Architect with deep knowledge of enterprise security principles and a pragmatic approach to solution design. You'll be confident engaging at all levels of the organisation, balancing business priorities with technical excellence, and influencing outcomes through collaboration.
Skills & Experience:
* Proven experience designing and delivering secure solutions in complex, multi-platform environments (on-premise, hybrid, and Azure cloud).
* Strong expertise in security principles across identity, data, application, and infrastructure domains.
* Ability to translate requirements and frameworks (e.g. NIST, ISO into practical, consumable designs.
* Experience embedding controls for authentication, encryption, monitoring, and recovery within solution architectures.
* Excellent communication and stakeholder management skills, with the ability to influence decisions at all levels.
* Familiarity with modern practices such as DevSecOps, containerisation (Kubernetes/AKS), and Zero Trust models would be highly advantageous.
#LI-LE1 #LI-Hybrid