Information Security Architect

Job Title: Information Security Architect - Solutions & Enterprise Security Architecture Location: Manchester Hybrid Working: 50% Remote / 50% Office Leading Financial Services / FinTech are seeking a highly technical and broad Information Security Architect to join their security architecture team. This is a key position responsible for ensuring that the design, delivery, and operation of systems and services meet the highest security architecture and compliance standards. Information Security Architect will provide architectural leadership across multiple security domains — combining deep hands-on technical security expertise with strategic enterprise security architecture thinking. You will play a critical role in embedding security throughout the technology landscape, from solution-level security reviews to security solutions and enterprise-wide security architecture standards. This role requires a balance of security solution architecture, technical review and assurance, and enterprise security architecture skills. You will define and validate security controls, assess new technologies, perform security design reviews, and ensure security-by-design principles are consistently applied across hybrid, on-premise, and cloud environments. Key Responsibilities Serve as the subject matter expert for security architecture and solutions design, ensuring the confidentiality, integrity, and availability of corporate systems and data. Define, design, and implement enterprise-grade security controls and reference architectures, aligned with frameworks such as NIST, ISO27001, and CIS. Conduct security design and architecture reviews for technology projects, integrations, and third-party solutions. Lead security assurance for cloud transformation initiatives, promoting best practices such as zero trust and secure cloud-native architectures. Collaborate with Solution Architects, Infrastructure, DevOps, and Development teams to integrate security across the software development and deployment lifecycle (SSDLC). Perform internal and third-party security assessments, risk evaluations, and due diligence reviews. Contribute to the development and continual improvement of enterprise security architecture frameworks, policies, and standards. Advise senior stakeholders on emerging threats, technologies, and appropriate control strategies. Technical Skills & Experience Proven experience designing and implementing enterprise and solution-level security architectures in hybrid and cloud (AWS/Azure) environments. Strong hands-on expertise with enterprise security platforms – including Endpoint Protection, Cloud Security, Network Security, DevSecOps, SIEM/SOAR, and vulnerability management. Deep understanding of secure design principles, IAM, encryption, API security, and application security. Experience performing threat modelling, security risk assessments, and control design validation. In-depth knowledge of industry standards and frameworks (ISO27001, NIST CSF, PCI DSS, CIS Controls). Minimum of 5 years' experience in information security roles, ideally within financial services or large-scale digital environments. Professional certifications such as CISSP, SABSA, CCSP, or TOGAF (security specialisation) are highly desirable. You'll be part of a forward-thinking technology and security team where your expertise will directly influence the organisation's security posture. Our client offers a hybrid working model, opportunities for professional growth, and the chance to design and implement secure, scalable enterprise solutions that make a tangible impact. Apply now and shape the future of secure architecture.