Security Architect

Role

As a Security Architect you will design and deliver secure, scalable, and compliant architectures for clients with a particular focus on Google Cloud Platform (GCP) and emerging agentic AI systems. You will translate business, data protection and security requirements into practical architectural designs and security controls.

Key Responsibilities

• Design and maintain cloud-native security architectures with deep expertise in GCP services and secure workload design.
• Establish secure architectural patterns and standards across cloud platforms (IAM, network segmentation, zero trust, secure workload boundaries).
• Develop security design documentation, diagrams, and rationale aligned with business and compliance requirements.
• Apply risk-based and threat-based approaches to recommend proportionate solutions.
• Design security architectures for agent-based AI systems, including orchestration frameworks and multi-agent workflows.
• Implement AI/LLM security controls (model security, prompt security, API/orchestration security, data security for vector stores/embeddings).
• Conduct AI-specific threat modelling (model extraction/poisoning, data leakage, adversarial prompts, jailbreaks, toxic output).
• Perform cloud configuration and GCP security posture reviews; harden AI pipelines.
• Support incident response for cloud and AI-driven incidents and provide mitigation strategies.
• Provide technical leadership, mentor teams, and present security concepts to technical and non-technical stakeholders.
• Contribute to pre-sales and delivery collateral.

Security Policy, Standards & Governance

• Develop and implement cloud and AI security policies and standards.
• Support compliance assessments and audits and ensure alignment to standards such as ISO 27001, NIST, NIS2 and DORA.

Required Experience & Qualifications

• 5+ years’ experience in information security, cloud security and architecture roles.
• Security-first mindset; proven experience as a Security Architect.
• Strong knowledge of security governance, risk and compliance frameworks (ISO 27001, NIST CSF/800-53, NIS2, DORA).
• Strong communication skills and ability to work with senior stakeholders; experience mentoring or influencing teams.
• Eligible to obtain UK SC clearance and right to work in the UK.

Required Technical Skills

• Deep hands-on experience with Google Cloud Platform (GCP) security services and cloud-native architecture design.
• Expertise in GCP IAM, VPC Service Controls, Cloud Armor, Confidential Computing, and secure multi-project/identity boundary design.
• Experience designing security for agentic AI / LLM-integrated applications and implementing AI/LLM security controls (prompt security, model governance, secure APIs, orchestration security).
• AI-specific threat modelling expertise.
• Strong cloud security background across AWS/Azure/GCP and secure design knowledge across IAM, Zero Trust, network segmentation, data protection, application/API security.
• Familiarity with SIEM, IAM tooling, CASB and container/Kubernetes security.
• Experience in Vibe coding and technologies similar to Openclaw and Ollama.

Certifications

• One or more of: CISA, CRISC, CISM, CISSP (required).

Benefits

• Flexible work options.
• Learning and Development programs and continuous growth opportunities.
• Range of wellbeing benefits supporting physical, emotional, and financial health.