As a LeadSecurity Architect you will direct secure architecture across a portfolio worth hundreds of millions of pounds. Working with product owners, delivery managers and enterprise architects, you will ensure every new or changed service conforms to Home Office and NCSC standards while enabling rapid, user-centred delivery.
You will analyse emerging threats, advise on proportional mitigations, and produce or tailor reference patterns covering identity, network segmentation, container security, data protection, and monitoring. By modelling risks with frameworks such as ISO27005, NIST, or STRIDE, you will rationalise design choices to technical and nontechnical audiences and document them for reuse.
You will champion “secure by default” in agile pipelines, embedding IaC scanning, SAST/DAST, SBOM and cloud native guardrails, so security becomes a quality attribute owned by delivery teams.
Through communities of practice and one-to-one coaching, you will nurture SEO architects and engineers, acting as escalation point for complex design decisions.
Finally, you will cultivate relationships with external suppliers, government peers and industry forums to import good practice and influence future standards, ensuring Home Office services remain resilient, cost-effective and compliant.
#J-18808-Ljbffr