Lead Security Architect

Overview

InstaDeep, founded in 2014, is a pioneering AI company at the forefront of innovation. With offices in major cities worldwide, InstaDeep collaborates with Google DeepMind and educational institutions such as MIT, Stanford, Oxford, UCL, and Imperial College London. We are a Google Cloud Partner and a NVIDIA Elite Service Delivery Partner. We have been listed among notable AI players and Europe’s 1000 fastest-growing companies in 2022 by Statista and the Financial Times. Our recent acquisition by BioNTech reinforces our commitment to leading the industry. Join us to be a part of the AI revolution!

About the role: We are looking for a Lead Security Architect to define and evolve the company’s reference security architecture across enterprise IT, cloud, data, product, and AI/ML environments. This is a senior leadership role combining deep technical architecture capability with the ability to work across IT, Product, Cloud, Data, Legal, and Governance stakeholders. You will shape the target-state architecture for Zero Trust, IAM, reverse proxy, segmentation, AI/ML trust boundaries, and secure integration patterns, while ensuring security architecture remains practical, scalable, and aligned to business priorities. You will play a central role in helping the company scale securely as an AI-first, cloud-first organisation operating in a regulated context with ISO 27001, NIS2, and sensitive data protection requirements.

What will you do

• Security architecture leadership
  Own the reference security architecture and target-state security patterns across enterprise IT, infrastructure, cloud, data, and product environments. Define architecture principles and implementation patterns for Zero Trust, identity, authorization, trust boundaries, segmentation, secure integration, and secure access. Set the strategic direction for enterprise, cloud, and data security architecture.
• Cloud, IAM, and Zero Trust design
  Define target-state architecture for Enterprise IT, Cloud, and Infrastructure, including IAM and identity trust models, reverse proxy and secure access architecture, network and data segmentation, and cloud-native control patterns. Lead the development of architecture standards for secure integration between IT and product environments. Partner with Global IT Security Engineering on IAM, endpoint, VPN, reverse proxy, and access-tool integration.
• AI/ML and data security architecture
  Define security architecture for AI/ML workflows, cloud-native data platforms, and ML pipelines. Establish and maintain AI/ML trust-boundary models. Support architecture and product teams on secure AI adoption.
• Standards and governance
  Shape standards for data governance and access design, ML pipeline trust boundaries, model and data protection patterns, secure use of AI assistants and AI-enabled workflows, architecture governance and design assurance. Lead architecture review governance for high-risk initiatives. Facilitate threat modeling and secure design review practices. Ensure security principles are translated into reusable, practical design patterns. Create standards that can be adopted by architecture, infrastructure, DevOps, and product teams. Translate between technical architecture language and governance/compliance/business language.
• Collaboration
  Work closely with Trust & Security teams, IT Platform and IT Security Engineering, Product and engineering leadership, Legal and GRC. Coach and influence architects and technical leaders across IT, Cloud, and ML environments. Act as Subject Matter Expert and role model in developing a Security Architecture Platform.
• Typical deliverables
  Security reference architecture, Architecture review records and decision logs, Threat models for high-risk systems and initiatives, Zero Trust design patterns, IAM and trust-boundary architecture models, Data and AI trust-boundary models, Data-access design standards, Secure implementation patterns aligned with architecture standards.

What we are looking for

• 5+ years in enterprise and cloud security architecture
• 5+ years in identity, access, and network trust design
• 3+ years facilitating threat modeling and secure design reviews
• Strong experience defining architecture standards and translating principles into practical patterns
• Experience working across enterprise IT, cloud platforms, infrastructure, and product environments
• Experience engaging with senior stakeholders across technical and non-technical functions

Essential skills

• Security architecture at enterprise and cloud scale
• Zero Trust and IAM architecture
• Secure integration and trust-boundary design
• Threat modeling and architecture review governance
• Cloud-native security patterns
• Data security and access-control design
• Strong written communication and architecture documentation
• Ability to coach and influence senior engineers and architects

Strongly preferred

• Experience with AI/ML workflow security, data governance, and cloud-native data controls
• Experience supporting organisations through ISO 27001, NIS2, or equivalent regulated environments
• Experience in SaaS-heavy, cloud-first, or AI-first organisations
• Familiarity with reverse proxy, secure remote access, endpoint and identity integration patterns
• Ability to interface effectively with DevOps, MLOps, Infrastructure, and Product Engineering teams

Expected competence and level

Security architecture - Expert level

Zero Trust / IAM design - Expert level

Threat modeling - Advanced level

Stakeholder leadership - Advanced level

How you work

You are likely to be someone who: systems-thinking, balances strategic design with pragmatic delivery, influences without always owning implementation, creates clarity in complex multi-stakeholder environments, and makes architecture standards usable by engineers, not just readable by auditors.

Training and skill development

We support continued development in this role through: SABSA / CCSP-style learning paths or equivalent enterprise architecture development; regular updates on NIST Zero Trust and cloud architecture patterns; AI system and data-governance design training; ongoing exposure to architecture, governance, and regulatory developments relevant to cloud, AI, and security.

Why join us

This role offers the opportunity to shape the security architecture of a modern company operating at the intersection of AI-first product and engineering practices, including cloud-native infrastructure, sensitive data protection, regulatory and audit readiness, and Zero Trust transformation. You will help define how security architecture enables the company to scale in a way that is trusted, resilient, and practical.

Our commitment to our people

We empower individuals to celebrate their uniqueness. Our team comes from all walks of life, and we’re proud to encourage and support applicants from underrepresented groups. We operate on a hybrid work model with guidance to work at the office 3 days per week to encourage collaboration and innovation. We are continuing to review the situation with the well-being of InstaDeepers in mind.

Right to work

Please note that you will require the legal right to work without visa sponsorship in the location you are applying for. We do not sponsor work visas.

#J-18808-Ljbffr