We are currently recruiting Technical Security Architect (AWS) to join our growing client advisory & delivery business. The AWS Cloud Security Architect will be responsible for the architecture and design and ongoing development of the security architecture of the client's IT systems. The AWS Cloud Security Architect will draw upon Enterprise Security Architecture or Security Solutions Architecture to: Identify business objectives, user needs, risk appetite and cyber security obligations, Identify vulnerabilities, perform threat modelling, undertake risk assessment, evaluate the effectiveness of security controls, Verify and evidence alignment to 'Secure by Design' principles, corporate security policy/standards as well as industry recognised frameworks and best practice.

Core responsibilities:

• Act as the primary information security point of contact for relevant teams, developing a trusted relationship and advising on all aspects of cybersecurity.
• Develop, implement, and maintain information security policies, procedures, and frameworks, ensuring alignment with industry standards (e.g., ISO 27001, NIST) and legal requirements (e.g., GDPR, Cyber Essentials).
• Conduct security risk assessments and vulnerability management for the client, providing actionable recommendations to mitigate risks.
• Lead incident detection, investigation, and response efforts, ensuring minimal impact to the client's business operations.
• Collaborate with the client's IT and business teams to integrate security solutions and processes that align with their goals.
• Deliver regular reporting to the client on security status, incidents, risks, and compliance with agreed SLAs and KPIs.
• Provide guidance and support for the client in meeting their regulatory obligations (e.g., GDPR compliance, data protection).
• Oversee and lead security audits, penetration testing, and vulnerability assessments for the client.
• Manage security awareness training programs for the client's staff, fostering a culture of cybersecurity awareness.
• Provide ongoing advice on emerging threats, vulnerabilities, and security best practices, helping the client stay ahead of the curve.
• Ensure that the client's information security posture is continuously improved through proactive security measures, monitoring, and reporting.

We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing. Our Learning and Development team ensure that there are continuous growth and development opportunities for our people. We also offer the opportunity to have flexible work options.

We are an equal opportunities employer. We believe in the fair treatment of all our employees and commit to promoting equity and diversity in our employment practices. We are also a proud Disability Confident Committed Employer - we are committed to creating a diverse and inclusive workforce. We actively collaborate with individuals who have disabilities and long-term health conditions which have an effect on their ability to do normal daily activities, ensuring that barriers are eliminated when it comes to employment opportunities. In line with our commitment, we guarantee an interview to applicants who declare to us, during the application process, that they have a disability and meet the minimum requirements for the role.

Requirements:

• Proven experience (typically 5+ years) in information security management or a related role, preferably within an MSP or client-facing environment.
• Strong understanding of UK and international cybersecurity regulations, including GDPR, Cyber Essentials, and ISO 27001.
• Experience managing and leading security operations, incident response, and risk assessments.
• Understanding and knowledge of security technologies (SIEM, firewalls, endpoint protection, encryption, etc.) and practices (vulnerability management, penetration testing).
• Experience working in a service delivery or consultancy capacity with external clients.
• Excellent communication skills, able to convey technical security information to non-technical stakeholders at all levels.
• Relevant certifications such as CISSP, CISM, CISA, or equivalent are highly desirable.
• Strong stakeholder engagement experiences.
• Ability to work independently, take initiative, and work in a dynamic environment.
• Proactive approach to identifying and solving problems before they escalate.
• Strong leadership and mentoring skills to support junior staff and teams.
• Ability to translate business needs into security solutions.