Security Architect – Mobile & Cloud Security
Posted 2 days ago by Cpl Life Sciences
£580 Per day
Inside
Hybrid
London Area, United Kingdom
Summary: The Security Architect role focuses on mobile and cloud security, requiring expertise in designing secure solutions across various environments. The position involves conducting threat assessments, embedding security principles, and engaging with stakeholders to ensure compliance and robustness. The ideal candidate will have a strong background in mobile application security and the ability to communicate complex risks in business terms. This is a hybrid role based in London for an initial duration of three months.
Key Responsibilities:
- Act as a subject matter expert in mobile application security across iOS and Android platforms
- Conduct threat assessments and threat modelling aligned with industry standards such as OWASP MASVS and NCSC CHECK
- Perform and support mobile penetration testing, runtime instrumentation, and secure mobile architecture design
- Ensure secure communication between mobile applications, APIs, and back-end services
- Embed security controls such as code obfuscation, local data encryption, and jailbreak/root detection
- Identify, analyse, and prioritise security risks across systems, applications, and networks
- Carry out formal threat modelling to anticipate potential attack vectors
- Design and recommend mitigating controls and countermeasures prior to deployment
- Design and review secure, scalable architectures across mobile, cloud, and enterprise environments
- Apply modern security architecture principles, including Zero Trust across identity, network, and data
- Demonstrate strong knowledge of secure design patterns and anti-patterns, including guidance from NCSC
- Translate complex technical security risks into clear, business-focused language
- Engage confidently with non-technical stakeholders and senior leadership
- Ensure security strategy aligns with business goals, budgets, and regulatory requirements
Key Skills:
- Proven experience as a Security Architect, with strong mobile security focus
- Advanced expertise in mobile application security, secure architecture design, and threat modelling
- Strong alignment with OWASP MASVS and NCSC CHECK standards
- Experience designing security for cloud and mobile environments
- Ability to work independently and influence architecture decisions
- Experience designing security into the Mobile Secure SDLC
- Knowledge of OWASP mobile control sets and best practices
- Understanding of Swift or Kotlin and mobile application security best practices
- Completion of SANS Mobile Device Security and Ethical Hacking training
- Strong background in Cloud Security Architecture (P3 – Advanced)
Salary (Rate): £580 per day
City: London
Country: United Kingdom
Working Arrangements: hybrid
IR35 Status: inside IR35
Seniority Level: Mid-Level
Industry: IT
Security Architect – Mobile & Cloud Security
Location: Hybrid – London
Duration: 3 months
Rate: Up to £580 per day
Clearance: SC Clearance required
Overview
We’re looking for an experienced Security Architect with strong mobile security expertise to support the design and delivery of secure, scalable solutions across mobile, cloud, and enterprise environments. You’ll play a key role in shaping secure architectures, conducting threat assessments, and embedding security-by-design principles to ensure solutions are robust, compliant, and ready for development. If mobile security, threat modelling, and translating scary risks into sensible business language is your thing — you’ll feel right at home.
Key Responsibilities
- Mobile & Application Security
- Act as a subject matter expert in mobile application security across iOS and Android platforms
- Conduct threat assessments and threat modelling aligned with industry standards such as OWASP MASVS and NCSC CHECK
- Perform and support mobile penetration testing , runtime instrumentation, and secure mobile architecture design
- Ensure secure communication between mobile applications, APIs, and back-end services
- Embed security controls such as: Code obfuscation Local data encryption Jailbreak/root detection
- Risk Management & Threat Modelling
- Identify, analyse, and prioritise security risks across systems, applications, and networks
- Carry out formal threat modelling to anticipate potential attack vectors
- Design and recommend mitigating controls and countermeasures prior to deployment
- Architecture & Design
- Design and review secure, scalable architectures across mobile, cloud, and enterprise environments
- Apply modern security architecture principles , including Zero Trust (never trust, always verify) across: Identity Network Data
- Demonstrate strong knowledge of secure design patterns and anti-patterns , including guidance from NCSC
- Communication & Stakeholder Engagement
- Translate complex technical security risks into clear, business-focused language
- Engage confidently with non-technical stakeholders and senior leadership
- Ensure security strategy aligns with business goals, budgets, and regulatory requirements
Essential Skills & Experience
- Proven experience as a Security Architect , with strong mobile security focus
- Advanced expertise in: Mobile application security Secure architecture design Threat modelling and risk management
- Strong alignment with OWASP MASVS and NCSC CHECK standards
- Experience designing security for cloud and mobile environments
- Ability to work independently and influence architecture decisions
Desirable Skills
- Experience designing security into the Mobile Secure SDLC
- Knowledge of OWASP mobile control sets and best practices
- Understanding of Swift or Kotlin and mobile application security best practices
- Completion of SANS Mobile Device Security and Ethical Hacking training
- Strong background in Cloud Security Architecture (P3 – Advanced)
Additional Information
- SC Clearance is mandatory
- Hybrid working with regular presence in London
- Initial 3-month contract , with potential for extension
If you are interested please apply or send your CV to luke.sandilands@cpl.com