Amentum is a global leader in engineering, project and programme management, and solutions integration. Built on strong programme and engineering delivery experience, supported by deep specialist capabilities, Amentum is a recognised partner across major UK Government and commercial programmes.
People are at the centre of what we do. We offer a competitive package designed to attract and retain talent. In addition to standard benefits, UK employees receive free single medical cover, digital GP services, enhanced family‑friendly policies, employee assistance programmes, and reimbursement for professional development.
About the Opportunity
Amentum is offering an exciting opportunity to join our growing team of IT professionals to work on a range of projects for our diverse client portfolio that covers Critical National Infrastructure, National Security, Defence and Nuclear market sectors. Our team is growing and we are looking for proactive and collaborative professionals of all levels to provide a range of services to our clients. With our deep technical, commercial, and strategic expertise we develop solutions that address our client’s critical challenges supporting digitalisation and security.
We are looking for an individual to join our team supporting ICT system design activities for a UK defence project. You will play an integral role in safeguarding the integrity and confidentiality of our client’s data and systems, responsible for designing, implementing, and maintaining security architectures that protect against a wide range of cyber threats.
Key Responsibilities
* Design Security Architecture – Create and oversee robust security architectures for the ICT capabilities, including planning, building, and maintaining the overall security framework in line with Secure by Design.
* Strategic Alignment – Ensure security architectures align with the client’s overall business strategy and technology goals, translating business needs into security requirements.
* Threat and Vulnerability Management – Identify, assess, and communicate current and emerging security threats and vulnerabilities, performing or supervising risk analyses and security assessments (including ITHC).
* Security Solution Design and Evaluation – Research, evaluate, and recommend security technologies, tools (firewalls, VPNs, IDS/IPS, EDR, SIEM, SOAR) and solutions to mitigate identified threats and address security needs.
* Policy and Procedure Development – Define, implement, and maintain corporate security policies, standards, and procedures to ensure compliance with industry regulations, legal requirements (GDPR, HIPAA), and best practices.
* Incident Response and Management – Develop incident response plans and coordinate efforts to detect, analyse, and respond to security incidents and breaches.
* Stakeholder Communication and Collaboration – Effectively communicate complex security concepts, risks, and recommendations to diverse technical and non‑technical stakeholders, including senior management.
Requirements
* Degree qualified in Cyber Security, Computer Science, Engineering, or related discipline (or equivalent experience).
* Excellent communication and stakeholder engagement skills, with the ability to influence at senior levels.
* Strong analytical skills with the ability to break down complex security challenges.
* Ability to produce high‑quality technical documentation for both technical and non‑technical audiences.
Experience
* 5 years of experience as a Security Architect within UK Defence.
* Deep understanding of computer systems, networking, and cybersecurity principles; strong analytical and problem‑solving skills.
* Knowledge of cybersecurity standards and best practices.
* Ability to design and implement security architectures.
* Ability to stay up-to-date with the latest cybersecurity threats and trends.
* Hands‑on experience with security technologies such as firewalls, intrusion detection systems, encryption, etc.
Standards & Frameworks
* Experience with MOD security standards and principles (e.g., JSP440, JSP453, Secure by Design) and industry frameworks (e.g., NIST Cyber Security Framework, ISO 27001).
* Professional certifications such as CISSP, CISM, or NCSC Certified Cyber Professional (CCP) desirable.
#J-18808-Ljbffr