Security Architect - Cryptography
Posted 1 day ago by i-confidential
£90 Per hour
Inside
Hybrid
Manchester, England, United Kingdom
Summary: The Security Architect role involves managing end-to-end solution design for a financial services client, focusing on architecture design documents that meet both functional and non-functional requirements. The position requires expertise in cybersecurity, particularly in cryptographic projects, and the ability to create high-level designs and manage technical risks. The role is hybrid, requiring three days a week in the office located in Manchester, Sheffield, Birmingham, or Edinburgh.
Key Responsibilities:
- Manage end-to-end solution design and deliver architecture design documents.
- Create high-level designs and publish new architecture patterns.
- Define cryptographic service models and design scalable HSM infrastructures.
- Integrate and optimize cloud and on-prem HSMs.
- Develop secure APIs and interfaces for HSM provisioning and automation.
- Implement strong access controls and secure lifecycle management.
- Establish cryptographic policies for key management.
- Embed monitoring and logging for cryptographic operations.
- Perform threat modeling and security architecture reviews.
- Define disaster recovery and high availability strategies for HSMaaS.
- Familiarity with compliance frameworks and security benchmarks.
Key Skills:
- Experience in financial services and cryptographic projects.
- Ability to switch between technical, conceptual, and process frameworks.
- Expertise in designing secure, multi-tenant HSMaaS platforms.
- Knowledge of compliance frameworks such as CIS, NIST, and ISO 27001.
- Strong understanding of access controls and key management policies.
- Experience in threat modeling and security architecture reviews.
Salary (Rate): £90.00/hr
City: Manchester
Country: United Kingdom
Working Arrangements: hybrid
IR35 Status: inside IR35
Seniority Level: undetermined
Industry: IT
We are currently looking for a Security Architect to join an existing team with one of our financial services clients. The role will be to manage end-to-end solution design and will be responsible for delivering architecture design documents in line with functional and non-functional business requirements, strategies, principles, standards, and patterns. Applicants should have the ability to switch between the technical, conceptual and processes/framework. Experience of working in a financial services environment and in cryptographic projects will be required. The role will also involve the creation of high-level designs, publishing new architecture patterns, key decisions, design deviations, and technical risks and issues where appropriate.
Cybersecurity Expertise:
- Architect secure, multi-tenant HSMaaS platforms for cryptographic key management and operations
- Definition of cryptographic service models delivered via HSMs
- Ability to design scalable, compliant HSM infrastructures
- Integrate and optimise cloud and on-prem HSMs
- Develop secure APIs and interfaces for HSM provisioning, access, and automation
- Implement strong access controls, key isolation, and secure lifecycle management
- Establish cryptographic policies for key creation, usage, rotation, and destruction
- Embed monitoring, logging, and attestation for cryptographic operations and HSM events
- Perform threat modelling and security architecture reviews focused on HSM services
- Define disaster recovery, high availability, and secure backup strategies for HSMaaS
- Familiarity with compliance frameworks and security benchmarks, including CIS, NIST, ISO 27001, and how they apply to cryptographic services
Contract will be inside IR35. Role will be hybrid, 3 days per week in the client office, any of Edinburgh/Sheffield/Birmingham/Manchester.