Security Architect
Posted 2 weeks ago by Brio Digital
Negotiable
Inside
Remote
London, UK
Summary: The role of Security Architect involves providing architectural leadership to secure digital and data platforms within the NHS, ensuring compliance with national standards. The position requires balancing strategic oversight with hands-on engagement, influencing stakeholders while collaborating with technical teams. The ideal candidate will have extensive experience in security architecture, particularly within the NHS or similar regulated environments. This role is primarily remote but may require commuting to London.
Key Responsibilities:
- Define and own security architecture principles and patterns across complex NHS programmes
- Ensure all digital, data, and technology solutions are secure by design and compliant with NHS, central government, and industry standards
- Work closely with solution architects, engineers, data teams, and delivery partners to embed security throughout the delivery lifecycle
- Provide security risk assessments and recommend mitigation strategies for systems, platforms, and integrations
- Champion best practice in identity management, access control, data protection, and secure integration
- Navigate a complex stakeholder environment, ensuring security is clearly communicated, understood, and prioritised at all levels
- Contribute to the development of long-term security strategy while supporting short-term delivery outcomes
- Produce and maintain security architecture documentation, ensuring traceability and alignment to enterprise and programme objectives
Key Skills:
- 6-8+ years in security architecture roles, with demonstrable leadership experience
- Proven track record working in NHS, central government, or highly regulated public sector environments
- Strong knowledge of security frameworks and standards (eg NCSC, ISO27001, NIST, Cyber Essentials Plus)
- Expertise in cloud security architecture (Azure, AWS, hybrid environments)
- Solid understanding of identity and access management (IAM), network security, and secure data integration
- Experience securing APIs, data platforms, and interoperability frameworks within healthcare settings
- Strong knowledge of data governance, privacy, and compliance - including GDPR, PII handling, and NHS-specific information governance
- Experience working with suppliers and delivery partners to assure security of third-party solutions
- Comfortable producing clear technical documentation and presenting complex security concepts to non-technical stakeholders
- Familiarity with architecture and delivery tools (eg ArchiMate, TOGAF, Jira, Confluence)
Salary (Rate): undetermined
City: London
Country: UK
Working Arrangements: remote
IR35 Status: inside IR35
Seniority Level: undetermined
Industry: IT
Detailed Description From Employer:
Contract Security Architect - NHS/Central Government Experience is Essential
Rate: £TBC ASAP but is Inside IR35
Location: Primarily remote but may need to commute into London
Duration: Until January to begin with
We're looking for an experienced Security Architect to play a pivotal role in shaping and securing critical digital and data platforms within the NHS. You'll provide architectural leadership across programmes, ensuring security is designed in from the ground up and aligned with both organisational and national standards.
This role requires someone who can balance strategic oversight with hands-on engagement, influencing senior stakeholders while working closely with technical teams to embed robust security controls and practices.
Key ResponsibilitiesDefine and own security architecture principles and patterns across complex NHS programmes
Ensure all digital, data, and technology solutions are secure by design and compliant with NHS, central government, and industry standards
Work closely with solution architects, engineers, data teams, and delivery partners to embed security throughout the delivery lifecycle
Provide security risk assessments and recommend mitigation strategies for systems, platforms, and integrations
Champion best practice in identity management, access control, data protection, and secure integration
Navigate a complex stakeholder environment, ensuring security is clearly communicated, understood, and prioritised at all levels
Contribute to the development of long-term security strategy while supporting short-term delivery outcomes
Produce and maintain security architecture documentation, ensuring traceability and alignment to enterprise and programme objectives
Required Experience
6-8+ years in security architecture roles, with demonstrable leadership experience
Proven track record working in NHS, central government, or highly regulated public sector environments
Strong knowledge of security frameworks and standards (eg NCSC, ISO27001, NIST, Cyber Essentials Plus)
Expertise in cloud security architecture (Azure, AWS, hybrid environments)
Solid understanding of identity and access management (IAM), network security, and secure data integration
Experience securing APIs, data platforms, and interoperability frameworks within healthcare settings
Strong knowledge of data governance, privacy, and compliance - including GDPR, PII handling, and NHS-specific information governance
Experience working with suppliers and delivery partners to assure security of third-party solutions
Comfortable producing clear technical documentation and presenting complex security concepts to non-technical stakeholders
Familiarity with architecture and delivery tools (eg ArchiMate, TOGAF, Jira, Confluence)
Apply now or email for more information.
