Skip to content

General information

Posting ID
PSR1JP00104117
Type of employment
Contract
Organisation
Ministry of Defence
Contract duration
3 Months
Location
London
Workplace Type
Hybrid

Description & Requirements

On behalf of MOD, we are looking for a Lead Security Architect (INSIDE IR35) for a 3 month contract based Hybrid with occasional travel to Corsham/London.

SC Clearance is an essential requirement for this role, as a minimum you must be willing & eligible to undergo checks. Please note, due to the exceptional requirements of this position (short-term nature of this role and speed at which we require a postholder in situ) preference may be given to candidates who meet all of the essential criteria and hold active security clearance. 

The Ministry of Defence (MOD) is a central government department with a mission to protect our country and provide the ultimate guarantee of its security and independence, as well as helping to protect its values and interests abroad.

The MOD is one of the biggest public procurement organisations in Europe and the single largest customer for UK industry. It currently manages approximately £20 billion of spend on capital investments in equipment and infrastructure every year. Over the next decade the MOD is committed to spending over £190 billion on equipment and support. The MOD’s customers include both the armed forces and national security agencies, and it has a diverse range of requirements, including military fighting vehicles, education services, nuclear submarines and facilities management.

The MOD’s aim is to provide its armed forces with the best capabilities to enable them to protect the UK’s security and advance national interests, both now and in the long term.

To do this the MOD has an annual budget of almost £53 billion and a workforce comprising 197,000 people. of which 54,000 are civilians working for the UK MOD.

The work really matters; the MOD offers a range of engaging roles which have a direct impact on the quality of services they provide, in many locations across the UK. We support teams working in HR, Primary Health Care, Corporate Services, and many others.

A Lead Security Architect is responsible for driving the secure design and development of solutions for one or more major business sectors within the department. They lead the security engagement for all projects within their portfolio ensuring that the department’s security design standards are adhered to.

As a Lead Security Architect, you will provide an ‘out-reach’ service to your business areas to advise on security requirements and solutions to enable technical teams to make security decisions, ensuring the effective use of common tools and products. 

You will collaborate with peers both within and outside of your Portfolios to identify new opportunities for exploiting emerging technologies and support the development of architectures, patterns and approaches to support their safe use in accordance with the department’s risk appetites.

 As a Lead Security Architect, your main responsibilities will be:

  • Coordinate engagement with key security assurance stakeholders, including J3, Digital Enterprise Authority Board (DEAB),  Digital Enterprise Operating Authority Cyber Compliance (DEOA CC) and other relevant assurance bodies, to support the maintenance of D2S CAtO and associated assurance obligations.
  • Maintain and update the D2S Cyber Activity and Assurance Tracker (CAAT), ensuring assurance evidence remains current in response to service change, emerging threats, control updates and changes to the operational environment.
  • Work with Security Risk Managers and service teams to ensure security risk assessments, risk treatment activity and assurance documentation remain consistent, current and aligned to the D2S risk position.
  • Support the transition of D2S security assurance documentation from JSP 604 to JSP 453 / Secure by Design, including mapping legacy artefacts to the current policy framework, identifying evidence gaps and supporting remediation activity.
  • Provide security assurance advice and guidance to D2S management, delivery and engineering teams, helping ensure Secure by Design principles, relevant JSP 453 requirements and agreed assurance controls are understood and applied.
  • Provide assurance guidance and governance for application teams progressing through the D2S path-to-production process, ensuring proposed deliveries remain within the scope of D2S CAtO and are aligned with JSP 453, Secure by Design and applicable D2S security requirements.
  • Support preparation for assurance reviews, audits and governance forums, ensuring relevant evidence, actions, risks, decisions and dependencies are recorded, tracked and available for review.

Essential:

  • Deep cyber security experience in at least two security domains                   
  • Design and publication of enterprise or solution architecture patterns and templates
  • Driving and managing security implications of transformation          
  • Communicating technical security matters to key stakeholders in a non-technical way

 

Please be aware that this role can only be worked within the UK and not Overseas.

Disability Confident 

As a member of the Disability Confident Scheme, MOD guarantees to interview all candidates who have a disability and who meet all the essential criteria for the vacancy. In cases where we have a high volume of candidates who have a disability who meet all the essential criteria, we will interview the best candidates from within that group.

This scheme encourages candidates with a disability and/or neurodivergence to apply. In exceptional circumstances, we may also need to apply the desirable criteria in our shortlisting process which may include holding active security clearance.

Armed Forces Covenant 

MOD guarantees to interview veterans or spouses / partners of military personnel who meet all the essential criteria for the vacancy. In cases where we have a high volume of ex-military candidates / military spouses or partners, who meet all of the essential criteria, we will interview the best candidates from within that group. In exceptional circumstances, we may also need to apply the desirable criteria in our shortlisting process which may include holding active security clearance.

In applying for this role, you acknowledge the following "this role falls in scope of the Off Payroll Working in the Public Sector legislation. Any rates of payment quoted will reflect the gross rate per day for the assignment and will be subject to appropriate taxes and statutory costs. As such the payment to the intermediary and your income resulting from this contract will be different".