Acorn Insurance and Financial Services Limited
Liverpool
Due to a period of exciting growth Acorn are looking for a highly skilled and experienced Senior Information Security Analyst to join our Information Security Team. Within this role you get the opportunity to join a collaborative team and have a chance to blend GRC responsibilities with technical security experience, all whilst working for a market leading insurance company, supporting and maintaining robust security controls and regulatory compliance.
Job Title: Senior Information Security Analyst (12 month FTC)
Location: Liverpool City Centre, Hybrid working available
Working Hours: Monday to Friday, 37.5 hours per week , 9:00 AM – 5:30 PM
Salary: £50,000 - £60,000 pa (DOE).
What you will be doing:
Work with all parties across the business to identify and assess risk and ensure mitigations are tracked to completion.
Lead the development and maintenance of information security policies, standards and procedures in line with regulatory frameworks and industry standards.
Lead third party risk management processes.
Collaborate across all areas of the business to align security policies and processes with business objectives and regulatory obligations.
Work with Security Operations and IT teams to provide oversight of vulnerability assessments and remediation activities.
Lead on security architecture reviews for new systems and services.
Evaluate technical security controls and recommending improvements.
Support the implementation of security tools and technologies.
Provide oversight of the security incident management process.
Provide security metrics for interested parties at all levels.
Lead the security awareness programme to promote a culture of security within all levels of the Group.
Provide support for internal and external security audits.
Lead security governance meetings representing the Information Security team and standing in for the Head of Information Security when required.
Provide subject matter expertise liaising across all business functions.
What we look for:
Minimum 5 years' experience in information security roles.
Strong leadership and mentorship abilities with a strategic mindset.
Experience with risk assessment methodologies.
Excellent analytical and problem-solving skills with attention to detail.
Strong communication skills with the ability to explain complex security concepts to non-technical stakeholders.
Ability to manage risk and compliance projects and drive security initiatives.
Knowledge of information security frameworks such as ISO 27001 or NIST.
Knowledge of vulnerability management processes.
About Acorn Insurance With over 40 years of experience, Acorn Insurance is a specialist provider dedicated to helping individuals secure motor insurance across the UK. We proudly serve more than 50,000 customers, ensuring they find policies that meet their needs and provide the peace of mind that comes with high-quality cover.
At Acorn Insurance, we offer comprehensive training and continuous in-house coaching. You'll receive in-depth, FCA-regulated industry knowledge and all the tools necessary to grow your career with us.
We celebrate diversity and are committed to fostering a culture where everyone feels respected and valued. As a Disability Confident Level 1 and Level 2 employer, we ensure our workplace is accessible and inclusive, encouraging our people to bring their best selves to work every day.
The Acorn Group has been recognised as a Great Place to Work for 2024/5. A record number of employees participated in our survey, overwhelmingly highlighting our welcoming and supportive atmosphere as an excellent place to build a career. We are committed to continuous improvement and have ambitious plans for 2025.
Why Acorn Insurance? Acorn Insurance want to give you more than a job, we want to give you a purpose and a career. So, what can we offer you as an employer? Some of the "your tomorrow" benefits you will receive include: Wellbeing:
Enhanced Annual Leave entitlement starting at 31 days and potentially increasing to 35 days per year depending on grade & length of service (including bank holidays)
Enhanced paternity pay and 16 weeks full maternity pay.
Colleague Assistance programme offers a suite of wellbeing services such as:
6 Free Counselling sessions per year
Unlimited access to a telephone councillor 24/7
Access to a free 4-week programme of cognitive behavioural therapy (CBT) with a trained therapist mentor.
Network of internal qualified mental health first aiders are available to provide support to colleagues.
Financial:
A core level of life assurance with the option to increase cover via salary sacrifice and add your spouse/partner
Ability to access your earnings before payday via Dayforce Wallet.
Company pension scheme
Refer a friend scheme with a £250 bonus for every colleague recommended on passing their probation period.
Access to a flexible benefits platform including an annual flex pot allowance to spend on over 15 benefits of your choice.
Ability to give back. You can opt into donating money to charity to climate positive organisations directly from your salary.
Reward, Recognition and Culture :
Long Service Award paid on 5,10- and 15-years’ service
A reward and recognition hub to celebrate and reward colleagues and peers.
Consistent and engaging company events including company awards, competitions and charity fundraisers.
Budgets for department leaders to use for social and engagement events. Please visit out website to view more of our excellent work benefits!
All roles are subject to DBS and Financial checks, any offer made will be conditional until checks are completed to a satisfactory standard. Unfortunately, due to the length of training and complexity of the role, we can only accept applications from candidates who have at least one year remaining on their (Graduate/ Post study work) visa. Unfortunately, we are unable to provide visa sponsorships. At Acorn, we are committed to creating an inclusive and supportive work environment. We recognise that candidates may have specific needs and are happy to consider reasonable adjustments to the recruitment process and working environment to accommodate individual requirements. Whether it’s modifying equipment, adjusting working hours, or providing additional support, we aim to ensure all employees can perform at their best. If you require any reasonable adjustments, please let us know during the application or interview process, and we will work with you to ensure your needs are met.
25/04/2025
Full time
Due to a period of exciting growth Acorn are looking for a highly skilled and experienced Senior Information Security Analyst to join our Information Security Team. Within this role you get the opportunity to join a collaborative team and have a chance to blend GRC responsibilities with technical security experience, all whilst working for a market leading insurance company, supporting and maintaining robust security controls and regulatory compliance.
Job Title: Senior Information Security Analyst (12 month FTC)
Location: Liverpool City Centre, Hybrid working available
Working Hours: Monday to Friday, 37.5 hours per week , 9:00 AM – 5:30 PM
Salary: £50,000 - £60,000 pa (DOE).
What you will be doing:
Work with all parties across the business to identify and assess risk and ensure mitigations are tracked to completion.
Lead the development and maintenance of information security policies, standards and procedures in line with regulatory frameworks and industry standards.
Lead third party risk management processes.
Collaborate across all areas of the business to align security policies and processes with business objectives and regulatory obligations.
Work with Security Operations and IT teams to provide oversight of vulnerability assessments and remediation activities.
Lead on security architecture reviews for new systems and services.
Evaluate technical security controls and recommending improvements.
Support the implementation of security tools and technologies.
Provide oversight of the security incident management process.
Provide security metrics for interested parties at all levels.
Lead the security awareness programme to promote a culture of security within all levels of the Group.
Provide support for internal and external security audits.
Lead security governance meetings representing the Information Security team and standing in for the Head of Information Security when required.
Provide subject matter expertise liaising across all business functions.
What we look for:
Minimum 5 years' experience in information security roles.
Strong leadership and mentorship abilities with a strategic mindset.
Experience with risk assessment methodologies.
Excellent analytical and problem-solving skills with attention to detail.
Strong communication skills with the ability to explain complex security concepts to non-technical stakeholders.
Ability to manage risk and compliance projects and drive security initiatives.
Knowledge of information security frameworks such as ISO 27001 or NIST.
Knowledge of vulnerability management processes.
About Acorn Insurance With over 40 years of experience, Acorn Insurance is a specialist provider dedicated to helping individuals secure motor insurance across the UK. We proudly serve more than 50,000 customers, ensuring they find policies that meet their needs and provide the peace of mind that comes with high-quality cover.
At Acorn Insurance, we offer comprehensive training and continuous in-house coaching. You'll receive in-depth, FCA-regulated industry knowledge and all the tools necessary to grow your career with us.
We celebrate diversity and are committed to fostering a culture where everyone feels respected and valued. As a Disability Confident Level 1 and Level 2 employer, we ensure our workplace is accessible and inclusive, encouraging our people to bring their best selves to work every day.
The Acorn Group has been recognised as a Great Place to Work for 2024/5. A record number of employees participated in our survey, overwhelmingly highlighting our welcoming and supportive atmosphere as an excellent place to build a career. We are committed to continuous improvement and have ambitious plans for 2025.
Why Acorn Insurance? Acorn Insurance want to give you more than a job, we want to give you a purpose and a career. So, what can we offer you as an employer? Some of the "your tomorrow" benefits you will receive include: Wellbeing:
Enhanced Annual Leave entitlement starting at 31 days and potentially increasing to 35 days per year depending on grade & length of service (including bank holidays)
Enhanced paternity pay and 16 weeks full maternity pay.
Colleague Assistance programme offers a suite of wellbeing services such as:
6 Free Counselling sessions per year
Unlimited access to a telephone councillor 24/7
Access to a free 4-week programme of cognitive behavioural therapy (CBT) with a trained therapist mentor.
Network of internal qualified mental health first aiders are available to provide support to colleagues.
Financial:
A core level of life assurance with the option to increase cover via salary sacrifice and add your spouse/partner
Ability to access your earnings before payday via Dayforce Wallet.
Company pension scheme
Refer a friend scheme with a £250 bonus for every colleague recommended on passing their probation period.
Access to a flexible benefits platform including an annual flex pot allowance to spend on over 15 benefits of your choice.
Ability to give back. You can opt into donating money to charity to climate positive organisations directly from your salary.
Reward, Recognition and Culture :
Long Service Award paid on 5,10- and 15-years’ service
A reward and recognition hub to celebrate and reward colleagues and peers.
Consistent and engaging company events including company awards, competitions and charity fundraisers.
Budgets for department leaders to use for social and engagement events. Please visit out website to view more of our excellent work benefits!
All roles are subject to DBS and Financial checks, any offer made will be conditional until checks are completed to a satisfactory standard. Unfortunately, due to the length of training and complexity of the role, we can only accept applications from candidates who have at least one year remaining on their (Graduate/ Post study work) visa. Unfortunately, we are unable to provide visa sponsorships. At Acorn, we are committed to creating an inclusive and supportive work environment. We recognise that candidates may have specific needs and are happy to consider reasonable adjustments to the recruitment process and working environment to accommodate individual requirements. Whether it’s modifying equipment, adjusting working hours, or providing additional support, we aim to ensure all employees can perform at their best. If you require any reasonable adjustments, please let us know during the application or interview process, and we will work with you to ensure your needs are met.
Principal Product Security Architect - Aerospace & Defence (Model-Based Systems) Reading (Hybrid/On-site as required) Up to £83 p/h Inside IR35 Security Clearance: Required or eligible We are seeking a highly experienced Principal Product Security Architect/Digital Engineering leader who can build and run the model-based security engineering capability and toolchain across complex regulated systems programmes. You will lead multi-partner, distributed teams to design and implement secure systems, drive compliance with regulatory frameworks, and establish assurance and evidence processes that meet the highest standards of safety-critical engineering. Key Responsibilities Lead the delivery of product security capabilities, including threat & risk modelling, security requirements engineering, security architecture & controls, SBOM and vulnerability management, verification & validation, and assurance case development Define and embed model-based product security practices across digital engineering environments, ensuring continuity from requirements through architecture, analysis, design, manufacturing, and test Manage multi-partner and supplier integration within complex programmes and distributed teams Ensure compliance with regulatory and assurance frameworks relevant to aerospace, defence, and safety-critical systems (DO-326A/DO-356A/DO-355, IEC 62443, ISO/IEC 27001, ISO/SAE 21434, NIST SP 800-) Essential Qualifications & Experience Degree in Systems Engineering, Cybersecurity, Engineering (Software/Electrical/Aerospace), Computer Science, or related technical discipline Extensive experience delivering Product Security capabilities in aerospace, defence, or regulated safety-critical industries Strong expertise in model based product security engineering and digital thread enablement Proven experience in multi-partner/supplier integration within complex programmes Security clearance or eligibility for clearance in defence programmes is mandatory What's on Offer Lead critical product security initiatives within high-profile aerospace and defence programmes Influence and shape multi-partner digital engineering environments Work at the forefront of model-based product security and digital thread practices
12/03/2026
Contractor
Principal Product Security Architect - Aerospace & Defence (Model-Based Systems) Reading (Hybrid/On-site as required) Up to £83 p/h Inside IR35 Security Clearance: Required or eligible We are seeking a highly experienced Principal Product Security Architect/Digital Engineering leader who can build and run the model-based security engineering capability and toolchain across complex regulated systems programmes. You will lead multi-partner, distributed teams to design and implement secure systems, drive compliance with regulatory frameworks, and establish assurance and evidence processes that meet the highest standards of safety-critical engineering. Key Responsibilities Lead the delivery of product security capabilities, including threat & risk modelling, security requirements engineering, security architecture & controls, SBOM and vulnerability management, verification & validation, and assurance case development Define and embed model-based product security practices across digital engineering environments, ensuring continuity from requirements through architecture, analysis, design, manufacturing, and test Manage multi-partner and supplier integration within complex programmes and distributed teams Ensure compliance with regulatory and assurance frameworks relevant to aerospace, defence, and safety-critical systems (DO-326A/DO-356A/DO-355, IEC 62443, ISO/IEC 27001, ISO/SAE 21434, NIST SP 800-) Essential Qualifications & Experience Degree in Systems Engineering, Cybersecurity, Engineering (Software/Electrical/Aerospace), Computer Science, or related technical discipline Extensive experience delivering Product Security capabilities in aerospace, defence, or regulated safety-critical industries Strong expertise in model based product security engineering and digital thread enablement Proven experience in multi-partner/supplier integration within complex programmes Security clearance or eligibility for clearance in defence programmes is mandatory What's on Offer Lead critical product security initiatives within high-profile aerospace and defence programmes Influence and shape multi-partner digital engineering environments Work at the forefront of model-based product security and digital thread practices
Location Westminster, London and Leeds About the job Job summary The Technical & Security Architect is a key member of the EA Team and is responsible for the architecture and security of the team's domains monitoring platform and to ensure that the .gov.uk registry provider delivers a resilient service. The UK Public Sector depends on internet domain name spaces such as ".gov.uk", and you will ensure these name spaces remain stable, trusted, well managed and resistant to compromise. You will bring together your proven technical and cyber expertise with business transformation where branding, government policy and law all play a part through the creation of secure technical solution designs ensuring all our services and infrastructure are secure by design. It is essential that you are positive, proactive and collaborative with a commitment to providing excellent customer service. Job description The key responsibilities and deliverables for this post are working with your UKEF colleagues and customers to ensure that UKEF is able to meet evolving customer demand using a secure, scalable and robust enterprise architecture blueprint. The main activities of your role will be: Designing secure systems - you can design and review system architectures through the development of patterns and principles. Security technology - you can demonstrate strong knowledge of system architectures. You can understand and articulate the impact of vulnerabilities on existing and future designs and systems, and how easy or difficult it will be to exploit these vulnerabilities. You can be recognised as an expert by peers in the broader security industry. Communicating between the technical and non-technical - you can identify the needs of business and technical stakeholders. You can effectively manage stakeholder expectations. You can demonstrate excellent communication skills and can manage difficult conversations or negotiations. Making and guiding decisions - you can make decisions characterised by managed levels of risk and complexity and recommend decisions as risk and complexity increase. You can resolve technical disputes between wider peers and indirect stakeholders, considering all views and opinions. Strategy - you can apply strategy, using and challenging patterns, standards, policies, roadmaps and vision statements. You can provide guidance. Turning business problems into secure technical designs - you can design systems characterised by high levels of risk, impact, and business or technical complexity. You can simultaneously work across multiple services or a single large or complicated service. Understanding the whole context - you can understand trends and practices outside your team and how these will impact your work. You can see how your work fits into the broader strategy and historical context. You can consider the patterns and interactions on a larger scale. The public core of the internet - you will have detailed and extensive experience of naming and numbering systems, cryptographic mechanisms, packet routing and common protocols and how the domain name system (DNS) works You will also have detailed and extensive expertise of at least two of the following: managing domains for a large, distributed and federated organisation how domains are used to support internet services and their security different ways that a domain vulnerability can be exploited, and how to prevent them developing tools that interact with domain records This list is not exhaustive, and you may be required to carry out additional duties according to business needs. Person specification Qualifications Relevant degree in associated Computer Science subject or equivalent demonstrable professional experience (A, I) Recognised architectural qualification e.g. TOGAF, BCS (A) Knowledge Demonstrable knowledge of the creation of and embedding of relevant architectural policies, standards and models (A, I, P) Demonstrable knowledge of security frameworks, standards and regulatory requirements e.g. GDPR, PCI DSS (A, I) Skills/Ability Ability to demonstrate the creation of and embedding of relevant architectural policies, standards and models. (I, P, T) Ability to create and deliver enterprise architectures. (A, P, I.) High level stakeholder relationship management. (A, I) Ability to provide guidance to development teams, mentor team members, foster professional growth, and create an inclusive and collaborative environment. (A, I) Experience Leadership and management in an enterprise architecture function. (A, I) Demonstrable extensive experience in the field of technical and security architecture, covering a wide range of activities, aligning to the technology, digital and data requirements of the role; to ensure business priorities, value for money and risk are all considerations. (I, P, T) Experience of working across the business to ensure strategic needs are captured within the vision and roadmaps of the enterprise architecture. (A, I) Experience of advising and developing the future state architecture of an organisation to meet strategic needs, including a working knowledge of cloud technologies. (A, I) Experience of applying best practice Data Management methods, to develop data quality metrics to optimise system performance. (A, I) Experience of applying best in practice architectural concepts and processes, including working with relevant tooling that supports enterprise architecture development, mapping and monitoring. (A, I) Qualifications • Relevant degree in associated Computer Science subject or equivalent demonstrable professional experience (A, I) • Recognised architectural qualification e.g. TOGAF, BCS (A) Behaviours We'll assess you against these behaviours during the selection process: Seeing the Big Picture Changing and Improving Communicating and Influencing Technical skills We'll assess you against these technical skills during the selection process: Technical questions where you will be assessed across your technical expertise and acumen, in relation to the essential criteria. Presentation - the topic will be agreed by UKEF and shared with the relevant candidates ahead of the interview
12/03/2026
Full time
Location Westminster, London and Leeds About the job Job summary The Technical & Security Architect is a key member of the EA Team and is responsible for the architecture and security of the team's domains monitoring platform and to ensure that the .gov.uk registry provider delivers a resilient service. The UK Public Sector depends on internet domain name spaces such as ".gov.uk", and you will ensure these name spaces remain stable, trusted, well managed and resistant to compromise. You will bring together your proven technical and cyber expertise with business transformation where branding, government policy and law all play a part through the creation of secure technical solution designs ensuring all our services and infrastructure are secure by design. It is essential that you are positive, proactive and collaborative with a commitment to providing excellent customer service. Job description The key responsibilities and deliverables for this post are working with your UKEF colleagues and customers to ensure that UKEF is able to meet evolving customer demand using a secure, scalable and robust enterprise architecture blueprint. The main activities of your role will be: Designing secure systems - you can design and review system architectures through the development of patterns and principles. Security technology - you can demonstrate strong knowledge of system architectures. You can understand and articulate the impact of vulnerabilities on existing and future designs and systems, and how easy or difficult it will be to exploit these vulnerabilities. You can be recognised as an expert by peers in the broader security industry. Communicating between the technical and non-technical - you can identify the needs of business and technical stakeholders. You can effectively manage stakeholder expectations. You can demonstrate excellent communication skills and can manage difficult conversations or negotiations. Making and guiding decisions - you can make decisions characterised by managed levels of risk and complexity and recommend decisions as risk and complexity increase. You can resolve technical disputes between wider peers and indirect stakeholders, considering all views and opinions. Strategy - you can apply strategy, using and challenging patterns, standards, policies, roadmaps and vision statements. You can provide guidance. Turning business problems into secure technical designs - you can design systems characterised by high levels of risk, impact, and business or technical complexity. You can simultaneously work across multiple services or a single large or complicated service. Understanding the whole context - you can understand trends and practices outside your team and how these will impact your work. You can see how your work fits into the broader strategy and historical context. You can consider the patterns and interactions on a larger scale. The public core of the internet - you will have detailed and extensive experience of naming and numbering systems, cryptographic mechanisms, packet routing and common protocols and how the domain name system (DNS) works You will also have detailed and extensive expertise of at least two of the following: managing domains for a large, distributed and federated organisation how domains are used to support internet services and their security different ways that a domain vulnerability can be exploited, and how to prevent them developing tools that interact with domain records This list is not exhaustive, and you may be required to carry out additional duties according to business needs. Person specification Qualifications Relevant degree in associated Computer Science subject or equivalent demonstrable professional experience (A, I) Recognised architectural qualification e.g. TOGAF, BCS (A) Knowledge Demonstrable knowledge of the creation of and embedding of relevant architectural policies, standards and models (A, I, P) Demonstrable knowledge of security frameworks, standards and regulatory requirements e.g. GDPR, PCI DSS (A, I) Skills/Ability Ability to demonstrate the creation of and embedding of relevant architectural policies, standards and models. (I, P, T) Ability to create and deliver enterprise architectures. (A, P, I.) High level stakeholder relationship management. (A, I) Ability to provide guidance to development teams, mentor team members, foster professional growth, and create an inclusive and collaborative environment. (A, I) Experience Leadership and management in an enterprise architecture function. (A, I) Demonstrable extensive experience in the field of technical and security architecture, covering a wide range of activities, aligning to the technology, digital and data requirements of the role; to ensure business priorities, value for money and risk are all considerations. (I, P, T) Experience of working across the business to ensure strategic needs are captured within the vision and roadmaps of the enterprise architecture. (A, I) Experience of advising and developing the future state architecture of an organisation to meet strategic needs, including a working knowledge of cloud technologies. (A, I) Experience of applying best practice Data Management methods, to develop data quality metrics to optimise system performance. (A, I) Experience of applying best in practice architectural concepts and processes, including working with relevant tooling that supports enterprise architecture development, mapping and monitoring. (A, I) Qualifications • Relevant degree in associated Computer Science subject or equivalent demonstrable professional experience (A, I) • Recognised architectural qualification e.g. TOGAF, BCS (A) Behaviours We'll assess you against these behaviours during the selection process: Seeing the Big Picture Changing and Improving Communicating and Influencing Technical skills We'll assess you against these technical skills during the selection process: Technical questions where you will be assessed across your technical expertise and acumen, in relation to the essential criteria. Presentation - the topic will be agreed by UKEF and shared with the relevant candidates ahead of the interview
Location Bristol, London, Manchester About the job Job summary The Government Digital Service (GDS) is the digital centre of government. We are responsible for setting, leading and delivering the vision for a modern digital government. Our priorities are to drive a modern digital government, by: joining up public sector services harnessing the power of AI for the public good strengthening and extending our digital and data public infrastructure elevating leadership and investing in talent funding for outcomes and procuring for growth and innovation committing to transparency and driving accountability We are home to the Incubator for Artificial Intelligence (I.AI), the world-leading GOV.UK and at the forefront of coordinating the UK's geospatial strategy and activity. We lead the Government Digital and Data function and champion the work of digital teams across government. We're part of the Department for Science, Innovation and Technology (DSIT) and employ more than 1,000 people all over the UK, with hubs in Manchester, London and Bristol. The Information Security team at GDS protects the people, services and information used to deliver critical government digital infrastructure such as GOV.UK and One Login. We do this by supporting a secure software development lifecycle, setting and checking proportional organisation policies and building a positive, no-blame security culture across the organisation. The Government Digital Service is where talent translates into impact. From your first day, you'll be working with some of the world's most highly-skilled digital professionals, all contributing their knowledge to make change on a national scale. Join us for rewarding work that makes a difference across the UK. You'll solve some of the nation's highest-priority digital challenges, helping millions of people access services they need Job description lead cyber and information security risk management, assurance, and architectural advisory for major applications and digital services during alpha, beta, and early live phases deliver critical security assessments and IT Health Checks, providing expert assurance across portfolio projects, with a focus on SaaS tooling compliance against NCSC Cloud Security Principles facilitate and oversee Security Working Groups throughout all key development and deployment stages, ensuring risks are tracked, logged, and reported to the Head of Cyber Risk and Assurance, with actionable recommendations provided produce formal risk assessments and risk treatment plans (RTPs) for all digital services and associated tooling, ensuring robust protection in accordance with business risk appetite develop, review, and advise on Secure by Design policies/practices, including safe use of AI, secure coding, and regulatory compliance frameworks (e.g., OWASP, DPIA, GovAssure) coordinate cross-platform activities and enable secure delivery of new GDS services, including supporting incident management and continuous improvement of live service security practices routinely provide monthly (and ad-hoc) risk briefings to senior leaders, evidencing assurance, identifying risks outside tolerance, mapping exposure, and recommending mitigations and controls mentor and train digital service teams and wider Information Security staff, sharing best practices and building internal capability for risk assessment and management support implementation and ongoing usage of risk management tooling, ensuring all details are uploaded promptly and appropriately, such as the SureCloud risk register engage proactively with senior internal and external stakeholders, promoting security culture and enabling confident delivery aligned with organisational priorities future line management activities as the team grows Person specification demonstrable experience delivering high-quality, detailed cyber security risk assessments and assurance in large, fast moving, complex digital environments, ideally government or critical infrastructure in-depth understanding of cyber risk management, threat modelling, security architectural advice, and formal IT Health Checks, including experience with SaaS environments and cloud security principles experience interpreting and applying relevant cyber security standards, regulatory frameworks, and secure by design principles within a multi-disciplinary digital team a self-starter, using your considerable experience and skills to work independently and with confidence track record of building cross-functional relationships and leading multi-platform security initiatives, with the ability to brief, influence, and advise senior stakeholders strong written, verbal, and interpersonal communication skills, able to distil complex findings into actionable recommendations for non-technical and executive audiences evidence of personal commitment to continuous learning and sharing of best practices, with experience mentoring, coaching, or enabling capability-building in others ability to assess the implications and risks of emerging technologies (such as AI, SaaS, cloud services) and proactively recommend security interventions knowledge of Civil Service values: respect, collaboration, inclusivity, and commitment to public service, with a strong focus on organisational culture Indicative professional qualifications / accreditations relevant industry qualifications and accreditations e.g. , CISSP or hold a Master's Degree in a relevant discipline.
12/03/2026
Full time
Location Bristol, London, Manchester About the job Job summary The Government Digital Service (GDS) is the digital centre of government. We are responsible for setting, leading and delivering the vision for a modern digital government. Our priorities are to drive a modern digital government, by: joining up public sector services harnessing the power of AI for the public good strengthening and extending our digital and data public infrastructure elevating leadership and investing in talent funding for outcomes and procuring for growth and innovation committing to transparency and driving accountability We are home to the Incubator for Artificial Intelligence (I.AI), the world-leading GOV.UK and at the forefront of coordinating the UK's geospatial strategy and activity. We lead the Government Digital and Data function and champion the work of digital teams across government. We're part of the Department for Science, Innovation and Technology (DSIT) and employ more than 1,000 people all over the UK, with hubs in Manchester, London and Bristol. The Information Security team at GDS protects the people, services and information used to deliver critical government digital infrastructure such as GOV.UK and One Login. We do this by supporting a secure software development lifecycle, setting and checking proportional organisation policies and building a positive, no-blame security culture across the organisation. The Government Digital Service is where talent translates into impact. From your first day, you'll be working with some of the world's most highly-skilled digital professionals, all contributing their knowledge to make change on a national scale. Join us for rewarding work that makes a difference across the UK. You'll solve some of the nation's highest-priority digital challenges, helping millions of people access services they need Job description lead cyber and information security risk management, assurance, and architectural advisory for major applications and digital services during alpha, beta, and early live phases deliver critical security assessments and IT Health Checks, providing expert assurance across portfolio projects, with a focus on SaaS tooling compliance against NCSC Cloud Security Principles facilitate and oversee Security Working Groups throughout all key development and deployment stages, ensuring risks are tracked, logged, and reported to the Head of Cyber Risk and Assurance, with actionable recommendations provided produce formal risk assessments and risk treatment plans (RTPs) for all digital services and associated tooling, ensuring robust protection in accordance with business risk appetite develop, review, and advise on Secure by Design policies/practices, including safe use of AI, secure coding, and regulatory compliance frameworks (e.g., OWASP, DPIA, GovAssure) coordinate cross-platform activities and enable secure delivery of new GDS services, including supporting incident management and continuous improvement of live service security practices routinely provide monthly (and ad-hoc) risk briefings to senior leaders, evidencing assurance, identifying risks outside tolerance, mapping exposure, and recommending mitigations and controls mentor and train digital service teams and wider Information Security staff, sharing best practices and building internal capability for risk assessment and management support implementation and ongoing usage of risk management tooling, ensuring all details are uploaded promptly and appropriately, such as the SureCloud risk register engage proactively with senior internal and external stakeholders, promoting security culture and enabling confident delivery aligned with organisational priorities future line management activities as the team grows Person specification demonstrable experience delivering high-quality, detailed cyber security risk assessments and assurance in large, fast moving, complex digital environments, ideally government or critical infrastructure in-depth understanding of cyber risk management, threat modelling, security architectural advice, and formal IT Health Checks, including experience with SaaS environments and cloud security principles experience interpreting and applying relevant cyber security standards, regulatory frameworks, and secure by design principles within a multi-disciplinary digital team a self-starter, using your considerable experience and skills to work independently and with confidence track record of building cross-functional relationships and leading multi-platform security initiatives, with the ability to brief, influence, and advise senior stakeholders strong written, verbal, and interpersonal communication skills, able to distil complex findings into actionable recommendations for non-technical and executive audiences evidence of personal commitment to continuous learning and sharing of best practices, with experience mentoring, coaching, or enabling capability-building in others ability to assess the implications and risks of emerging technologies (such as AI, SaaS, cloud services) and proactively recommend security interventions knowledge of Civil Service values: respect, collaboration, inclusivity, and commitment to public service, with a strong focus on organisational culture Indicative professional qualifications / accreditations relevant industry qualifications and accreditations e.g. , CISSP or hold a Master's Degree in a relevant discipline.
Location This position can be based at either MOD Corsham, Westwells Road, Corsham, SN13 9NR, MOD Abbey Wood, Filton, Bristol, BS34 8J or MOD Main Building, Whitehall, London, SW1A 2HB. About the job Job summary The MOD's digital teams ensure we remain among the most technologically advanced Armed Forces in the world. We develop and lead in cutting-edge data science, automation, and cybersecurity solutions to protect the UK and its interests, at home and abroad. Our mission goes beyond the battlefield, by leading humanitarian efforts and driving innovation, that impacts lives across the globe. Watch our video to see what we do at Defence Digital! This position is advertised at 37 hours per week. Job description As Principal Technical Architect, you'll be the driving force behind defining and embedding architectural strategy, ensuring it's not only well-crafted but consistently delivered. In this leadership role, you'll influence, engage and advise teams (engineering and architecture), making enterprise-wide technology decisions that shape national capability. With a primary focus on apps, you'll address design, development, enterprise CI/CD, tooling and product selection, overseeing delivery when required. You'll also manage the architecture and migration to cloud-based providers, such as AWS, Azure and Oracle. This is an exciting opportunity to join our team in a senior leadership position, supporting our mission to provide strategic advantage and capability for Defence, through rapid and effective software delivery, based on clear prioritisation and agile practices. Responsibilities Set technical direction and make enterprise-level decisions on digital technologies, and product selections that drive integration and alignment with the overarching architectural vision and business requirements. Plan and deliver a prioritised schedule of work, using agile methodologies, securing agreement from stakeholders and ensuring all technical architecture artefacts are captured and maintained, within relevant repositories. Serve as a Service Assessor, evaluating internal and cross-government services to ensure compliance with the service standard and alignment with architectural principles. Promote re-use and scalability across Defence, driving integration by default and reducing duplicate technologies, to support sustainability and value for money. Lead, inspire and influence engineering and architecture teams to deliver high-quality outputs, aligned with strategic priorities. Role model and champion product and service delivery, using agile user centred design methodologies, helping Defence modernise its delivery practices. Person specification Please ensure that your CV and application meet the essential criteria below: We'd expect to see expertise in architectural tools (e.g., ArchiMate) and frameworks, such as design patterns, modelling languages and component building blocks, to support complex design, governance and stakeholder engagement. You'll be able to demonstrate a breadth of technical knowledge, enabling you to advise and challenge teams to find the best solutions for Defence. You'll have knowledge of data and security architecture and approaches to data storage and management. This role may also be suitable for individuals who have progressed into technical architecture from previous roles in software engineering or architecture, working in agile delivery teams. You'll need: Strong stakeholder management skills, able to build working relationships across diverse groups, influencing decisions and aligning outcomes with strategic goals. Adaptability and resilience, able to manage shifting priorities and guiding others to deliver at pace. Experience in leading, supporting, coaching and mentoring colleagues. A passion for security and technology and identifying and solving problems. Motivation, commitment and desire to continue to learn and develop. If not held already, opportunity may be provided to gain the following when in post: TOGAF certification Open Agile Architecture Practitioner Certification Additional information This post is eligible for a Digital Skills Allowance of up to £18,000 per annum. Eligibility for this allowance will be assessed at interview against 4 core technical skills only and reviewed annually in line with MOD policy. This position can be based at either MOD Corsham, Westwells Road, Corsham, SN13 9NR, MOD Abbey Wood, Filton, Bristol, BS34 8JH or MOD Main Building, Whitehall, London, SW1A 2HB. Work location will be agreed once the successful candidate has been selected. This job role may be suitable for hybrid working, which is an informal, non-contractual and voluntary arrangement, blending a balance of attendance in the workplace (your permanent duty station, which is based on business assessment of where the work is best done) and working from home as a personal choice (if the role is suitable for this). If you are successful, any opportunities for hybrid working will be discussed with you prior to you taking up your post. Dependent on the business need, there may be a requirement to travel to meetings within the UK (or potentially occasional overseas visits).
12/03/2026
Full time
Location This position can be based at either MOD Corsham, Westwells Road, Corsham, SN13 9NR, MOD Abbey Wood, Filton, Bristol, BS34 8J or MOD Main Building, Whitehall, London, SW1A 2HB. About the job Job summary The MOD's digital teams ensure we remain among the most technologically advanced Armed Forces in the world. We develop and lead in cutting-edge data science, automation, and cybersecurity solutions to protect the UK and its interests, at home and abroad. Our mission goes beyond the battlefield, by leading humanitarian efforts and driving innovation, that impacts lives across the globe. Watch our video to see what we do at Defence Digital! This position is advertised at 37 hours per week. Job description As Principal Technical Architect, you'll be the driving force behind defining and embedding architectural strategy, ensuring it's not only well-crafted but consistently delivered. In this leadership role, you'll influence, engage and advise teams (engineering and architecture), making enterprise-wide technology decisions that shape national capability. With a primary focus on apps, you'll address design, development, enterprise CI/CD, tooling and product selection, overseeing delivery when required. You'll also manage the architecture and migration to cloud-based providers, such as AWS, Azure and Oracle. This is an exciting opportunity to join our team in a senior leadership position, supporting our mission to provide strategic advantage and capability for Defence, through rapid and effective software delivery, based on clear prioritisation and agile practices. Responsibilities Set technical direction and make enterprise-level decisions on digital technologies, and product selections that drive integration and alignment with the overarching architectural vision and business requirements. Plan and deliver a prioritised schedule of work, using agile methodologies, securing agreement from stakeholders and ensuring all technical architecture artefacts are captured and maintained, within relevant repositories. Serve as a Service Assessor, evaluating internal and cross-government services to ensure compliance with the service standard and alignment with architectural principles. Promote re-use and scalability across Defence, driving integration by default and reducing duplicate technologies, to support sustainability and value for money. Lead, inspire and influence engineering and architecture teams to deliver high-quality outputs, aligned with strategic priorities. Role model and champion product and service delivery, using agile user centred design methodologies, helping Defence modernise its delivery practices. Person specification Please ensure that your CV and application meet the essential criteria below: We'd expect to see expertise in architectural tools (e.g., ArchiMate) and frameworks, such as design patterns, modelling languages and component building blocks, to support complex design, governance and stakeholder engagement. You'll be able to demonstrate a breadth of technical knowledge, enabling you to advise and challenge teams to find the best solutions for Defence. You'll have knowledge of data and security architecture and approaches to data storage and management. This role may also be suitable for individuals who have progressed into technical architecture from previous roles in software engineering or architecture, working in agile delivery teams. You'll need: Strong stakeholder management skills, able to build working relationships across diverse groups, influencing decisions and aligning outcomes with strategic goals. Adaptability and resilience, able to manage shifting priorities and guiding others to deliver at pace. Experience in leading, supporting, coaching and mentoring colleagues. A passion for security and technology and identifying and solving problems. Motivation, commitment and desire to continue to learn and develop. If not held already, opportunity may be provided to gain the following when in post: TOGAF certification Open Agile Architecture Practitioner Certification Additional information This post is eligible for a Digital Skills Allowance of up to £18,000 per annum. Eligibility for this allowance will be assessed at interview against 4 core technical skills only and reviewed annually in line with MOD policy. This position can be based at either MOD Corsham, Westwells Road, Corsham, SN13 9NR, MOD Abbey Wood, Filton, Bristol, BS34 8JH or MOD Main Building, Whitehall, London, SW1A 2HB. Work location will be agreed once the successful candidate has been selected. This job role may be suitable for hybrid working, which is an informal, non-contractual and voluntary arrangement, blending a balance of attendance in the workplace (your permanent duty station, which is based on business assessment of where the work is best done) and working from home as a personal choice (if the role is suitable for this). If you are successful, any opportunities for hybrid working will be discussed with you prior to you taking up your post. Dependent on the business need, there may be a requirement to travel to meetings within the UK (or potentially occasional overseas visits).
A career without limits As the nation's flag carrier, we take great pride in connecting Britain with the world and the world with Britain. It's something we've been doing for over 100 years, ever since we launched the world's first international scheduled air service between London and Paris. This originality has been in our blood since day one. It's the spirit we share with the people that fly with us, our partners, and our colleagues. So, whether you are a reassuring voice on the end of a phone, a smile at the door, under a wing keeping the turbines spinning or landing us gently in far flung places, a job at British Airways is yours to make. We know great things can happen when you're inspired to think big and bring your ambition to work every day, which is why, at British Airways, the sky is never the limit. The role Cyber Product Owner - Identity & Access Management (IAM) As Cyber Product Owner for Identity & Access Management (IAM), you'll play a critical role in ensuring British Airways' authentication and access platforms deliver secure, efficient and user friendly experiences for colleagues and customers. This is a hands on product role. You'll be expected to bring deep practical experience of IAM tooling and the ability to engage confidently on how identity platforms are designed, configured, implemented and operated in real environments. This role requires more than strategy or governance - you'll need to know your tools and how they work in practice. What you'll do Provide technical cyber leadership across BA's IAM products, including platforms such as Active Directory, Entra ID and multi factor authentication Own the product vision, strategy and roadmaps for IAM, translating business and security needs into clear outcomes and measurable KPIs Work hands on with IAM capabilities , validating implementation approaches, guiding configuration decisions and shaping how tools are used in production Assess, implement and promote IAM features that strengthen security, improve user experience and drive adoption Create and maintain IAM reference architectures, design patterns and technical guidance Lead cyber and security reviews to ensure consistency, quality and alignment to BA security principles Act as a subject matter expert on IAM, supporting delivery assurance and wider cyber initiatives Engage with stakeholders to understand operational pain points and continuously improve authentication and authorisation journeys Develop and maintain an up to date threat model and risk view of the IAM landscape What you'll bring to British Airways Strong hands on experience with enterprise IAM tooling - you can demonstrate practical knowledge of how identity platforms are configured, operated and improved, not just managed at a high level Deep understanding of identity, authentication and access management Ability to explain complex IAM and security topics clearly to technical and non technical audiences Experience translating security requirements into deliverable product changes A structured, analytical approach with confidence balancing security, usability and delivery Proactive, pragmatic mindset with a focus on continuous improvement and operational resilience Your experience Proven experience delivering and operating IAM products in a large or complex environment Strong practical experience with identity platforms such as Active Directory and Entra ID, including authentication Experience defining IAM strategies and roadmaps and working closely with engineers and suppliers to deliver them Track record of improving security posture while enabling business outcomes Cybersecurity qualifications or certifications are desirable What we offer We believe that all the people who work with us should feel valued for the part they play. It's one of the reasons our rewards go far beyond a competitive salary. From the day you join us, you'll get access to brilliant staff travel benefits including unlimited basic and premium standby tickets on British Airways flights. You'll also receive up to 30 discounted 'Hotline' airfares per year for yourself, friends, and family. At British Airways you'll have the chance to take on new challenges and move forward in a way that feels right for you. We encourage all those who work for us to consider opportunities right across our business to help you develop and progress. We never stand still, and we don't expect our people to either. Inclusion & Diversity At British Airways we all have a part to play in creating an inclusive place to work. Diverse representation among our people is really important to us and we recognise that all our colleagues are uniquely different and bring their own originality, creativity and identity to work. Inclusion and diversity is a key driver of innovation and we're committed to creating a culture where everyone feels that they can be themselves. We're looking for people from all backgrounds and cultures to join us and be a part of our journey to become a Better BA as we continue to connect Britain with the world and the world with Britain.
12/03/2026
Full time
A career without limits As the nation's flag carrier, we take great pride in connecting Britain with the world and the world with Britain. It's something we've been doing for over 100 years, ever since we launched the world's first international scheduled air service between London and Paris. This originality has been in our blood since day one. It's the spirit we share with the people that fly with us, our partners, and our colleagues. So, whether you are a reassuring voice on the end of a phone, a smile at the door, under a wing keeping the turbines spinning or landing us gently in far flung places, a job at British Airways is yours to make. We know great things can happen when you're inspired to think big and bring your ambition to work every day, which is why, at British Airways, the sky is never the limit. The role Cyber Product Owner - Identity & Access Management (IAM) As Cyber Product Owner for Identity & Access Management (IAM), you'll play a critical role in ensuring British Airways' authentication and access platforms deliver secure, efficient and user friendly experiences for colleagues and customers. This is a hands on product role. You'll be expected to bring deep practical experience of IAM tooling and the ability to engage confidently on how identity platforms are designed, configured, implemented and operated in real environments. This role requires more than strategy or governance - you'll need to know your tools and how they work in practice. What you'll do Provide technical cyber leadership across BA's IAM products, including platforms such as Active Directory, Entra ID and multi factor authentication Own the product vision, strategy and roadmaps for IAM, translating business and security needs into clear outcomes and measurable KPIs Work hands on with IAM capabilities , validating implementation approaches, guiding configuration decisions and shaping how tools are used in production Assess, implement and promote IAM features that strengthen security, improve user experience and drive adoption Create and maintain IAM reference architectures, design patterns and technical guidance Lead cyber and security reviews to ensure consistency, quality and alignment to BA security principles Act as a subject matter expert on IAM, supporting delivery assurance and wider cyber initiatives Engage with stakeholders to understand operational pain points and continuously improve authentication and authorisation journeys Develop and maintain an up to date threat model and risk view of the IAM landscape What you'll bring to British Airways Strong hands on experience with enterprise IAM tooling - you can demonstrate practical knowledge of how identity platforms are configured, operated and improved, not just managed at a high level Deep understanding of identity, authentication and access management Ability to explain complex IAM and security topics clearly to technical and non technical audiences Experience translating security requirements into deliverable product changes A structured, analytical approach with confidence balancing security, usability and delivery Proactive, pragmatic mindset with a focus on continuous improvement and operational resilience Your experience Proven experience delivering and operating IAM products in a large or complex environment Strong practical experience with identity platforms such as Active Directory and Entra ID, including authentication Experience defining IAM strategies and roadmaps and working closely with engineers and suppliers to deliver them Track record of improving security posture while enabling business outcomes Cybersecurity qualifications or certifications are desirable What we offer We believe that all the people who work with us should feel valued for the part they play. It's one of the reasons our rewards go far beyond a competitive salary. From the day you join us, you'll get access to brilliant staff travel benefits including unlimited basic and premium standby tickets on British Airways flights. You'll also receive up to 30 discounted 'Hotline' airfares per year for yourself, friends, and family. At British Airways you'll have the chance to take on new challenges and move forward in a way that feels right for you. We encourage all those who work for us to consider opportunities right across our business to help you develop and progress. We never stand still, and we don't expect our people to either. Inclusion & Diversity At British Airways we all have a part to play in creating an inclusive place to work. Diverse representation among our people is really important to us and we recognise that all our colleagues are uniquely different and bring their own originality, creativity and identity to work. Inclusion and diversity is a key driver of innovation and we're committed to creating a culture where everyone feels that they can be themselves. We're looking for people from all backgrounds and cultures to join us and be a part of our journey to become a Better BA as we continue to connect Britain with the world and the world with Britain.
DWP. Digital with Purpose. Join DWP as a Lead Security Architect and shape the secure design of large scale digital services, lead innovation in security tech, and drive strategic security initiatives that protect millions across the UK. We're using fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? Security Architecture design and modelling techniques, patterns, tools and standards. Presenting architecture design to technical governance forums. Shaping and supporting technology initiatives, projects, programmes and portfolios. Technical authoring skills, particularly for the production of technical design and specification documents. Being the security lead in technical governance forums. Mandatory Criteria/Qualifications CISSP (Certified Information Systems Security Professional) or a Master's in Cyber Security. SC Clearance. You and your role As a Lead Security Architect at DWP, you will shape and govern the security architecture behind some of the largest digital transformation programmes in Europe. You'll work across high complexity services, setting long term security strategy, defining architectural principles, and guiding senior stakeholders to make secure, informed decisions that protect our systems and millions of users. You'll take the lead in designing secure, scalable solutions across a wide range of digital services. This includes providing expert guidance, producing high quality technical documentation, and contributing to key governance forums to ensure all solutions remain aligned with secure by design standards and organisational goals. The role also places you at the forefront of innovation-researching emerging technologies, solving complex security challenges, and sharing best practice across the profession. Your expertise will play a crucial part in ensuring DWP delivers modern, resilient and user focused digital services for people across the UK. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £99,836. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £21,735 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket. Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview 1: Delivery of a 10-minute presentation. Interview 2: Assessment of Behaviours and Technical Skills CLICK APPLY for more information and to start your application
12/03/2026
Full time
DWP. Digital with Purpose. Join DWP as a Lead Security Architect and shape the secure design of large scale digital services, lead innovation in security tech, and drive strategic security initiatives that protect millions across the UK. We're using fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? Security Architecture design and modelling techniques, patterns, tools and standards. Presenting architecture design to technical governance forums. Shaping and supporting technology initiatives, projects, programmes and portfolios. Technical authoring skills, particularly for the production of technical design and specification documents. Being the security lead in technical governance forums. Mandatory Criteria/Qualifications CISSP (Certified Information Systems Security Professional) or a Master's in Cyber Security. SC Clearance. You and your role As a Lead Security Architect at DWP, you will shape and govern the security architecture behind some of the largest digital transformation programmes in Europe. You'll work across high complexity services, setting long term security strategy, defining architectural principles, and guiding senior stakeholders to make secure, informed decisions that protect our systems and millions of users. You'll take the lead in designing secure, scalable solutions across a wide range of digital services. This includes providing expert guidance, producing high quality technical documentation, and contributing to key governance forums to ensure all solutions remain aligned with secure by design standards and organisational goals. The role also places you at the forefront of innovation-researching emerging technologies, solving complex security challenges, and sharing best practice across the profession. Your expertise will play a crucial part in ensuring DWP delivers modern, resilient and user focused digital services for people across the UK. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £99,836. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £21,735 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket. Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview 1: Delivery of a 10-minute presentation. Interview 2: Assessment of Behaviours and Technical Skills CLICK APPLY for more information and to start your application
Location East Midlands (England), East of England, London (region), North East England, North West England, Scotland, South East England, South West England, Wales, West Midlands (England), Yorkshire and the Humber About the job Job summary This position is based nationally. Job description The HMCTS Security Architect plays a vital role in embedding Secure by Design principles across the technology lifecycle. Working closely with the Chief Information Security Officer, Principal and Lead Security Architects, and the wider security team, the architect ensures that cyber security activities align with HMCTS's strategic goals, risk management framework, and evolving security roadmap. This role is responsible for maintaining compliance with key standards including PCI DSS, ISO27001, GovAssure, and the National Cyber Security Centre's Cyber Assessment Framework. The architect promotes a strong security culture, ensuring that Secure by Design is understood and consistently applied across programmes and platforms. Operating across on-premises, cloud, and hybrid environments, the Security Architect provides expert oversight and guidance to technical teams, enabling informed decisions on security controls. They ensure the effective use of common tools and patterns to deliver secure systems, while applying proportionate controls that support business outcomes. The architect safeguards HMCTS's data, services, and infrastructure by shaping robust security solutions and coordinating assurance activities. They play a key role in enabling secure innovation and ensuring that security is not just a compliance requirement but a strategic enabler. This role demands a strategic mindset, deep technical expertise, and strong collaboration skills. The Security Architect must influence across multidisciplinary teams, advocate for security best practices, and contribute to the continuous improvement of HMCTS's cyber security posture. Key Responsibilities: A security architect creates and designs security for a system or service, maintains security documentation and develops architecture patterns and security approaches to new technologies. At this role level, you will: Ensure security architecture aligns with wider Gov security policies and frameworks, legal frameworks, industry regulations and best practise (e.g ISO 27001, NCSC Standards, GDPR, PCI DSS, GovAssure, Secure by Design). Recommend security controls and identify security solutions that support business objectives. Provide specialist security guidance and direction during the design, implementation and use phases of systems, applications and infrastructure. Provide specialist advice and recommendations regarding approaches and technologies across teams and various stakeholders, assessing the risk associated with proposed changes. Inspire and influence others to execute security principles, communicating widely with other stakeholders. Support the GovAssure process by coordinating the collection of evidence, and the submission of GovAssure returns to Cabinet Office. Advise on important security-related technologies and assess the risk associated with proposed changes Assist, where necessary, with incident response processes to identify architectural issues and solutions. Proactively engage with internal and external partners, stakeholders and peers to develop your knowledge and inform your decisions. You will be expected to carry out any other duties that may reasonably be required in line with your main duties. Continuously keep up to date with changing compliance legislation and initiatives to assess new opportunities for educating colleagues on relevant security standards. Continue to review ongoing security architectural activities Essential Skills & Criteria: Good understanding and working knowledge of Cyber Security Policies and Frameworks. Broad technical knowledge, especially around cloud and hybrid technologies. Strong understanding of Governance, Compliance and Risk, and the Confidentiality, Availability, and Integrity (CIA) triad. Solid understanding of security protocols, networking, identity management, authentication, authorisation, and cryptography. Understanding security implications of transformation - Can interpret and apply understanding of policy and process, business architecture, and legal and political implications to assist the development of technical solutions or controls. Work with team members to identify risks and communicate them effectively to decision makers. Help inform prioritisation of wider departmental work to ensure security improvements are given due consideration. Able to understand and articulate the impact of vulnerabilities on existing and future designs and be able to articulate an appropriate response. Excellent communication and interpersonal skills. Ability to interact with stakeholders of all levels to effectively articulate security controls, solutions, and advice. Capable of evaluating options and making decisions quickly and effectively. Apply leadership experience by using consultative and negotiating skills to contribute to the overall success including building and maintaining relationships with stakeholders at all levels. Ability to address situations, incidents or tasks proactively and promptly. Continually stay abreast of emerging security technologies, threats and trends. Self-motivated to drive their learning needs. Desirable Experience Knowledge of Secure by Design principles and their practical application Analysis - Able to apply the approach to real problems and consider all relevant information. Applies appropriate rigour to ensure a full solution is designed and achieves the business outcome. You will also benefit from knowledge of the different approaches to delivery across digital and technology teams, and how security practices can integrate / clash with these working practices. Person specification Please refer to Job Description
12/03/2026
Full time
Location East Midlands (England), East of England, London (region), North East England, North West England, Scotland, South East England, South West England, Wales, West Midlands (England), Yorkshire and the Humber About the job Job summary This position is based nationally. Job description The HMCTS Security Architect plays a vital role in embedding Secure by Design principles across the technology lifecycle. Working closely with the Chief Information Security Officer, Principal and Lead Security Architects, and the wider security team, the architect ensures that cyber security activities align with HMCTS's strategic goals, risk management framework, and evolving security roadmap. This role is responsible for maintaining compliance with key standards including PCI DSS, ISO27001, GovAssure, and the National Cyber Security Centre's Cyber Assessment Framework. The architect promotes a strong security culture, ensuring that Secure by Design is understood and consistently applied across programmes and platforms. Operating across on-premises, cloud, and hybrid environments, the Security Architect provides expert oversight and guidance to technical teams, enabling informed decisions on security controls. They ensure the effective use of common tools and patterns to deliver secure systems, while applying proportionate controls that support business outcomes. The architect safeguards HMCTS's data, services, and infrastructure by shaping robust security solutions and coordinating assurance activities. They play a key role in enabling secure innovation and ensuring that security is not just a compliance requirement but a strategic enabler. This role demands a strategic mindset, deep technical expertise, and strong collaboration skills. The Security Architect must influence across multidisciplinary teams, advocate for security best practices, and contribute to the continuous improvement of HMCTS's cyber security posture. Key Responsibilities: A security architect creates and designs security for a system or service, maintains security documentation and develops architecture patterns and security approaches to new technologies. At this role level, you will: Ensure security architecture aligns with wider Gov security policies and frameworks, legal frameworks, industry regulations and best practise (e.g ISO 27001, NCSC Standards, GDPR, PCI DSS, GovAssure, Secure by Design). Recommend security controls and identify security solutions that support business objectives. Provide specialist security guidance and direction during the design, implementation and use phases of systems, applications and infrastructure. Provide specialist advice and recommendations regarding approaches and technologies across teams and various stakeholders, assessing the risk associated with proposed changes. Inspire and influence others to execute security principles, communicating widely with other stakeholders. Support the GovAssure process by coordinating the collection of evidence, and the submission of GovAssure returns to Cabinet Office. Advise on important security-related technologies and assess the risk associated with proposed changes Assist, where necessary, with incident response processes to identify architectural issues and solutions. Proactively engage with internal and external partners, stakeholders and peers to develop your knowledge and inform your decisions. You will be expected to carry out any other duties that may reasonably be required in line with your main duties. Continuously keep up to date with changing compliance legislation and initiatives to assess new opportunities for educating colleagues on relevant security standards. Continue to review ongoing security architectural activities Essential Skills & Criteria: Good understanding and working knowledge of Cyber Security Policies and Frameworks. Broad technical knowledge, especially around cloud and hybrid technologies. Strong understanding of Governance, Compliance and Risk, and the Confidentiality, Availability, and Integrity (CIA) triad. Solid understanding of security protocols, networking, identity management, authentication, authorisation, and cryptography. Understanding security implications of transformation - Can interpret and apply understanding of policy and process, business architecture, and legal and political implications to assist the development of technical solutions or controls. Work with team members to identify risks and communicate them effectively to decision makers. Help inform prioritisation of wider departmental work to ensure security improvements are given due consideration. Able to understand and articulate the impact of vulnerabilities on existing and future designs and be able to articulate an appropriate response. Excellent communication and interpersonal skills. Ability to interact with stakeholders of all levels to effectively articulate security controls, solutions, and advice. Capable of evaluating options and making decisions quickly and effectively. Apply leadership experience by using consultative and negotiating skills to contribute to the overall success including building and maintaining relationships with stakeholders at all levels. Ability to address situations, incidents or tasks proactively and promptly. Continually stay abreast of emerging security technologies, threats and trends. Self-motivated to drive their learning needs. Desirable Experience Knowledge of Secure by Design principles and their practical application Analysis - Able to apply the approach to real problems and consider all relevant information. Applies appropriate rigour to ensure a full solution is designed and achieves the business outcome. You will also benefit from knowledge of the different approaches to delivery across digital and technology teams, and how security practices can integrate / clash with these working practices. Person specification Please refer to Job Description
DWP. Digital with Purpose. Join DWP as a Lead Security Architect and shape the secure design of large scale digital services, lead innovation in security tech, and drive strategic security initiatives that protect millions across the UK. We're using fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? Security Architecture design and modelling techniques, patterns, tools and standards. Presenting architecture design to technical governance forums. Shaping and supporting technology initiatives, projects, programmes and portfolios. Technical authoring skills, particularly for the production of technical design and specification documents. Being the security lead in technical governance forums. Mandatory Criteria/Qualifications CISSP (Certified Information Systems Security Professional) or a Master's in Cyber Security. SC Clearance. You and your role As a Lead Security Architect at DWP, you will shape and govern the security architecture behind some of the largest digital transformation programmes in Europe. You'll work across high complexity services, setting long term security strategy, defining architectural principles, and guiding senior stakeholders to make secure, informed decisions that protect our systems and millions of users. You'll take the lead in designing secure, scalable solutions across a wide range of digital services. This includes providing expert guidance, producing high quality technical documentation, and contributing to key governance forums to ensure all solutions remain aligned with secure by design standards and organisational goals. The role also places you at the forefront of innovation-researching emerging technologies, solving complex security challenges, and sharing best practice across the profession. Your expertise will play a crucial part in ensuring DWP delivers modern, resilient and user focused digital services for people across the UK. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £99,836. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £21,735 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket. Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview 1: Delivery of a 10-minute presentation. Interview 2: Assessment of Behaviours and Technical Skills CLICK APPLY for more information and to start your application
12/03/2026
Full time
DWP. Digital with Purpose. Join DWP as a Lead Security Architect and shape the secure design of large scale digital services, lead innovation in security tech, and drive strategic security initiatives that protect millions across the UK. We're using fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? Security Architecture design and modelling techniques, patterns, tools and standards. Presenting architecture design to technical governance forums. Shaping and supporting technology initiatives, projects, programmes and portfolios. Technical authoring skills, particularly for the production of technical design and specification documents. Being the security lead in technical governance forums. Mandatory Criteria/Qualifications CISSP (Certified Information Systems Security Professional) or a Master's in Cyber Security. SC Clearance. You and your role As a Lead Security Architect at DWP, you will shape and govern the security architecture behind some of the largest digital transformation programmes in Europe. You'll work across high complexity services, setting long term security strategy, defining architectural principles, and guiding senior stakeholders to make secure, informed decisions that protect our systems and millions of users. You'll take the lead in designing secure, scalable solutions across a wide range of digital services. This includes providing expert guidance, producing high quality technical documentation, and contributing to key governance forums to ensure all solutions remain aligned with secure by design standards and organisational goals. The role also places you at the forefront of innovation-researching emerging technologies, solving complex security challenges, and sharing best practice across the profession. Your expertise will play a crucial part in ensuring DWP delivers modern, resilient and user focused digital services for people across the UK. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £99,836. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £21,735 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket. Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview 1: Delivery of a 10-minute presentation. Interview 2: Assessment of Behaviours and Technical Skills CLICK APPLY for more information and to start your application
DWP. Digital with Purpose. Join DWP as a Lead Security Architect and shape the secure design of large scale digital services, lead innovation in security tech, and drive strategic security initiatives that protect millions across the UK. We're using fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? Security Architecture design and modelling techniques, patterns, tools and standards. Presenting architecture design to technical governance forums. Shaping and supporting technology initiatives, projects, programmes and portfolios. Technical authoring skills, particularly for the production of technical design and specification documents. Being the security lead in technical governance forums. Mandatory Criteria/Qualifications CISSP (Certified Information Systems Security Professional) or a Master's in Cyber Security. SC Clearance. You and your role As a Lead Security Architect at DWP, you will shape and govern the security architecture behind some of the largest digital transformation programmes in Europe. You'll work across high complexity services, setting long term security strategy, defining architectural principles, and guiding senior stakeholders to make secure, informed decisions that protect our systems and millions of users. You'll take the lead in designing secure, scalable solutions across a wide range of digital services. This includes providing expert guidance, producing high quality technical documentation, and contributing to key governance forums to ensure all solutions remain aligned with secure by design standards and organisational goals. The role also places you at the forefront of innovation-researching emerging technologies, solving complex security challenges, and sharing best practice across the profession. Your expertise will play a crucial part in ensuring DWP delivers modern, resilient and user focused digital services for people across the UK. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £99,836. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £21,735 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket. Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview 1: Delivery of a 10-minute presentation. Interview 2: Assessment of Behaviours and Technical Skills CLICK APPLY for more information and to start your application
12/03/2026
Full time
DWP. Digital with Purpose. Join DWP as a Lead Security Architect and shape the secure design of large scale digital services, lead innovation in security tech, and drive strategic security initiatives that protect millions across the UK. We're using fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? Security Architecture design and modelling techniques, patterns, tools and standards. Presenting architecture design to technical governance forums. Shaping and supporting technology initiatives, projects, programmes and portfolios. Technical authoring skills, particularly for the production of technical design and specification documents. Being the security lead in technical governance forums. Mandatory Criteria/Qualifications CISSP (Certified Information Systems Security Professional) or a Master's in Cyber Security. SC Clearance. You and your role As a Lead Security Architect at DWP, you will shape and govern the security architecture behind some of the largest digital transformation programmes in Europe. You'll work across high complexity services, setting long term security strategy, defining architectural principles, and guiding senior stakeholders to make secure, informed decisions that protect our systems and millions of users. You'll take the lead in designing secure, scalable solutions across a wide range of digital services. This includes providing expert guidance, producing high quality technical documentation, and contributing to key governance forums to ensure all solutions remain aligned with secure by design standards and organisational goals. The role also places you at the forefront of innovation-researching emerging technologies, solving complex security challenges, and sharing best practice across the profession. Your expertise will play a crucial part in ensuring DWP delivers modern, resilient and user focused digital services for people across the UK. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £99,836. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £21,735 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket. Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview 1: Delivery of a 10-minute presentation. Interview 2: Assessment of Behaviours and Technical Skills CLICK APPLY for more information and to start your application
Pay up to £92,522, plus 28.97% employer pension contributions, hybrid working, flexible hours, and great work life balance. DWP. Digital with Purpose. We're looking for an exceptional Head of Secure Design to help protect some of the UK's most important digital services, including Universal Credit. We're building secure, resilient digital services that millions of people rely on every day. As the UK's largest government department, DWP supports people at key moments in their lives and delivers over £195bn in payments each year. Security is central to everything we do. From safeguarding Universal Credit to protecting critical data and systems, the scale and purpose of our work are extraordinary. You'll play a pivotal role in strengthening the security foundations behind some of the UK's most widely used digital services. You'll shape our secure by design approach, reduce fraud and cyber risk, and ensure our teams can deliver safe, consistent, user centred services at scale. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? Proven leadership skills, with the ability to influence, engage and communicate effectively with senior leaders and lead direct teams with clarity and confidence. Expert knowledge of protective security, with the ability to drive innovation while balancing security requirements with service delivery and transformation needs. Strong ability to integrate external threat intelligence, organisational context and situational awareness to build a holistic threat picture, including the effective use of threat models and clear communication to stakeholders. Ability to provide strategic oversight and leadership to specialist security functions (e.g., penetration testing, Security Architecture, DevSecOps, product and compliance assurance), including confidently challenging assumptions and driving change. Demonstrable experience managing risk across the full risk lifecycle, communicating risk in clear, actionable terms to enable informed prioritisation and decision making. Significant experience working in large, complex and mission critical programme or enterprise environments. CISSP or similar certification or can demonstrate equivalent skills and experience across those domains. You and your role You'll lead the security design function across Working Age Services, shaping secure, resilient and user centred systems used by millions every day. You'll oversee our security posture, fraud risk frameworks and tooling, ensuring strong controls, informed risk based decisions and clear visibility of vulnerabilities. Working with product teams, subject matter experts and senior leaders, you'll drive consistency in secure design, support the modernisation of our technology landscape, and champion best practice across cyber, fraud and error prevention. This is a hands on leadership role, owning security and fraud standards and ensuring robust, scalable solutions that safeguard our services and the citizens who rely on them. Details. Wages. Perks. Location: You'll join us in one of our brilliant digital hubs in Birmingham, Leeds, Manchester or Newcastle, whichever is most convenient for you. Hybrid Working: We work a hybrid model - you'll spend some time working at home and some time collaborating face to face in a hub. Pay: We offer competitive pay of up to £92,552. Pension: You'll get a brilliant civil service pension with employer contributions worth 28.97%. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Flexible working including flexible hours and flex-friendly policies Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Sports and social activities Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable so our application and selection process is just two stages: Apply: complete your application on Civil Service Jobs. There'll be full instructions when you click through. Interview: a single stage interview online. CLICK APPLY for more information and to start your application.
12/03/2026
Full time
Pay up to £92,522, plus 28.97% employer pension contributions, hybrid working, flexible hours, and great work life balance. DWP. Digital with Purpose. We're looking for an exceptional Head of Secure Design to help protect some of the UK's most important digital services, including Universal Credit. We're building secure, resilient digital services that millions of people rely on every day. As the UK's largest government department, DWP supports people at key moments in their lives and delivers over £195bn in payments each year. Security is central to everything we do. From safeguarding Universal Credit to protecting critical data and systems, the scale and purpose of our work are extraordinary. You'll play a pivotal role in strengthening the security foundations behind some of the UK's most widely used digital services. You'll shape our secure by design approach, reduce fraud and cyber risk, and ensure our teams can deliver safe, consistent, user centred services at scale. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? Proven leadership skills, with the ability to influence, engage and communicate effectively with senior leaders and lead direct teams with clarity and confidence. Expert knowledge of protective security, with the ability to drive innovation while balancing security requirements with service delivery and transformation needs. Strong ability to integrate external threat intelligence, organisational context and situational awareness to build a holistic threat picture, including the effective use of threat models and clear communication to stakeholders. Ability to provide strategic oversight and leadership to specialist security functions (e.g., penetration testing, Security Architecture, DevSecOps, product and compliance assurance), including confidently challenging assumptions and driving change. Demonstrable experience managing risk across the full risk lifecycle, communicating risk in clear, actionable terms to enable informed prioritisation and decision making. Significant experience working in large, complex and mission critical programme or enterprise environments. CISSP or similar certification or can demonstrate equivalent skills and experience across those domains. You and your role You'll lead the security design function across Working Age Services, shaping secure, resilient and user centred systems used by millions every day. You'll oversee our security posture, fraud risk frameworks and tooling, ensuring strong controls, informed risk based decisions and clear visibility of vulnerabilities. Working with product teams, subject matter experts and senior leaders, you'll drive consistency in secure design, support the modernisation of our technology landscape, and champion best practice across cyber, fraud and error prevention. This is a hands on leadership role, owning security and fraud standards and ensuring robust, scalable solutions that safeguard our services and the citizens who rely on them. Details. Wages. Perks. Location: You'll join us in one of our brilliant digital hubs in Birmingham, Leeds, Manchester or Newcastle, whichever is most convenient for you. Hybrid Working: We work a hybrid model - you'll spend some time working at home and some time collaborating face to face in a hub. Pay: We offer competitive pay of up to £92,552. Pension: You'll get a brilliant civil service pension with employer contributions worth 28.97%. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Flexible working including flexible hours and flex-friendly policies Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Sports and social activities Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable so our application and selection process is just two stages: Apply: complete your application on Civil Service Jobs. There'll be full instructions when you click through. Interview: a single stage interview online. CLICK APPLY for more information and to start your application.
Pay up to £92,522, plus 28.97% employer pension contributions, hybrid working, flexible hours, and great work life balance. DWP. Digital with Purpose. We're looking for an exceptional Head of Secure Design to help protect some of the UK's most important digital services, including Universal Credit. We're building secure, resilient digital services that millions of people rely on every day. As the UK's largest government department, DWP supports people at key moments in their lives and delivers over £195bn in payments each year. Security is central to everything we do. From safeguarding Universal Credit to protecting critical data and systems, the scale and purpose of our work are extraordinary. You'll play a pivotal role in strengthening the security foundations behind some of the UK's most widely used digital services. You'll shape our secure by design approach, reduce fraud and cyber risk, and ensure our teams can deliver safe, consistent, user centred services at scale. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? Proven leadership skills, with the ability to influence, engage and communicate effectively with senior leaders and lead direct teams with clarity and confidence. Expert knowledge of protective security, with the ability to drive innovation while balancing security requirements with service delivery and transformation needs. Strong ability to integrate external threat intelligence, organisational context and situational awareness to build a holistic threat picture, including the effective use of threat models and clear communication to stakeholders. Ability to provide strategic oversight and leadership to specialist security functions (e.g., penetration testing, Security Architecture, DevSecOps, product and compliance assurance), including confidently challenging assumptions and driving change. Demonstrable experience managing risk across the full risk lifecycle, communicating risk in clear, actionable terms to enable informed prioritisation and decision making. Significant experience working in large, complex and mission critical programme or enterprise environments. CISSP or similar certification or can demonstrate equivalent skills and experience across those domains. You and your role You'll lead the security design function across Working Age Services, shaping secure, resilient and user centred systems used by millions every day. You'll oversee our security posture, fraud risk frameworks and tooling, ensuring strong controls, informed risk based decisions and clear visibility of vulnerabilities. Working with product teams, subject matter experts and senior leaders, you'll drive consistency in secure design, support the modernisation of our technology landscape, and champion best practice across cyber, fraud and error prevention. This is a hands on leadership role, owning security and fraud standards and ensuring robust, scalable solutions that safeguard our services and the citizens who rely on them. Details. Wages. Perks. Location: You'll join us in one of our brilliant digital hubs in Birmingham, Leeds, Manchester or Newcastle, whichever is most convenient for you. Hybrid Working: We work a hybrid model - you'll spend some time working at home and some time collaborating face to face in a hub. Pay: We offer competitive pay of up to £92,552. Pension: You'll get a brilliant civil service pension with employer contributions worth 28.97%. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Flexible working including flexible hours and flex-friendly policies Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Sports and social activities Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable so our application and selection process is just two stages: Apply: complete your application on Civil Service Jobs. There'll be full instructions when you click through. Interview: a single stage interview online. CLICK APPLY for more information and to start your application.
12/03/2026
Full time
Pay up to £92,522, plus 28.97% employer pension contributions, hybrid working, flexible hours, and great work life balance. DWP. Digital with Purpose. We're looking for an exceptional Head of Secure Design to help protect some of the UK's most important digital services, including Universal Credit. We're building secure, resilient digital services that millions of people rely on every day. As the UK's largest government department, DWP supports people at key moments in their lives and delivers over £195bn in payments each year. Security is central to everything we do. From safeguarding Universal Credit to protecting critical data and systems, the scale and purpose of our work are extraordinary. You'll play a pivotal role in strengthening the security foundations behind some of the UK's most widely used digital services. You'll shape our secure by design approach, reduce fraud and cyber risk, and ensure our teams can deliver safe, consistent, user centred services at scale. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? Proven leadership skills, with the ability to influence, engage and communicate effectively with senior leaders and lead direct teams with clarity and confidence. Expert knowledge of protective security, with the ability to drive innovation while balancing security requirements with service delivery and transformation needs. Strong ability to integrate external threat intelligence, organisational context and situational awareness to build a holistic threat picture, including the effective use of threat models and clear communication to stakeholders. Ability to provide strategic oversight and leadership to specialist security functions (e.g., penetration testing, Security Architecture, DevSecOps, product and compliance assurance), including confidently challenging assumptions and driving change. Demonstrable experience managing risk across the full risk lifecycle, communicating risk in clear, actionable terms to enable informed prioritisation and decision making. Significant experience working in large, complex and mission critical programme or enterprise environments. CISSP or similar certification or can demonstrate equivalent skills and experience across those domains. You and your role You'll lead the security design function across Working Age Services, shaping secure, resilient and user centred systems used by millions every day. You'll oversee our security posture, fraud risk frameworks and tooling, ensuring strong controls, informed risk based decisions and clear visibility of vulnerabilities. Working with product teams, subject matter experts and senior leaders, you'll drive consistency in secure design, support the modernisation of our technology landscape, and champion best practice across cyber, fraud and error prevention. This is a hands on leadership role, owning security and fraud standards and ensuring robust, scalable solutions that safeguard our services and the citizens who rely on them. Details. Wages. Perks. Location: You'll join us in one of our brilliant digital hubs in Birmingham, Leeds, Manchester or Newcastle, whichever is most convenient for you. Hybrid Working: We work a hybrid model - you'll spend some time working at home and some time collaborating face to face in a hub. Pay: We offer competitive pay of up to £92,552. Pension: You'll get a brilliant civil service pension with employer contributions worth 28.97%. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Flexible working including flexible hours and flex-friendly policies Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Sports and social activities Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable so our application and selection process is just two stages: Apply: complete your application on Civil Service Jobs. There'll be full instructions when you click through. Interview: a single stage interview online. CLICK APPLY for more information and to start your application.
Salary: £53,496 to £61,686, comprising a basic salary of £50,838 and a concessionary payment of £2,658. The exact salary offered within this range will depend on your skills and experience. An additional Skills Payment is available once your skills level is confirmed, £3,822 for Level 1 or £8,190 for Level 2. Flexible working: We offer a range of working patterns, including full-time, part-time, and compressed hours, with flexible start and finish times to support a healthy work-life balance. While most of our work is carried out on-site due to its sensitive nature, occasional home working may be possible depending on business needs. Find out more about flexible working on our website . GCHQ is an intelligence, cyber and security agency with a mission to keep the UK safe. We use cutting-edge technology, ingenuity and partnerships to identify, analy0se and disrupt threats. Working with our intelligence partners, MI5 and MI6, we protect the UK from terrorism, cyber-attacks and espionage. At GCHQ, you'll do varied and fascinating work in a supportive and inclusive environment that puts the emphasis on teamwork. As an Associate Solutions Architect, you'll join a specialist team delivering technology solutions that underpin some of the UK's most critical national security work. Our work is unique and often cutting-edge, giving you the opportunity to develop deep expertise in an environment unlike any other. Guided by a Senior Solutions Architect, you'll help shape designs, produce architectural artefacts, and support the teams that bring solutions to life. You'll focus on understanding business needs and translating them into solutions, balancing technical constraints, delivery plans, risks and complexity. You'll create designs, documentation and models that align with our architectural standards and strategic direction. As requirements evolve, with the support of your line manager, you'll help answer questions, clarify designs, and adapt solutions to keep projects on track. Occasional travel to sites across the UK will allow you to work closely with colleagues across the organisation. You don't need a degree or specific qualifications to apply; we're interested in your experience and your motivation to support our mission. You'll need a foundational understanding of solution architecture and some experience contributing to the design and delivery of digital or technology solutions. Experience with at least one modern framework, such as TOGAF, NIST or ITIL, is valuable, typically gained through software engineering, infrastructure, or DevOps roles. Effective communication skills and a broad technical foundation will help you explain design decisions to both technical and non-technical audiences, while confidence in influencing and negotiation will help you find solutions that work for everyone. You'll need to think critically and solve problems creatively, as the challenges you encounter here are genuinely unique and rewarding. Adaptability and effective time-management skills are also important, as priorities can shift depending on business needs. When you join us, you'll have a full induction to GCHQ so you can understand who we are and what we do. Once in your role, you'll receive formal and on-the-job training, along with all the support you need to thrive. We're committed to continuous professional development and to providing the space for you to grow, innovate and experiment. Typically, around 20% of your time is dedicated to developing yourself and supporting others. We know that development looks different for everyone, so we'll tailor our support to your learning style, whether that's through books, courses, conferences or stretch assignments. We'll cover the cost of professional qualifications and give you the time and support to achieve them. From day one, you'll have access to mentors and subject-matter experts, and we'll work with you to build a structured development plan aligned with your goals. At GCHQ, diversity and inclusion are critical to our mission. To protect the UK, we need a truly diverse workforce that reflects the society we serve. This includes diversity in every sense of the word: those with different backgrounds, ages, ethnicities, gender identities, sexual orientations, ways of thinking and those with disabilities or neurodivergent conditions. We therefore welcome and encourage applications from everyone, including those from groups that are under-represented in our workforce such as women, those from an ethnic minority background, people with disabilities and those from low socio-economic backgrounds. Find out more about our culture, working environment and diversity on our website . To find out more and apply, please visit our website. To be eligible to apply, you must be a British Citizen. If you hold dual nationality, of which one component is British, you will still be considered. Candidates must normally have been resident in the UK for seven out of the last ten years. This is particularly important if you were born outside the UK. We welcome applications from candidates of all ages, and there is no upper age limit. You can apply at 17; if successful, you will not be offered a start date prior to your 18th birthday. Full eligibility details can be found on our website.
12/03/2026
Full time
Salary: £53,496 to £61,686, comprising a basic salary of £50,838 and a concessionary payment of £2,658. The exact salary offered within this range will depend on your skills and experience. An additional Skills Payment is available once your skills level is confirmed, £3,822 for Level 1 or £8,190 for Level 2. Flexible working: We offer a range of working patterns, including full-time, part-time, and compressed hours, with flexible start and finish times to support a healthy work-life balance. While most of our work is carried out on-site due to its sensitive nature, occasional home working may be possible depending on business needs. Find out more about flexible working on our website . GCHQ is an intelligence, cyber and security agency with a mission to keep the UK safe. We use cutting-edge technology, ingenuity and partnerships to identify, analy0se and disrupt threats. Working with our intelligence partners, MI5 and MI6, we protect the UK from terrorism, cyber-attacks and espionage. At GCHQ, you'll do varied and fascinating work in a supportive and inclusive environment that puts the emphasis on teamwork. As an Associate Solutions Architect, you'll join a specialist team delivering technology solutions that underpin some of the UK's most critical national security work. Our work is unique and often cutting-edge, giving you the opportunity to develop deep expertise in an environment unlike any other. Guided by a Senior Solutions Architect, you'll help shape designs, produce architectural artefacts, and support the teams that bring solutions to life. You'll focus on understanding business needs and translating them into solutions, balancing technical constraints, delivery plans, risks and complexity. You'll create designs, documentation and models that align with our architectural standards and strategic direction. As requirements evolve, with the support of your line manager, you'll help answer questions, clarify designs, and adapt solutions to keep projects on track. Occasional travel to sites across the UK will allow you to work closely with colleagues across the organisation. You don't need a degree or specific qualifications to apply; we're interested in your experience and your motivation to support our mission. You'll need a foundational understanding of solution architecture and some experience contributing to the design and delivery of digital or technology solutions. Experience with at least one modern framework, such as TOGAF, NIST or ITIL, is valuable, typically gained through software engineering, infrastructure, or DevOps roles. Effective communication skills and a broad technical foundation will help you explain design decisions to both technical and non-technical audiences, while confidence in influencing and negotiation will help you find solutions that work for everyone. You'll need to think critically and solve problems creatively, as the challenges you encounter here are genuinely unique and rewarding. Adaptability and effective time-management skills are also important, as priorities can shift depending on business needs. When you join us, you'll have a full induction to GCHQ so you can understand who we are and what we do. Once in your role, you'll receive formal and on-the-job training, along with all the support you need to thrive. We're committed to continuous professional development and to providing the space for you to grow, innovate and experiment. Typically, around 20% of your time is dedicated to developing yourself and supporting others. We know that development looks different for everyone, so we'll tailor our support to your learning style, whether that's through books, courses, conferences or stretch assignments. We'll cover the cost of professional qualifications and give you the time and support to achieve them. From day one, you'll have access to mentors and subject-matter experts, and we'll work with you to build a structured development plan aligned with your goals. At GCHQ, diversity and inclusion are critical to our mission. To protect the UK, we need a truly diverse workforce that reflects the society we serve. This includes diversity in every sense of the word: those with different backgrounds, ages, ethnicities, gender identities, sexual orientations, ways of thinking and those with disabilities or neurodivergent conditions. We therefore welcome and encourage applications from everyone, including those from groups that are under-represented in our workforce such as women, those from an ethnic minority background, people with disabilities and those from low socio-economic backgrounds. Find out more about our culture, working environment and diversity on our website . To find out more and apply, please visit our website. To be eligible to apply, you must be a British Citizen. If you hold dual nationality, of which one component is British, you will still be considered. Candidates must normally have been resident in the UK for seven out of the last ten years. This is particularly important if you were born outside the UK. We welcome applications from candidates of all ages, and there is no upper age limit. You can apply at 17; if successful, you will not be offered a start date prior to your 18th birthday. Full eligibility details can be found on our website.
Pay up to £92,522, plus 28.97% employer pension contributions, hybrid working, flexible hours, and great work life balance. DWP. Digital with Purpose. We're looking for an exceptional Head of Secure Design to help protect some of the UK's most important digital services, including Universal Credit. We're building secure, resilient digital services that millions of people rely on every day. As the UK's largest government department, DWP supports people at key moments in their lives and delivers over £195bn in payments each year. Security is central to everything we do. From safeguarding Universal Credit to protecting critical data and systems, the scale and purpose of our work are extraordinary. You'll play a pivotal role in strengthening the security foundations behind some of the UK's most widely used digital services. You'll shape our secure by design approach, reduce fraud and cyber risk, and ensure our teams can deliver safe, consistent, user centred services at scale. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? Proven leadership skills, with the ability to influence, engage and communicate effectively with senior leaders and lead direct teams with clarity and confidence. Expert knowledge of protective security, with the ability to drive innovation while balancing security requirements with service delivery and transformation needs. Strong ability to integrate external threat intelligence, organisational context and situational awareness to build a holistic threat picture, including the effective use of threat models and clear communication to stakeholders. Ability to provide strategic oversight and leadership to specialist security functions (e.g., penetration testing, Security Architecture, DevSecOps, product and compliance assurance), including confidently challenging assumptions and driving change. Demonstrable experience managing risk across the full risk lifecycle, communicating risk in clear, actionable terms to enable informed prioritisation and decision making. Significant experience working in large, complex and mission critical programme or enterprise environments. CISSP or similar certification or can demonstrate equivalent skills and experience across those domains. You and your role You'll lead the security design function across Working Age Services, shaping secure, resilient and user centred systems used by millions every day. You'll oversee our security posture, fraud risk frameworks and tooling, ensuring strong controls, informed risk based decisions and clear visibility of vulnerabilities. Working with product teams, subject matter experts and senior leaders, you'll drive consistency in secure design, support the modernisation of our technology landscape, and champion best practice across cyber, fraud and error prevention. This is a hands on leadership role, owning security and fraud standards and ensuring robust, scalable solutions that safeguard our services and the citizens who rely on them. Details. Wages. Perks. Location: You'll join us in one of our brilliant digital hubs in Birmingham, Leeds, Manchester or Newcastle, whichever is most convenient for you. Hybrid Working: We work a hybrid model - you'll spend some time working at home and some time collaborating face to face in a hub. Pay: We offer competitive pay of up to £92,552. Pension: You'll get a brilliant civil service pension with employer contributions worth 28.97%. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Flexible working including flexible hours and flex-friendly policies Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Sports and social activities Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable so our application and selection process is just two stages: Apply: complete your application on Civil Service Jobs. There'll be full instructions when you click through. Interview: a single stage interview online. CLICK APPLY for more information and to start your application.
12/03/2026
Full time
Pay up to £92,522, plus 28.97% employer pension contributions, hybrid working, flexible hours, and great work life balance. DWP. Digital with Purpose. We're looking for an exceptional Head of Secure Design to help protect some of the UK's most important digital services, including Universal Credit. We're building secure, resilient digital services that millions of people rely on every day. As the UK's largest government department, DWP supports people at key moments in their lives and delivers over £195bn in payments each year. Security is central to everything we do. From safeguarding Universal Credit to protecting critical data and systems, the scale and purpose of our work are extraordinary. You'll play a pivotal role in strengthening the security foundations behind some of the UK's most widely used digital services. You'll shape our secure by design approach, reduce fraud and cyber risk, and ensure our teams can deliver safe, consistent, user centred services at scale. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? Proven leadership skills, with the ability to influence, engage and communicate effectively with senior leaders and lead direct teams with clarity and confidence. Expert knowledge of protective security, with the ability to drive innovation while balancing security requirements with service delivery and transformation needs. Strong ability to integrate external threat intelligence, organisational context and situational awareness to build a holistic threat picture, including the effective use of threat models and clear communication to stakeholders. Ability to provide strategic oversight and leadership to specialist security functions (e.g., penetration testing, Security Architecture, DevSecOps, product and compliance assurance), including confidently challenging assumptions and driving change. Demonstrable experience managing risk across the full risk lifecycle, communicating risk in clear, actionable terms to enable informed prioritisation and decision making. Significant experience working in large, complex and mission critical programme or enterprise environments. CISSP or similar certification or can demonstrate equivalent skills and experience across those domains. You and your role You'll lead the security design function across Working Age Services, shaping secure, resilient and user centred systems used by millions every day. You'll oversee our security posture, fraud risk frameworks and tooling, ensuring strong controls, informed risk based decisions and clear visibility of vulnerabilities. Working with product teams, subject matter experts and senior leaders, you'll drive consistency in secure design, support the modernisation of our technology landscape, and champion best practice across cyber, fraud and error prevention. This is a hands on leadership role, owning security and fraud standards and ensuring robust, scalable solutions that safeguard our services and the citizens who rely on them. Details. Wages. Perks. Location: You'll join us in one of our brilliant digital hubs in Birmingham, Leeds, Manchester or Newcastle, whichever is most convenient for you. Hybrid Working: We work a hybrid model - you'll spend some time working at home and some time collaborating face to face in a hub. Pay: We offer competitive pay of up to £92,552. Pension: You'll get a brilliant civil service pension with employer contributions worth 28.97%. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Flexible working including flexible hours and flex-friendly policies Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Sports and social activities Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable so our application and selection process is just two stages: Apply: complete your application on Civil Service Jobs. There'll be full instructions when you click through. Interview: a single stage interview online. CLICK APPLY for more information and to start your application.
Pay up to £92,522, plus 28.97% employer pension contributions, hybrid working, flexible hours, and great work life balance. DWP. Digital with Purpose. We're looking for an exceptional Head of Secure Design to help protect some of the UK's most important digital services, including Universal Credit. We're building secure, resilient digital services that millions of people rely on every day. As the UK's largest government department, DWP supports people at key moments in their lives and delivers over £195bn in payments each year. Security is central to everything we do. From safeguarding Universal Credit to protecting critical data and systems, the scale and purpose of our work are extraordinary. You'll play a pivotal role in strengthening the security foundations behind some of the UK's most widely used digital services. You'll shape our secure by design approach, reduce fraud and cyber risk, and ensure our teams can deliver safe, consistent, user centred services at scale. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? Proven leadership skills, with the ability to influence, engage and communicate effectively with senior leaders and lead direct teams with clarity and confidence. Expert knowledge of protective security, with the ability to drive innovation while balancing security requirements with service delivery and transformation needs. Strong ability to integrate external threat intelligence, organisational context and situational awareness to build a holistic threat picture, including the effective use of threat models and clear communication to stakeholders. Ability to provide strategic oversight and leadership to specialist security functions (e.g., penetration testing, Security Architecture, DevSecOps, product and compliance assurance), including confidently challenging assumptions and driving change. Demonstrable experience managing risk across the full risk lifecycle, communicating risk in clear, actionable terms to enable informed prioritisation and decision making. Significant experience working in large, complex and mission critical programme or enterprise environments. CISSP or similar certification or can demonstrate equivalent skills and experience across those domains. You and your role You'll lead the security design function across Working Age Services, shaping secure, resilient and user centred systems used by millions every day. You'll oversee our security posture, fraud risk frameworks and tooling, ensuring strong controls, informed risk based decisions and clear visibility of vulnerabilities. Working with product teams, subject matter experts and senior leaders, you'll drive consistency in secure design, support the modernisation of our technology landscape, and champion best practice across cyber, fraud and error prevention. This is a hands on leadership role, owning security and fraud standards and ensuring robust, scalable solutions that safeguard our services and the citizens who rely on them. Details. Wages. Perks. Location: You'll join us in one of our brilliant digital hubs in Birmingham, Leeds, Manchester or Newcastle, whichever is most convenient for you. Hybrid Working: We work a hybrid model - you'll spend some time working at home and some time collaborating face to face in a hub. Pay: We offer competitive pay of up to £92,552. Pension: You'll get a brilliant civil service pension with employer contributions worth 28.97%. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Flexible working including flexible hours and flex-friendly policies Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Sports and social activities Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable so our application and selection process is just two stages: Apply: complete your application on Civil Service Jobs. There'll be full instructions when you click through. Interview: a single stage interview online. CLICK APPLY for more information and to start your application.
12/03/2026
Full time
Pay up to £92,522, plus 28.97% employer pension contributions, hybrid working, flexible hours, and great work life balance. DWP. Digital with Purpose. We're looking for an exceptional Head of Secure Design to help protect some of the UK's most important digital services, including Universal Credit. We're building secure, resilient digital services that millions of people rely on every day. As the UK's largest government department, DWP supports people at key moments in their lives and delivers over £195bn in payments each year. Security is central to everything we do. From safeguarding Universal Credit to protecting critical data and systems, the scale and purpose of our work are extraordinary. You'll play a pivotal role in strengthening the security foundations behind some of the UK's most widely used digital services. You'll shape our secure by design approach, reduce fraud and cyber risk, and ensure our teams can deliver safe, consistent, user centred services at scale. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? Proven leadership skills, with the ability to influence, engage and communicate effectively with senior leaders and lead direct teams with clarity and confidence. Expert knowledge of protective security, with the ability to drive innovation while balancing security requirements with service delivery and transformation needs. Strong ability to integrate external threat intelligence, organisational context and situational awareness to build a holistic threat picture, including the effective use of threat models and clear communication to stakeholders. Ability to provide strategic oversight and leadership to specialist security functions (e.g., penetration testing, Security Architecture, DevSecOps, product and compliance assurance), including confidently challenging assumptions and driving change. Demonstrable experience managing risk across the full risk lifecycle, communicating risk in clear, actionable terms to enable informed prioritisation and decision making. Significant experience working in large, complex and mission critical programme or enterprise environments. CISSP or similar certification or can demonstrate equivalent skills and experience across those domains. You and your role You'll lead the security design function across Working Age Services, shaping secure, resilient and user centred systems used by millions every day. You'll oversee our security posture, fraud risk frameworks and tooling, ensuring strong controls, informed risk based decisions and clear visibility of vulnerabilities. Working with product teams, subject matter experts and senior leaders, you'll drive consistency in secure design, support the modernisation of our technology landscape, and champion best practice across cyber, fraud and error prevention. This is a hands on leadership role, owning security and fraud standards and ensuring robust, scalable solutions that safeguard our services and the citizens who rely on them. Details. Wages. Perks. Location: You'll join us in one of our brilliant digital hubs in Birmingham, Leeds, Manchester or Newcastle, whichever is most convenient for you. Hybrid Working: We work a hybrid model - you'll spend some time working at home and some time collaborating face to face in a hub. Pay: We offer competitive pay of up to £92,552. Pension: You'll get a brilliant civil service pension with employer contributions worth 28.97%. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Flexible working including flexible hours and flex-friendly policies Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Sports and social activities Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable so our application and selection process is just two stages: Apply: complete your application on Civil Service Jobs. There'll be full instructions when you click through. Interview: a single stage interview online. CLICK APPLY for more information and to start your application.
Security Architect (AppSec Greenfield) London / WFH to £120k Do you have expertise with securing modern, cloud based systems? You could be progressing your career in a senior, hands-on role leadership role at a fast growing, global Insurance Underwriting technology provider that focusses on developing a complex SaaS calculation platform for rapidly growing Cyber Security insurance markets. What's in it for you: Salary to £120k + bonus 25 days holiday Private Medical Insurance (including dental and optical cashback) Life Insurance, Income Protection Pension Subsidised gym membership X4 paid volunteering days per year Season ticket loan Employee Assistance Programme Impactful role with great career progression Your role: As the Security Architect you'll partner with the CISO as the company embarks on a major transformation of its core platforms and systems, you'll ensure these changes are secure, resilient and compliant. This is a greenfield role where you will lead the design and review of secure architecture across strategic change projects; define and implement security standards across the full software development lifecycle; develop API security standards and secure integration patterns and conduct threat modelling and risk assessments for new technology implementations. Location / WFH: There's a hybrid work from home model with three days a week in the high spec London, City office with rooftop bar. About you: You have an in depth knowledge of application security and secure software development You have experience of conducting threat modelling, security risk assessments and architecture reviews You're collaborative and pragmatic with great communication skills Apply now to find out more about this Security Architect opportunity. At Client Server we believe in a diverse workplace that allows people to play to their strengths and continually learn. We're an equal opportunities employer whose people come from all walks of life and will never discriminate based on race, colour, religion, sex, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. The clients we work with share our values.
12/03/2026
Full time
Security Architect (AppSec Greenfield) London / WFH to £120k Do you have expertise with securing modern, cloud based systems? You could be progressing your career in a senior, hands-on role leadership role at a fast growing, global Insurance Underwriting technology provider that focusses on developing a complex SaaS calculation platform for rapidly growing Cyber Security insurance markets. What's in it for you: Salary to £120k + bonus 25 days holiday Private Medical Insurance (including dental and optical cashback) Life Insurance, Income Protection Pension Subsidised gym membership X4 paid volunteering days per year Season ticket loan Employee Assistance Programme Impactful role with great career progression Your role: As the Security Architect you'll partner with the CISO as the company embarks on a major transformation of its core platforms and systems, you'll ensure these changes are secure, resilient and compliant. This is a greenfield role where you will lead the design and review of secure architecture across strategic change projects; define and implement security standards across the full software development lifecycle; develop API security standards and secure integration patterns and conduct threat modelling and risk assessments for new technology implementations. Location / WFH: There's a hybrid work from home model with three days a week in the high spec London, City office with rooftop bar. About you: You have an in depth knowledge of application security and secure software development You have experience of conducting threat modelling, security risk assessments and architecture reviews You're collaborative and pragmatic with great communication skills Apply now to find out more about this Security Architect opportunity. At Client Server we believe in a diverse workplace that allows people to play to their strengths and continually learn. We're an equal opportunities employer whose people come from all walks of life and will never discriminate based on race, colour, religion, sex, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. The clients we work with share our values.
Job Title: Principal AI/LLM Engineer Job Location: Rochester, Kent. Onsite Salary: Circa £75,000 depending on experience and skills Who we are: Join BAE Systems and you'll be part of something bigger. As a valued member of our global colleague network, you'll bring your unique skills and perspectives to help pioneer progress and protect what matters most. You'll be trusted to play your part in delivering the advanced, technology-led defence, aerospace and security solutions of tomorrow - shaping a safer future, for all of us. What you'll be doing: Architecture & Design Authority - Define / maintain the reference architecture for the BAE ES UK AI/LLM infrastructure across on-prem GPU clusters, virtualized environments. Experience in Engineering & Deployment - Deploy and maintain LLM inference, Implement RAG pipelines, Build CI/CD for AI models, Optimisation & Monitoring of the AI stack. Security, Compliance & Governance - Work closely with IT Security, Data Governance, and Architecture Boards to ensure compliance with GDPR, BAE Global Cyber Security Standards, SOC2, ISO27001, HIPAA (if applicable). Mentoring other staff members. Presenting to senior leadership Te am. Core D uties: Proven experi ence d eploying AI/ML platforms in enterprise/on-prem environments Deep knowledge of Kubernetes, Docker, and infrastructure automation (Terraform, Helm, Ansible) Good experience with LLM frameworks (Hugging Face, vLLM, DeepSpeed, LangChain, Ray) Familiarity with message queues, API gateways, and service meshes for scalable inference environments Proven progra mming skills in Python; comfortable with concepts such as Bash, YAML, and CI pipelines The Electronic Systems IT team: BAE Systems, Electronic Systems IT (UK) based in Rochester have a strategic objective to rapidly expanding our use of AI over the coming years. To assist with this objective, we require a Principal AI/LLM Engineer to join our IT department. The Principal AI/LLM Engineer will serve as both a implementer and technical authority for our AI infrastructure. You will architect, deploy, tune, and monitor our Large Language Model (LLM) and AI stack across primarily on-premise environments with selective cloud integrations. This role spans MLOps and platform engineering, and implements AI governance, ensuring our AI capabilities are secure, performant, compliant, and aligned to long-term enterprise strategy. Why BAE Systems? Here you'll build a career with purpose and limitless possibilities. With lifelong learning and meaningful work - this is a place where you can grow your career with confidence an d be empow ered to be your best. You'll be recognised for your contribution and enjoy rewards tailored to what's most important to you and your family - support for your financial and personal wellbeing, as well as a balanced lifestyle. In an environment embracing sustainable ways of working and with a strong sense of sha red purpose, our supportive culture is a place you can feel you belong and proud of the difference you make. A place where everyone can thrive: We're committed to building an inclusive workplace where everyone feels valued and supported. We know that a diversity of backgrounds, perspectives and experiences strengthens our teams and is vital to the work we do. Please be aware that many roles at BAE Systems are subject to both security and export control restr ictions . These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are elig ible to perform within the organisation. All applicants mu st as a mi n imum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants mu st typical l y ha ve 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow fo r meaningful security vetting checks. Closing Date: 23rd March 2026 We reserve the right to close this vacancy early if we receive sufficient applications for the role. The refore, if you are interested, please submit your application as early as possible.
12/03/2026
Full time
Job Title: Principal AI/LLM Engineer Job Location: Rochester, Kent. Onsite Salary: Circa £75,000 depending on experience and skills Who we are: Join BAE Systems and you'll be part of something bigger. As a valued member of our global colleague network, you'll bring your unique skills and perspectives to help pioneer progress and protect what matters most. You'll be trusted to play your part in delivering the advanced, technology-led defence, aerospace and security solutions of tomorrow - shaping a safer future, for all of us. What you'll be doing: Architecture & Design Authority - Define / maintain the reference architecture for the BAE ES UK AI/LLM infrastructure across on-prem GPU clusters, virtualized environments. Experience in Engineering & Deployment - Deploy and maintain LLM inference, Implement RAG pipelines, Build CI/CD for AI models, Optimisation & Monitoring of the AI stack. Security, Compliance & Governance - Work closely with IT Security, Data Governance, and Architecture Boards to ensure compliance with GDPR, BAE Global Cyber Security Standards, SOC2, ISO27001, HIPAA (if applicable). Mentoring other staff members. Presenting to senior leadership Te am. Core D uties: Proven experi ence d eploying AI/ML platforms in enterprise/on-prem environments Deep knowledge of Kubernetes, Docker, and infrastructure automation (Terraform, Helm, Ansible) Good experience with LLM frameworks (Hugging Face, vLLM, DeepSpeed, LangChain, Ray) Familiarity with message queues, API gateways, and service meshes for scalable inference environments Proven progra mming skills in Python; comfortable with concepts such as Bash, YAML, and CI pipelines The Electronic Systems IT team: BAE Systems, Electronic Systems IT (UK) based in Rochester have a strategic objective to rapidly expanding our use of AI over the coming years. To assist with this objective, we require a Principal AI/LLM Engineer to join our IT department. The Principal AI/LLM Engineer will serve as both a implementer and technical authority for our AI infrastructure. You will architect, deploy, tune, and monitor our Large Language Model (LLM) and AI stack across primarily on-premise environments with selective cloud integrations. This role spans MLOps and platform engineering, and implements AI governance, ensuring our AI capabilities are secure, performant, compliant, and aligned to long-term enterprise strategy. Why BAE Systems? Here you'll build a career with purpose and limitless possibilities. With lifelong learning and meaningful work - this is a place where you can grow your career with confidence an d be empow ered to be your best. You'll be recognised for your contribution and enjoy rewards tailored to what's most important to you and your family - support for your financial and personal wellbeing, as well as a balanced lifestyle. In an environment embracing sustainable ways of working and with a strong sense of sha red purpose, our supportive culture is a place you can feel you belong and proud of the difference you make. A place where everyone can thrive: We're committed to building an inclusive workplace where everyone feels valued and supported. We know that a diversity of backgrounds, perspectives and experiences strengthens our teams and is vital to the work we do. Please be aware that many roles at BAE Systems are subject to both security and export control restr ictions . These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are elig ible to perform within the organisation. All applicants mu st as a mi n imum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants mu st typical l y ha ve 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow fo r meaningful security vetting checks. Closing Date: 23rd March 2026 We reserve the right to close this vacancy early if we receive sufficient applications for the role. The refore, if you are interested, please submit your application as early as possible.
Job Title: Principal AI/LLM Engineer Job Location: Rochester, Kent. Onsite Salary: Circa £75,000 depending on experience and skills Who we are: Join BAE Systems and you'll be part of something bigger. As a valued member of our global colleague network, you'll bring your unique skills and perspectives to help pioneer progress and protect what matters most. You'll be trusted to play your part in delivering the advanced, technology-led defence, aerospace and security solutions of tomorrow - shaping a safer future, for all of us. What you'll be doing: Architecture & Design Authority - Define / maintain the reference architecture for the BAE ES UK AI/LLM infrastructure across on-prem GPU clusters, virtualized environments. Experience in Engineering & Deployment - Deploy and maintain LLM inference, Implement RAG pipelines, Build CI/CD for AI models, Optimisation & Monitoring of the AI stack. Security, Compliance & Governance - Work closely with IT Security, Data Governance, and Architecture Boards to ensure compliance with GDPR, BAE Global Cyber Security Standards, SOC2, ISO27001, HIPAA (if applicable). Mentoring other staff members. Presenting to senior leadership Te am. Core D uties: Proven experi ence d eploying AI/ML platforms in enterprise/on-prem environments Deep knowledge of Kubernetes, Docker, and infrastructure automation (Terraform, Helm, Ansible) Good experience with LLM frameworks (Hugging Face, vLLM, DeepSpeed, LangChain, Ray) Familiarity with message queues, API gateways, and service meshes for scalable inference environments Proven progra mming skills in Python; comfortable with concepts such as Bash, YAML, and CI pipelines The Electronic Systems IT team: BAE Systems, Electronic Systems IT (UK) based in Rochester have a strategic objective to rapidly expanding our use of AI over the coming years. To assist with this objective, we require a Principal AI/LLM Engineer to join our IT department. The Principal AI/LLM Engineer will serve as both a implementer and technical authority for our AI infrastructure. You will architect, deploy, tune, and monitor our Large Language Model (LLM) and AI stack across primarily on-premise environments with selective cloud integrations. This role spans MLOps and platform engineering, and implements AI governance, ensuring our AI capabilities are secure, performant, compliant, and aligned to long-term enterprise strategy. Why BAE Systems? Here you'll build a career with purpose and limitless possibilities. With lifelong learning and meaningful work - this is a place where you can grow your career with confidence an d be empow ered to be your best. You'll be recognised for your contribution and enjoy rewards tailored to what's most important to you and your family - support for your financial and personal wellbeing, as well as a balanced lifestyle. In an environment embracing sustainable ways of working and with a strong sense of sha red purpose, our supportive culture is a place you can feel you belong and proud of the difference you make. A place where everyone can thrive: We're committed to building an inclusive workplace where everyone feels valued and supported. We know that a diversity of backgrounds, perspectives and experiences strengthens our teams and is vital to the work we do. Please be aware that many roles at BAE Systems are subject to both security and export control restr ictions . These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are elig ible to perform within the organisation. All applicants mu st as a mi n imum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants mu st typical l y ha ve 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow fo r meaningful security vetting checks. Closing Date: 23rd March 2026 We reserve the right to close this vacancy early if we receive sufficient applications for the role. The refore, if you are interested, please submit your application as early as possible.
12/03/2026
Full time
Job Title: Principal AI/LLM Engineer Job Location: Rochester, Kent. Onsite Salary: Circa £75,000 depending on experience and skills Who we are: Join BAE Systems and you'll be part of something bigger. As a valued member of our global colleague network, you'll bring your unique skills and perspectives to help pioneer progress and protect what matters most. You'll be trusted to play your part in delivering the advanced, technology-led defence, aerospace and security solutions of tomorrow - shaping a safer future, for all of us. What you'll be doing: Architecture & Design Authority - Define / maintain the reference architecture for the BAE ES UK AI/LLM infrastructure across on-prem GPU clusters, virtualized environments. Experience in Engineering & Deployment - Deploy and maintain LLM inference, Implement RAG pipelines, Build CI/CD for AI models, Optimisation & Monitoring of the AI stack. Security, Compliance & Governance - Work closely with IT Security, Data Governance, and Architecture Boards to ensure compliance with GDPR, BAE Global Cyber Security Standards, SOC2, ISO27001, HIPAA (if applicable). Mentoring other staff members. Presenting to senior leadership Te am. Core D uties: Proven experi ence d eploying AI/ML platforms in enterprise/on-prem environments Deep knowledge of Kubernetes, Docker, and infrastructure automation (Terraform, Helm, Ansible) Good experience with LLM frameworks (Hugging Face, vLLM, DeepSpeed, LangChain, Ray) Familiarity with message queues, API gateways, and service meshes for scalable inference environments Proven progra mming skills in Python; comfortable with concepts such as Bash, YAML, and CI pipelines The Electronic Systems IT team: BAE Systems, Electronic Systems IT (UK) based in Rochester have a strategic objective to rapidly expanding our use of AI over the coming years. To assist with this objective, we require a Principal AI/LLM Engineer to join our IT department. The Principal AI/LLM Engineer will serve as both a implementer and technical authority for our AI infrastructure. You will architect, deploy, tune, and monitor our Large Language Model (LLM) and AI stack across primarily on-premise environments with selective cloud integrations. This role spans MLOps and platform engineering, and implements AI governance, ensuring our AI capabilities are secure, performant, compliant, and aligned to long-term enterprise strategy. Why BAE Systems? Here you'll build a career with purpose and limitless possibilities. With lifelong learning and meaningful work - this is a place where you can grow your career with confidence an d be empow ered to be your best. You'll be recognised for your contribution and enjoy rewards tailored to what's most important to you and your family - support for your financial and personal wellbeing, as well as a balanced lifestyle. In an environment embracing sustainable ways of working and with a strong sense of sha red purpose, our supportive culture is a place you can feel you belong and proud of the difference you make. A place where everyone can thrive: We're committed to building an inclusive workplace where everyone feels valued and supported. We know that a diversity of backgrounds, perspectives and experiences strengthens our teams and is vital to the work we do. Please be aware that many roles at BAE Systems are subject to both security and export control restr ictions . These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are elig ible to perform within the organisation. All applicants mu st as a mi n imum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants mu st typical l y ha ve 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow fo r meaningful security vetting checks. Closing Date: 23rd March 2026 We reserve the right to close this vacancy early if we receive sufficient applications for the role. The refore, if you are interested, please submit your application as early as possible.
A career without limits As the nation's flag carrier, we take great pride in connecting Britain with the world and the world with Britain. It's something we've been doing for over 100 years, ever since we launched the world's first international scheduled air service between London and Paris. This originality has been in our blood since day one. It's the spirit we share with the people that fly with us, our partners, and our colleagues. So, whether you are a reassuring voice on the end of a phone, a smile at the door, under a wing keeping the turbines spinning or landing us gently in far flung places, a job at British Airways is yours to make. We know great things can happen when you're inspired to think big and bring your ambition to work every day, which is why, at British Airways, the sky is never the limit. The role Cyber Delivery Assurance Lead As Cyber Delivery Assurance Lead, you'll act as the British Airways cyber representative embedded within product delivery teams, ensuring cyber risk is actively managed and security controls are designed, implemented and operating effectively across programmes and products. This is a hands on cyber assurance role. You'll be expected to bring strong practical experience of applying cyber security controls, assessing real systems and architectures, and working directly with delivery teams to embed security by design - not simply reviewing documentation or providing high level guidance. Reporting to the Head of Cyber & IT Risk, you'll work closely with BA Tech Delivery teams, the BA Cyber Team and the IAG Cyber Security Office to ensure solutions meet BA's risk appetite and regulatory obligations. What you'll do Provide delivery assurance to ensure programmes and products operate within BA's cyber risk appetite Work hands on with delivery teams to embed security by design and ensure appropriate cyber controls are implemented and operating effectively Interpret and apply cyber security policies, standards and guidelines across product releases and ongoing maintenance Conduct threat and risk assessments across varied technology stacks and define proportionate mitigating controls Provide authoritative advice on the practical application of security controls, legislation and regulatory requirements Act as the cyber point of contact for programmes and products, supporting secure delivery end to end Engage proactively with the IAG Cyber Security Office assurance and architecture functions to ensure consistency and best practice Identify, manage and report cyber risks and exceptions throughout the product lifecycle Support cyber governance forums and provide clear, accurate updates on security deliverables Promote cyber risk awareness and support security awareness initiatives across the organisation What you'll bring to British Airways Strong hands on cyber security experience, with the ability to assess real systems and influence secure design and delivery decisions Broad technical understanding of cyber security controls across multiple technology domains Confidence working directly with engineers, architects and delivery teams to resolve security issues pragmatically Ability to balance standards compliance with practical delivery constraints Excellent stakeholder management skills, with experience influencing at senior levels Calm, resilient approach in fast paced and changing environments Clear, positive communicator who can explain cyber risk and controls effectively Your experience Proven experience providing cyber security assurance or secure delivery support in complex environments Demonstrable experience performing threat and risk assessments and defining mitigating controls Experience working in regulated environments with strong cyber and compliance requirements Knowledge of cyber security frameworks and regulatory requirements such as NIST, PCI DSS, GDPR and NIS Experience in agile delivery environments is advantageous Relevant cyber security qualifications (e.g. CISSP, ISO27001 Lead Implementer, SANS GIAC or equivalent) desirable What we offer We believe that all the people who work with us should feel valued for the part they play. It's one of the reasons our rewards go far beyond a competitive salary. From the day you join us, you'll get access to brilliant staff travel benefits including unlimited basic and premium standby tickets on British Airways flights. You'll also receive up to 30 discounted 'Hotline' airfares per year for yourself, friends, and family. At British Airways you'll have the chance to take on new challenges and move forward in a way that feels right for you. We encourage all those who work for us to consider opportunities right across our business to help you develop and progress. We never stand still, and we don't expect our people to either. Inclusion & Diversity At British Airways we all have a part to play in creating an inclusive place to work. Diverse representation among our people is really important to us and we recognise that all our colleagues are uniquely different and bring their own originality, creativity and identity to work. Inclusion and diversity is a key driver of innovation and we're committed to creating a culture where everyone feels that they can be themselves. We're looking for people from all backgrounds and cultures to join us and be a part of our journey to become a Better BA as we continue to connect Britain with the world and the world with Britain.
12/03/2026
Full time
A career without limits As the nation's flag carrier, we take great pride in connecting Britain with the world and the world with Britain. It's something we've been doing for over 100 years, ever since we launched the world's first international scheduled air service between London and Paris. This originality has been in our blood since day one. It's the spirit we share with the people that fly with us, our partners, and our colleagues. So, whether you are a reassuring voice on the end of a phone, a smile at the door, under a wing keeping the turbines spinning or landing us gently in far flung places, a job at British Airways is yours to make. We know great things can happen when you're inspired to think big and bring your ambition to work every day, which is why, at British Airways, the sky is never the limit. The role Cyber Delivery Assurance Lead As Cyber Delivery Assurance Lead, you'll act as the British Airways cyber representative embedded within product delivery teams, ensuring cyber risk is actively managed and security controls are designed, implemented and operating effectively across programmes and products. This is a hands on cyber assurance role. You'll be expected to bring strong practical experience of applying cyber security controls, assessing real systems and architectures, and working directly with delivery teams to embed security by design - not simply reviewing documentation or providing high level guidance. Reporting to the Head of Cyber & IT Risk, you'll work closely with BA Tech Delivery teams, the BA Cyber Team and the IAG Cyber Security Office to ensure solutions meet BA's risk appetite and regulatory obligations. What you'll do Provide delivery assurance to ensure programmes and products operate within BA's cyber risk appetite Work hands on with delivery teams to embed security by design and ensure appropriate cyber controls are implemented and operating effectively Interpret and apply cyber security policies, standards and guidelines across product releases and ongoing maintenance Conduct threat and risk assessments across varied technology stacks and define proportionate mitigating controls Provide authoritative advice on the practical application of security controls, legislation and regulatory requirements Act as the cyber point of contact for programmes and products, supporting secure delivery end to end Engage proactively with the IAG Cyber Security Office assurance and architecture functions to ensure consistency and best practice Identify, manage and report cyber risks and exceptions throughout the product lifecycle Support cyber governance forums and provide clear, accurate updates on security deliverables Promote cyber risk awareness and support security awareness initiatives across the organisation What you'll bring to British Airways Strong hands on cyber security experience, with the ability to assess real systems and influence secure design and delivery decisions Broad technical understanding of cyber security controls across multiple technology domains Confidence working directly with engineers, architects and delivery teams to resolve security issues pragmatically Ability to balance standards compliance with practical delivery constraints Excellent stakeholder management skills, with experience influencing at senior levels Calm, resilient approach in fast paced and changing environments Clear, positive communicator who can explain cyber risk and controls effectively Your experience Proven experience providing cyber security assurance or secure delivery support in complex environments Demonstrable experience performing threat and risk assessments and defining mitigating controls Experience working in regulated environments with strong cyber and compliance requirements Knowledge of cyber security frameworks and regulatory requirements such as NIST, PCI DSS, GDPR and NIS Experience in agile delivery environments is advantageous Relevant cyber security qualifications (e.g. CISSP, ISO27001 Lead Implementer, SANS GIAC or equivalent) desirable What we offer We believe that all the people who work with us should feel valued for the part they play. It's one of the reasons our rewards go far beyond a competitive salary. From the day you join us, you'll get access to brilliant staff travel benefits including unlimited basic and premium standby tickets on British Airways flights. You'll also receive up to 30 discounted 'Hotline' airfares per year for yourself, friends, and family. At British Airways you'll have the chance to take on new challenges and move forward in a way that feels right for you. We encourage all those who work for us to consider opportunities right across our business to help you develop and progress. We never stand still, and we don't expect our people to either. Inclusion & Diversity At British Airways we all have a part to play in creating an inclusive place to work. Diverse representation among our people is really important to us and we recognise that all our colleagues are uniquely different and bring their own originality, creativity and identity to work. Inclusion and diversity is a key driver of innovation and we're committed to creating a culture where everyone feels that they can be themselves. We're looking for people from all backgrounds and cultures to join us and be a part of our journey to become a Better BA as we continue to connect Britain with the world and the world with Britain.
DWP. Digital with Purpose. Join DWP as a Lead Security Architect and shape the secure design of large scale digital services, lead innovation in security tech, and drive strategic security initiatives that protect millions across the UK. We're using fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? Security Architecture design and modelling techniques, patterns, tools and standards. Presenting architecture design to technical governance forums. Shaping and supporting technology initiatives, projects, programmes and portfolios. Technical authoring skills, particularly for the production of technical design and specification documents. Being the security lead in technical governance forums. Mandatory Criteria/Qualifications CISSP (Certified Information Systems Security Professional) or a Master's in Cyber Security. SC Clearance. You and your role As a Lead Security Architect at DWP, you will shape and govern the security architecture behind some of the largest digital transformation programmes in Europe. You'll work across high complexity services, setting long term security strategy, defining architectural principles, and guiding senior stakeholders to make secure, informed decisions that protect our systems and millions of users. You'll take the lead in designing secure, scalable solutions across a wide range of digital services. This includes providing expert guidance, producing high quality technical documentation, and contributing to key governance forums to ensure all solutions remain aligned with secure by design standards and organisational goals. The role also places you at the forefront of innovation-researching emerging technologies, solving complex security challenges, and sharing best practice across the profession. Your expertise will play a crucial part in ensuring DWP delivers modern, resilient and user focused digital services for people across the UK. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £99,836. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £21,735 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket. Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview 1: Delivery of a 10-minute presentation. Interview 2: Assessment of Behaviours and Technical Skills CLICK APPLY for more information and to start your application
12/03/2026
Full time
DWP. Digital with Purpose. Join DWP as a Lead Security Architect and shape the secure design of large scale digital services, lead innovation in security tech, and drive strategic security initiatives that protect millions across the UK. We're using fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? Security Architecture design and modelling techniques, patterns, tools and standards. Presenting architecture design to technical governance forums. Shaping and supporting technology initiatives, projects, programmes and portfolios. Technical authoring skills, particularly for the production of technical design and specification documents. Being the security lead in technical governance forums. Mandatory Criteria/Qualifications CISSP (Certified Information Systems Security Professional) or a Master's in Cyber Security. SC Clearance. You and your role As a Lead Security Architect at DWP, you will shape and govern the security architecture behind some of the largest digital transformation programmes in Europe. You'll work across high complexity services, setting long term security strategy, defining architectural principles, and guiding senior stakeholders to make secure, informed decisions that protect our systems and millions of users. You'll take the lead in designing secure, scalable solutions across a wide range of digital services. This includes providing expert guidance, producing high quality technical documentation, and contributing to key governance forums to ensure all solutions remain aligned with secure by design standards and organisational goals. The role also places you at the forefront of innovation-researching emerging technologies, solving complex security challenges, and sharing best practice across the profession. Your expertise will play a crucial part in ensuring DWP delivers modern, resilient and user focused digital services for people across the UK. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £99,836. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £21,735 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket. Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview 1: Delivery of a 10-minute presentation. Interview 2: Assessment of Behaviours and Technical Skills CLICK APPLY for more information and to start your application
