Data Senior Security Architect & Engineer – Manager

Company: HM Revenue & Customs (HMRC)
Apply for the Data Senior Security Architect & Engineer – Manager
Location: London
Job Description:

Job description

Cyber security is critical to every organisation. We shape strategies and transform the management of cyber risk, and we need you to join us. You will build strong relationships as part of the cyber practice, helping our clients solve the latest cyber security challenges in a business with significant growth ambitions.

Connect to your opportunity

We are seeking experienced Data Security professionals with expertise in both architecture and engineering. The ideal candidate will have a proven track record in leading the design, implementation and testing of data security solutions across cloud and on‑premises environments.

Responsibilities

  • Define data security use cases, functional and non‑functional requirements, and technical specifications for data discovery, data access governance, data classification, DLP, encryption, data masking, monitoring and compliance.
  • Design and architect data security solutions, creating high‑level and low‑level system architecture diagrams with technical descriptions, dependencies, network rules, server resources, storage requirements and performance specifications.
  • Integrate workflows with third‑party systems and security tools (SIEM, Varonis, BigID, Azure, etc.) and define the RACI matrix for operation and maintenance.
  • Develop technical documentation for implementations, including process documents for data classification, access requests, governance, approval workflows and data lifecycle management.
  • Implement data security solutions: install components, configure on‑premises/cloud environments, deploy agents for DLP scanning, integrate APIs, configure secure data flows and fine‑tune DLP policies.
  • Collaborate with IT infrastructure teams, execute unit, integration, functional and non‑functional testing, troubleshoot issues, and coordinate with vendors.
  • Provide post‑implementation services, including hyper‑care support and advanced troubleshooting to resolve production issues.
  • Conduct knowledge transfer sessions to client data security teams, enabling them to operate and maintain the solution effectively.
  • Contribute to the development of data security solution approaches for client proposals and bids.

Connect to your skills and professional experience

Whilst a bachelor’s degree (or equivalent) in Computer Science or Engineering is desirable, we value real‑world experience and the ability to deliver impactful client outcomes.

Key Skills

  • Building strong client relationships and managing stakeholder engagement.
  • Strong interpersonal and relationship skills with architects and developers.
  • Broad data security experience across discovery, classification, DLP, security posture management, encryption, masking, governance and privacy, with demonstrable strategy delivery.
  • Experience in developing architecture and hands‑on engineering for data security solutions across the following areas (not all required, but the majority are preferable):
    • DLP across email, O365, cloud, web and endpoint channels (e.g., Microsoft, Broadcom, ForcePoint).
    • Data classification and data discovery.
    • Digital Rights Management (e.g., Microsoft).
    • Data security across Azure, AWS, Oracle and Google Cloud using third‑party DLP tools or native cloud capabilities.
    • Encryption technologies such as KeyFactor, HashiCorp Vault, AWS KMS and Azure Key Vault.
    • Data Security Posture Management and Data Governance tools (Microsoft, Varonis, BigID) for discovery, classification, access monitoring and threat detection.
    • Understanding of data privacy regulations (GDPR, CCPA), governance frameworks and emerging trends.
    • Exposure to DevOps tools and repositories (Git, Azure DevOps, Kubernetes, Docker, Jenkins, Ansible).
    • Practical experience with Linux and Windows operating systems.
    • Experience with modern data security concepts such as data‑centric security, zero‑trust data access, data‑security posture management and cloud‑native protection.
  • Understanding of data privacy regulations (e.g., GDPR, CCPA) and governance frameworks.
  • Practical experience with Linux and Windows operating systems.
  • Certification such as CISSP, CISM, CIPP/E or Microsoft Certified: Security, Compliance, and Identity Fundamentals is desirable.

Hybrid working policy

You will be based in London with a hybrid working arrangement, allowing you to work in the local office, virtual collaboration spaces, client sites and remotely as required.

#J-18808-Ljbffr…

Posted: July 9th, 2026