Security Architect

Responsibilities

• Translate business, data protection and security requirements into practical architectural designs leveraging industry frameworks (NIST, ISO 27001, CIS).
• Design and maintain cloud-native security architectures, with deep expertise in GCP architecture, security services, and secure workload design.
• Establish secure architectural patterns and standards across cloud platforms, with specific focus on GCP IAM, VPC Service Controls, Cloud Armor, Confidential Computing, and secure workload segmentation.
• Develop security design documentation, diagrams, and rationale aligned with business and compliance requirements.
• Apply risk-based and threat-based approaches to recommend secure and proportionate solutions.

Agentic AI & LLM Security Architecture

• Designing security architectures for agent-based AI systems, including orchestration frameworks, tool-use agents, and multi-agent workflows.
• Implementing AI/LLM security controls across:
  • Model security (input/output filtering, model guardrails)
  • Prompt security, adversarial prompt defense, prompt isolation
  • API & orchestration security, including secure agent tool use
  • Data security for vector stores, embeddings, and retrieval services
• Performing AI-specific threat modelling, including:
  • Model extraction & poisoning
  • Hallucination-driven risk
  • Sensitive data leakage
  • Toxic output & jailbreak attempts
• Advising on secure integration of AI with cloud environments, focusing on compliant, privacy-aware design.

Risk & Threat Management

• Conduct comprehensive risk assessments and threat modelling for cloud and AI systems.
• Support incident response, including issues involving AI-driven systems and automated agents.
• Provide actionable mitigation strategies for cloud and AI threats.

Stakeholder Engagement & Technical Leadership

• Provide expert guidance to clients, presenting complex cloud and AI security concepts to technical and non-technical partners.
• Mentor teams on secure cloud design, AI security, and modern architecture practices.
• Participate in pre-sales and contribute to delivery collateral.

Security Policy, Standards & Governance

• Develop and implement cloud and AI security policies and standards.
• Support compliance assessments and audits, including cloud-specific controls and emerging AI regulatory frameworks.
• Ensure alignment to governance standards such as ISO 27001, NIST 800-53/CSF, NIS2, DORA, and industry cloud security benchmarks.

Technology Evaluation & Continuous Improvement

• Conduct cloud and AI security architecture reviews, including:
  • Cloud configuration reviews
  • GCP security posture assessments
  • AI pipeline hardening
• Evaluate and recommend security technologies for cloud, AI, identity, and data protection.
• Stay up to date with new threats, especially in LLM, agentic AI, and GCP contexts.

Security-First Mindset

This role is primarily for a Security Architect, not a general cloud architect.

Qualifications

• 5+ year(s) experience in information security, cloud security and architecture roles.
• Strong knowledge of security governance, risk and compliance frameworks (ISO 27001, NIST CSF/800-53, NIS2, DORA).
• Strong communication skills and ability to work with senior stakeholders.
• Experience mentoring teams or influencing security decisions.

Required Technical Skills

• Google Cloud Platform (GCP)
• Cloud-native architecture design (GCP-focused).
• Deep hands-on experience with GCP security services and GCP security best practices.
• Experience architecting secure multi-project setups and identity boundaries.
• Experience designing security for agent-based AI systems and LLM-integrated applications.
• Hands-on experience with AI/LLM security controls (prompt security, model governance, secure APIs, orchestration security).
• AI-specific threat modelling expertise.
• Strong cloud security background across AWS/Azure/GCP.
• Experience in secure design of IAM, Zero Trust, Network segmentation, Data protection and encryption, Application and API security.
• Knowledge of SIEM, IAM, CASB, container/Kubernetes security.
• Experience in Vibe coding, as well as technologies experience similar to Openclaw and Ollama.

Certifications

• One or more of: CISA, CRISC, CISM, CISSP (required).

Other Requirements

• Eligible to obtain UK SC clearance.
• Right to work in the UK.

Benefits

We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing. Our Learning and Development team ensure that there are continuous growth and development opportunities for our people. We also offer the opportunity to have flexible work options.

#J-18808-Ljbffr…