The Security Architect role focuses on designing secure architectures for cloud and AI systems, particularly using Google Cloud Platform. Candidates should have a strong background in cloud security, risk management, and compliance frameworks. Required certifications include CISA and CISSP. The position involves mentoring teams and engaging with stakeholders to ensure robust security practices. What youll be doing: As a Security Architect, you will play a key role in designing and delivering secure, scalable, and compliant architectures for our clients, with a particular focus on Google Cloud Platform (GCP) and emerging Agentic AI systems. Leveraging your strong cloud security and governance expertise, you will: Security Architecture • Translate business, data protection and security requirements into practical architectural designs leveraging industry frameworks (NIST, ISO 27001, CIS). • Design and maintain cloud native security architectures, with deep expertise in GCP architecture, security services, and secure workload design. • Establish secure architectural patterns and standards across cloud platforms, with specific focus on GCP IAM, VPC Service Controls, Cloud Armor, Confidential Computing, and secure workload segmentation. • Develop security design documentation, diagrams, and rationale aligned with business and compliance requirements. • Apply risk based and threat based approaches to recommend secure and proportionate solutions. Agentic AI & LLM Security Architecture You will be responsible for shaping security controls around emerging AI ecosystems, including: • Designing security architectures for agent based AI systems, including orchestration frameworks, tool use agents, and multi agent workflows. • Implementing AI/LLM security controls across: • Model security (input/output filtering, model guardrails) • Prompt security, adversarial prompt defense, prompt isolation • API & orchestration security, including secure agent tool use • Data security for vector stores, embeddings, and retrieval services • Performing AI specific threat modelling, including: • Model extraction & poisoning • Hallucination driven risk • Sensitive data leakage • Toxic output & jailbreak attempts • Advising on secure integration of AI with cloud environments, focusing on compliant, privacy aware design. Risk & Threat Management • Conduct comprehensive risk assessments and threat modelling for cloud and AI systems. • Support incident response, including issues involving AI driven systems and automated agents. • Provide actionable mitigation strategies for cloud and AI threats. Stakeholder Engagement & Technical Leadership • Provide expert guidance to clients, presenting complex cloud and AI security concepts to technical and non technical partners. • Mentor teams on secure cloud design, AI security, and modern architecture practices. • Participate in pre sales and contribute to delivery collateral Security Policy, Standards & Governance • Develop and implement cloud and AI security policies and standards. • Support compliance assessments and audits, including cloud specific controls and emerging AI regulatory frameworks. • Ensure alignment to governance standards such as ISO 27001, NIST 800 53/CSF, NIS2, DORA, and industry cloud security benchmarks. Technology Evaluation & Continuous Improvement • Conduct cloud and AI security architecture reviews, including: • Cloud configuration reviews • GCP security posture assessments • AI pipeline hardening • Evaluate and recommend security technologies for cloud, AI, identity, and data protection. • Stay up to date with new threats, especially in LLM, agentic AI, and GCP contexts. What experience youll bring: Required Core Profile • Security first mindset — this role is primarily for a Security Architect, not a general cloud architect. • 5 year’s experience in information security, cloud security and architecture roles. • Strong knowledge of security governance, risk and compliance frameworks (ISO 27001, NIST CSF/800 53, NIS2, DORA). • Strong communication skills and ability to work with senior stakeholders. • Experience mentoring teams or influencing security decisions. Required Technical Skills Google Cloud Platform (GCP) • Cloud native architecture design (GCP focused). • Deep hands on experience with GCP security services and GCP security best practices. • Experience architecting secure multi project setups and identity boundaries. Agentic AI Security • Experience designing security for agent based AI systems and LLM integrated applications. • Hands on experience with AI/LLM security controls (prompt security, model governance, secure APIs, orchestration security). • AI specific threat modelling expertise. Cloud & Security Architecture • Strong cloud security background across AWS/Azure/GCP. • Experience in secure design of: • IAM • Zero Trust • Network segmentation • Data protection and encryption • Application and API security • Knowledge of SIEM, IAM, CASB, container/Kubernetes security. • Experience in Vibe coding, as well as technologies experience similar to Openclaw and Ollama Certifications • One or more of: CISA, CRISC, CISM, CISSP (required). Other Requirements • Eligible to obtain UK SC clearance. • Right to work in the UK. At NTT DATA, you have endless opportunities to think big, act bold and take ownership. As a $30 billion business and technology services, AI and digital infrastructure leader, we co-innovate solutions with clients and partners globally for business and societal impact. Serving 75% of the Fortune Global 100, with experts in over 70 countries, we encourage experimentation and recognize great work. Proudly a Global Top Employer, NTT DATA is part of NTT Group, which invests over $3 billion annually in R&D. Make this the place where you belong, learn, and build your network. Make this the place where you grow.