Security Architect – GCP & Agentic AI

Role

Design and deliver secure, scalable, and compliant cloud and AI architectures with a primary focus on Google Cloud Platform (GCP) and agentic AI systems. Provide technical leadership, threat modelling, and governance to protect cloud workloads, AI/LLM integrations, and data stores.

Key Responsibilities

Security Architecture

• Translate business, data protection and security requirements into practical architectural designs using industry frameworks (NIST, ISO 27001, CIS).
• Design and maintain cloud-native security architectures focused on GCP security services and secure workload design.
• Establish secure architectural patterns and standards across cloud platforms (GCP IAM, VPC Service Controls, Cloud Armor, Confidential Computing, workload segmentation).

Agentic AI & LLM Security Architecture

• Design security for agent-based AI systems, orchestration frameworks, tool-use agents, and multi-agent workflows.
• Implement AI/LLM security controls: model security (input/output filtering, guardrails), prompt security and isolation, API and orchestration security, and data security for vector stores and embeddings.
• Perform AI-specific threat modelling (model extraction/poisoning, hallucination risk, sensitive data leakage, jailbreak attempts).

Risk & Threat Management

• Conduct risk assessments and threat modelling for cloud and AI systems.
• Support incident response for AI-driven systems and automated agents and provide mitigation strategies.

Stakeholder Engagement & Technical Leadership

• Present complex cloud and AI security concepts to technical and non-technical stakeholders.
• Mentor teams on secure cloud design, AI security, and modern architecture practices.
• Contribute to pre-sales and delivery collateral.

Security Policy, Standards & Governance

• Develop and implement cloud and AI security policies, standards, and compliance assessments.
• Ensure alignment with governance frameworks such as ISO 27001, NIST 800-53/CSF, NIS2, and DORA.

Technology Evaluation & Continuous Improvement

• Conduct cloud and AI security reviews (configuration reviews, GCP security posture assessments, AI pipeline hardening).
• Evaluate and recommend security technologies for cloud, AI, identity, and data protection.

Requirements

Core Profile

• Security-first mindset; role is specifically for a Security Architect.
• 5+ years’ experience in information security, cloud security, and architecture roles.
• Strong knowledge of security governance, risk and compliance frameworks (ISO 27001, NIST CSF/800-53, NIS2, DORA).
• Strong communication skills and experience mentoring or influencing security decisions.

Technical Skills

• Deep hands-on experience with Google Cloud Platform (GCP) security services and cloud-native architecture design.
• Experience architecting secure multi-project setups and identity boundaries on GCP.
• Experience designing security for agent-based AI systems and implementing AI/LLM security controls (prompt security, model governance, secure APIs, orchestration security).
• Broad cloud security experience across AWS/Azure/GCP and secure design practices for IAM, Zero Trust, network segmentation, data protection, application and API security.
• Familiarity with SIEM, IAM tooling, CASB, and container/Kubernetes security.
• Experience in vibe coding and familiarity with technologies similar to Openclaw and Ollama.

Certifications

• One or more of: CISA, CRISC, CISM, CISSP (required).

Other Requirements

• Eligible to obtain UK SC clearance.
• Right to work in the UK.

Benefits

• Flexible work options.
• Learning & Development and continuous growth opportunities.
• Tailored wellbeing benefits for physical, emotional, and financial health.
• Inclusive hiring practices and Disability Confident commitments.