Cyber Security Architect

The Principal Security Architect will orchestrate the design and deployment of comprehensive security architectures across cloud platforms, microservices, and enterprise systems within the consumer business. They will drive the development and execution of the consumer security strategy, ensuring the implementation of technology roadmaps that improve and safeguard the company's overall security posture.

This role requires a deep understanding of cloud-native security, application security, data security, and enterprise security technologies. You will work closely with developers, security engineers, and DevSecOps teams to integrate security into the entire software development lifecycle and enterprise infrastructure.

Key Responsibilities:

• Develop and maintain comprehensive security architecture documentation aligned with business goals, enterprise target architecture, and industry standards.
• Design and implement security frameworks for cloud-native environments, ensuring secure deployment on platforms like GCP and AWS (GCP Preferred), and integrating security into CI/CD pipelines and microservices.
• Lead the Security Architecture Review Board and promote secure coding practices, ensuring security is embedded, maintained, and thoroughly documented. Build, maintain, and standardize security architecture artifacts, including standards, patterns, and procedures for consistent implementation.
• Define and implement security standards for data protection, IAM, encryption, network security, and regulatory compliance (GDPR, PCI DSS).
• Collaborate across teams to integrate security controls, handle threat modelling, and address risks related to application, API, and cloud security.
• Lead threat modelling exercises and define security controls that address application security risks (e.g., OWASP Top 10, API security) and cloud security standard methodologies.
• Provide strategic mentorship on security tools and enterprise technologies, advising on secure architecture patterns, cloud automation, and evolving security threats.
• Own the evaluation of security tools and recommend technologies for intrusion detection and prevention, security monitoring, web application firewalls (WAF), and data encryption, among others.
• Lead the evaluation of security tools and recommend technologies for intrusion detection and prevention, security monitoring, web application firewalls (WAF), and data encryption, among others.

The UK’s fastest broadband network. The nation’s best-loved mobile brand. And, one of the UK's biggest companies too.

Diverse, high performing teams - jam packed with serious talent. Together, we offer the UK more choice and better value, through our boundary-pushing, customer-championing values and ambitions.

Together, we are Virgin Media O2, and we can't wait to see what you can do.

In order to be considered, you must have the following experience;

• Excellent leadership and communication skills, with the ability to collaborate across teams, drive and influence security decisions.
• Experience on producing solution-oriented security documentation that fosters collaboration and drives consensus among stakeholders
• Extensive experience in security architecture or a related role, with expertise in cloud platforms (GCP preferred) and enterprise security.
• Strong knowledge of cloud-native security principles, including identity management, encryption, and network security.
• Proven experience architecting security solutions in microservice-based architectures and containerized environments (e.g., Kubernetes).
• Expertise in application security, including secure software development practices, API security, and addressing common vulnerabilities (OWASP Top 10).

We'd also love you to bring;

• Experience with designing and handling large scale distributed systems in the cloud with clear security boundaries.
• Hands-on experience with GCP security services (IAM, VPC, Cloud KMS, Cloud Armor) and other cloud-native security tools.
• Solid understanding of data security practices, including encryption, access control, and key management.
• Experience in threat modelling, risk assessment, and defining security controls to mitigate risks in digital products and services.