Lead Security Architect
| Posting date: | 17 November 2025 |
|---|---|
| Salary: | £60,300 to £66,330 per year |
| Hours: | Full time |
| Closing date: | 04 December 2025 |
| Location: | Glasgow, Scotland |
| Remote working: | Hybrid - work remotely up to 2 days per week |
| Company: | Government Recruitment Service |
| Job type: | Permanent |
| Job reference: | 436786 |
Summary
As a Lead Security Architect you will direct secure architecture across a portfolio worth hundreds of millions of pounds. Working with product owners, delivery managers and enterprise architects, you will ensure every new or changed service conforms to Home Office and NCSC standards while enabling rapid, user-centred delivery.
You will analyse emerging threats, advise on proportional mitigations, and produce or tailor reference patterns covering identity, network segmentation, container security, data protection, and monitoring. By modelling risks with frameworks such as ISO 27005, NIST, or STRIDE, you will rationalise design choices to technical and nontechnical audiences and document them for reuse.
You will champion “secure by default” in agile pipelines, embedding IaC scanning, SAST/DAST, SBOM and cloud native guardrails, so security becomes a quality attribute owned by delivery teams.
Through communities of practice and one-to-one coaching, you will nurture SEO architects and engineers, acting as escalation point for complex design decisions.
Finally, you will cultivate relationships with external suppliers, government peers and industry forums to import good practice and influence future standards, ensuring Home Office services remain resilient, cost-effective and compliant.
You will analyse emerging threats, advise on proportional mitigations, and produce or tailor reference patterns covering identity, network segmentation, container security, data protection, and monitoring. By modelling risks with frameworks such as ISO 27005, NIST, or STRIDE, you will rationalise design choices to technical and nontechnical audiences and document them for reuse.
You will champion “secure by default” in agile pipelines, embedding IaC scanning, SAST/DAST, SBOM and cloud native guardrails, so security becomes a quality attribute owned by delivery teams.
Through communities of practice and one-to-one coaching, you will nurture SEO architects and engineers, acting as escalation point for complex design decisions.
Finally, you will cultivate relationships with external suppliers, government peers and industry forums to import good practice and influence future standards, ensuring Home Office services remain resilient, cost-effective and compliant.
Proud member of the Disability Confident employer scheme
Disability Confident
About Disability Confident
A Disability Confident employer will generally offer an interview to any applicant that declares they have a disability and meets the minimum criteria for the job as defined by the employer. It is important to note that in certain recruitment situations such as high-volume, seasonal and high-peak times, the employer may wish to limit the overall numbers of interviews offered to both disabled people and non-disabled people. For more details please go to Disability Confident.