Security Architect

Security Architect

Hybrid - London

Full Time, Permanent

Competitive salary plus benefits

Join Serco's UK & Europe division as a Security Architect and be at the forefront of shaping our IT security landscape. In this pivotal role, you'll translate business needs into actionable security solutions, identifying and addressing gaps in our current IT capabilities. You'll define innovative strategies to bridge these gaps, ensuring seamless alignment between project delivery, overall strategy, and architecture. Take the lead in driving critical IT security workstreams and make a lasting impact on the resilience and effectiveness of our systems.

As our Security Architect, you'll take the lead in shaping Serco's security strategy. You'll drive key decisions on technology selection, guide seamless implementations, and oversee ongoing security services. By maintaining a detailed and robust security architecture across all systems, you'll ensure a solid foundation for future design and innovation in our security technology landscape.

Serco is a global leader in public services, known for delivering essential solutions that make a real difference in people's lives. Joining Serco means being part of a forward-thinking organisation that values innovation, collaboration, and customer-centricity.

Main responsibilities of the role:

• Take operational ownership of all information security management processes, including:
  • Information security risk management
  • Information security incident management
  • Information security assurance activities
  • Establishment and management of an information security management forum
  • Support the ICT system accreditation
• Support ISO/IEC 27001 certification where required.
• Support a variety of projects and design activities, including:
  • Security factors such as HMG policy and good practice
  • Assurance requirements
  • Technical requirements
  • Recommendations of security technologies and controls
  • Physical security requirements
  • Personnel and/or procedural requirements
• Provide support to security management functions to maintain the existing compliances, including system accreditation, ISO27001 and HMG security controls.
• Adopt a proactive approach to security management and security assurance coordination, ensuring smooth running of scheduled activities (pen-tests, security documentation review) and gaining the trust of key stakeholders (including customer representatives and accreditors).
• Engage with external audit and assurance providers, including IT Security Health Check suppliers, scoping test plans, and helping stakeholders interpret the results of the tests and audits, as well as supporting the implementation of any remedial actions.
• Implement the Business Unit Information Security Policy and related processes and procedures in line with ISO27001 and Government policies. Undertake gap analyses against formal security frameworks, reporting on areas of deficiency and producing remedial action plans.
• Manage incident response and conduct investigations to understand the source of security breaches, assess and contain damage and devise measures to protect against future breaches.

What you'll need:

• Bachelor's degree in an IT related discipline is expected but not mandatory.
• Thorough understanding of modern IT infrastructure, applications and Cloud based technologies.
• Strong understanding of Secure by Design principles and MOD security policies and requirements (e.g. JSP 440, JSP 605, DEFCON 658).
• Proven analytical skills with a logical approach to problem-solving and the ability to develop innovative ideas and effective solutions.
• Effective communication skills and ability to convey complex technical details to clients in a straightforward manner.
• Strong background in security architectures, processes and both industry and government compliances (ISO27001, CES, CES+ in particular).
• Background in Microsoft, AWS and/or Cloudflare security technology would be beneficial.
• Good knowledge of security standards, legislation, and best practice.
• Must be able to achieve SC clearance upon appointment.

What we offer:

• Company car / £4200 cash allowance.
• Bonus scheme - 20% max.
• Private healthcare - individual.
• Life assurance.
• Up to 6% contributory pension.
• 25 days annual leave plus bank holidays.
• Annual leave purchase scheme.
• Access to the Serco benefits portal offering discounts across major high street brands in Retail, Leisure & Hospitality.
• Health and wellbeing support for you and your family, including an Employee Assistance Programme, Health Cash Plans, free flu jabs, and more.
• Comprehensive career development opportunities, including role-specific training, leadership coaching, and formal study to support your growth with Serco.
• A safe, inclusive, and supportive culture.
• A company passionate about diversity and inclusion.

Apply
Please click on the apply button to complete your application. Occasionally we receive a large volume of applications for our roles and when that happens we sometimes bring the closing date forward, so please apply promptly to avoid disappointment.

At Serco, we see people first and foremost for their performance and potential. We are committed to building a diverse and inclusive organisation that supports the needs of all. As such we will make reasonable adjustments at interview through to employment for our candidates and strongly encourage applications from a diverse candidate pool. We are open to discussions around flexibility and flexible working. We operate a hybrid work structure in many of our business areas. We are proudly Disability Confident Leaders and holders of the Gold Inclusive Employer Standard. Disabled applicants who meet the minimum criteria for the job will be given the opportunity to demonstrate their abilities at an interview. For help with your application please contact 0345 010 4000.