Financial Services Security Architect

Role: Financial Services Security Architect

Location: Reading, UK

Duration: Contract

Job Description:

Essential skills/knowledge/experience:

• 15+ years of progressive experience in Information Security, with a significant focus (minimum 7-8 years) on Security Architecture.
• 5+ years of hands-on experience specifically in Cloud Security Architecture for enterprise-scale deployments across at least one major public cloud provider (AWS, Azure, or GCP).
• Multi-cloud experience is highly preferred.
• Deep expertise in financial services domain security, including understanding of common threats, European regulatory requirements (e.g., PSD2, DORA, EBA guidelines), and data privacy mandates (GDPR).
• Extensive knowledge of security architecture principles for:
• Identity & Access Management (IAM) in cloud (e.g., AWS IAM, Azure AD, GCP IAM).
• Network Security (VPCs, firewalls, WAFs, micro-segmentation, private connectivity).
• Data Security (encryption at rest/in transit, KMS, data classification, DLP).
• Application Security (secure coding, API security, SAST/DAST, WAF integration).
• Container Security (Kubernetes, Docker, service mesh).
• Security Information and Event Management (SIEM) and logging strategies.
• Zero Trust Architecture principles.
• Proven experience with DevSecOps methodologies and securing CI/CD pipelines.
• Strong understanding of security frameworks such as NIST CSF, ISO 27001, CSA CCM, and experience in translating these into practical architectural designs.
• Hands-on experience with security tools and technologies for vulnerability management, secrets management, cloud security posture management (CSPM), and cloud workload protection platforms (CWPP).
• Relevant industry certifications are highly desirable (e.g., TOGAF, CISSP, CCSP, AWS Certified Security - Specialty, Azure Security Engineer Associate, GCP Professional Cloud Security Engineer).

Desirable skills/knowledge/experience

• Exceptional Communication: Ability to articulate complex security concepts clearly and concisely to technical teams, senior management, and non-technical stakeholders (both written and verbal).
• Strategic Thinking & Vision: Capability to foresee future security challenges and proactively develop long-term architectural solutions.
• Problem-Solving & Analytical Prowess: Strong ability to diagnose complex security issues, identify root causes, and devise innovative, practical solutions.
• Influence & Persuasion: Proven ability to gain buy-in and drive adoption of security best practices across diverse teams.
• Collaboration & Teamwork: A strong team player who can work effectively with cross-functional teams (development, operations, compliance, audit).
• Leadership & Mentorship: Demonstrated ability to lead security initiatives, guide junior team members, and foster a culture of continuous learning.
• Adaptability & Resilience: Ability to thrive in a fast-paced, evolving environment and navigate ambiguity with a positive and proactive approach.
• Attention to Detail: Meticulous approach to design and review, ensuring no critical security gaps.