Join a leading independent technologypany as a Security Architect – Obsolescence! Job Overview:We are seeking a highly experienced Security Architect to provide technical security leadership across multiple projects and programmes primarily addressing technology obsolescence. This role is critical to ensuring that legacy platforms, infrastructure, and applications are remediated, modernised, retired, or migrated in a secure,pliant, and risk-managed manner.The role requires an experienced technical security architect who hase from a hands-on background but has an Information Assurance (IA) string to their bow. The role will support security assurance and design across multiple projects, some security for security and other security for business apps.The ideal candidate must have a breadth and depth of knowledge and, in particular, have a strong experience in Identity; ZeroTrust; Azure; Network Security; Application Security.The Security Architect will operate at pace, making informed security decisions inplex, time-constrained delivery environments.Role Title: Security Architect – ObsolescenceLocation: 100% remoteDuration: 1 year Start/End Date: 13-Apr-2026 to 12-Apr-2027Rate: £680/day to £740 via umbrella payroll co-op'The candidate must have SC Clearance.Key Responsibilities:
Security Architecture & Technical Leadership
1. Lead the design and assurance of security architectures supporting obsolescence remediation initiatives, including system upgrades, platform replacements, migrations, and dmissioning.
2. Provide hands-on technical security oversight for legacy on-premise systems transitioning to modern cloud or hybrid architectures.
3. Define secure target-state architectures aligned to enterprise standards, cloud best practices, and obsolescence roadmaps.
4. Act as the senior security authority across multiple concurrent projects and programmes.
5. Generating security design blueprints and patterns which are re-usable to accelerate design assurance and delivery.
Information Assurance & Risk Management
6. Conduct security risk assessments, threat modelling, and impact analysis for obsolete or end-of-life technologies.
7. Assess residual risk and define pragmatic remediation or risk acceptance strategies aligned with organisational risk appetite.
8. Ensure Information Assurance principles are embedded throughout solution design, implementation, and transition phases.
9. Provide formal security sign-off and assurance artefacts as required byernance forums.
Cloud & Hybrid Security (Azure-Focused)
10. Define and validate security requirements for public cloud platforms, with a strong emphasis on Microsoft Azure.
11. Ensure security by design for identity, networking, data protection, and workload security in hybrid and cloud-native environments.
12. Support migration from traditional data centre architectures to Azure, ensuring continuity of security controls andpliance.
13. Guide teams on secure use of Azure-native security capabilities and shared responsibility models.
Security Controls & Tooling
14. Define and oversee implementation of security controls covering:
15. Identity and Access Management (IAM)
16. Network security and segmentation
17. Encryption and key management
18. Logging, monitoring, and alerting (SIEM)
19. Vulnerability and configuration management
20. Lead security tooling modernisation, prioritising the effective use of Microsoft native security capabilities where appropriate.
21. Ensure legacy security controls are appropriately replaced or retired as part of obsolescence activities.
22. Ensure alignment with regulatory and standards-based requirements (, ISO 27001, NIST, GDPR) and internal security policies.
23. Collaborate with infrastructure, cloud, application, and programme delivery teams to embed security-by-design.
24. Support audit,pliance, and regulatory reviews relating to obsolete or transitioning systems.
25. Produce high-quality security documentation, architecture artefacts, and decision records.
Required Skills and Qualifications
26. Experience of the UK Defence sector and operating in classifications up to and including OFFICIAL sensitive.
27. Demonstrate an understanding of UK Secure by Design
28. Proven experience operating at pace, making timely, risk-informed security decisions inplex delivery environments.
29. Extensive experience as a Security Architect supporting large-scale transformation, obsolescence, or modernisation programmes.
30. Strong technical background in traditional on-premise enterprise architectures, including networks, servers, identity, and legacy platforms.
31. Demonstrable experience transitioning from on-premise environments to public cloud, with strong expertise in Microsoft Azure.
32. Deep hands-on knowledge of:
33. Cloud security architecture and frameworks
34. Identity and access management
35. Network and workload security
36. Encryption and data protection
37. Strong Information Assurance experience within regulated or risk-sensitive environments.
38. Experience working across multiple projects and programmes simultaneously.
39. Excellent stakeholder engagement, documentation, andmunication skills.
Preferred Qualifications
40. Security or architecture certifications such as CISSP, CCSP, SABSA, TOGAF, or Azure Security certifications.
41. Experience leveraging Microsoft security tooling such as Microsoft Defender, Sentinel, Entra ID, and Azure Policy.
42. Background in environments with significant legacy technical debt and time-bound remediation pressures.
Key Attributes
43. Highly technical and pragmatic
44. Strong risk-based decision-maker
45. Able to balance security rigor with business oues
46. Confident engaging at both engineering and seniorernance levels
How to Apply: If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career. #4785154 - Janhavi Bajpai