Job Description

Posted 39 minutes ago

Security Architect – CAF – SC Cleared 

We are seeking a Security Architect to lead the design and implementation of security controls for the rollout of Cloud Adoption Framework (CAF) compliance activities within an AWS-based software development programme. The role will ensure alignment with GDS Service Manual principles, delivering secure, resilient solutions across PAWS (Privileged Access Workstations), SOC integration, and device security.

Essential Skills & Experience

Active SC Clearance 
Proven experience as a Security Architect in cloud environments (AWS preferred).
Strong understanding of UK Government CAF, GDS Service Manual, and related assurance frameworks.
Expertise in AWS security services (IAM, KMS, GuardDuty, Security Hub, etc.) and MS Azure Entra ID.
Experience implementing PAWS, SOC integration, and endpoint security controls.
Knowledge of secure software development lifecycle (SSDLC) and DevSecOps practices.
Familiarity with ISO 27001, NCSC guidance, and protective monitoring standards.
Proven experience with Security Architecture frameworks such as SABSA and TOGAF.
Experience in designing systems/products in line with UK Government Security Group  secure-by-design approach/principles.Desirable Skills

AWS Certified Security – Specialty or equivalent.
Experience in public sector or regulated environments.
Knowledge of container security (ECS/EKS) and CI/CD pipeline hardening