Lead and develop the Security Architecture & Assurance team, setting direction, priorities, and operating standards
Ensure high-quality delivery across architecture reviews, assurance activities, and risk assessments
Build capability across cloud security, application security, and assurance methodologies
Act as the escalation point for complex or high-risk security decisions
Define and enforce secure architecture standards, reference patterns, and mandatory security controls
Review and approve security-relevant designs and major technical changes
Embed security throughout delivery lifecycles rather than as a late-stage control gate
Develop and maintain security standards, architecture principles, and governance frameworks
Drive consistent, risk-aware decision-making and remediation tracking
Identify and assess security risks early within design and delivery processes
Provide pragmatic mitigation strategies balancing security, resilience, cost, and delivery priorities

Strong knowledge of Azure, Microsoft 365, Dynamics 365, Microsoft Fabric, Windows, and Linux environments
Experience embedding security into application design and software development lifecycles
Working knowledge of AWS, Bottlerocket, and Istio environments
Strong understanding of federated identity and access management, particularly Okta
Broad understanding of enterprise technologies including networking, databases, and email security gateways
Knowledge of AI security frameworks and the ability to conduct security risk assessments for AI and agentic AI systems
Proven experience leading infrastructure and application penetration testing (ITHC), red teaming, purple teaming, and GBEST-style exercises
Strong threat intelligence experience, including collection, analysis, and application to security architecture improvements
Experience producing security risk assessments aligned to ISO 27005

Head of Security Architecture – Assurance

Key skills