Security Architect (SC Cleared) - CONTRACT

Security Architect - Security Cleared Location: Remote (occasional travel to Bedfordshire) Rate: Circa £650 - £750 p/d (umbrella/inside IR35) Clearance: SC required (UK National, no dual nationality) Duration: 12 months initial Overview: Experienced Security Architect required to lead security design and assurance across multiple obsolescence and modernisation programmes. You will focus on securing Legacy remediation, platform upgrades, decommissioning, and migration to cloud/hybrid environments - ensuring solutions are delivered securely, compliantly, and in line with risk appetite. Key Responsibilities: Lead security architecture and assurance across obsolescence initiatives (upgrade, migration, retirement) Provide hands-on oversight of Legacy to cloud/hybrid transitions (Azure-focused) Define secure target-state architectures aligned to enterprise and cloud best practices Conduct risk assessments, threat modelling, and define remediation strategies Deliver security design artefacts, patterns, and governance sign-off Ensure secure-by-design across identity, network, application, and data layers Guide adoption of modern security tooling and replacement of Legacy controls Collaborate with engineering, cloud, and programme teams across multiple workstreams Core Skills & Experience: Proven Security Architect experience within large-scale transformation or obsolescence programmes Strong background across on-prem infrastructure + cloud (Azure) Deep expertise in: Identity & Access Management (IAM)/Zero Trust Network & application security Encryption & data protection SIEM, logging, monitoring Experience migrating from Legacy environments to Azure/cloud-native Strong Information Assurance and risk management capability Ability to operate at pace across multiple projects Environment & Standards: Microsoft security stack (Defender, Sentinel, Entra ID, Azure Policy) Exposure to ISO 27001, NIST, UK Defence/secure environments (OFFICIAL-SENSITIVE) Understanding of UK Gov Secure by Design Desirable: Certifications: CISSP, CCSP, SABSA, TOGAF, Azure Security Experience in high technical debt/time-critical remediation environments Profile: Hands-on, pragmatic security architect Strong risk-based decision maker Comfortable in fast-paced, complex delivery environments Confident engaging from engineering through to governance level