Delivering your business and technology outcomes through expert consultancy and the deployment of Microsoft technology.
Modern Work & Security Transformation Architect
Location
United Kingdom
Posted
1 day ago
Salary
0
Seniority
Senior
Job Description
Modern Work & Security Transformation Architect
CPS
• Design, build and demonstrate Microsoft 365 Modern Work and Security capabilities to prospective clients. • Lead customer workshops, discovery sessions and strategic conversations with stakeholders from technical teams through to executive leadership. • Gather and document business, functional, technical, security, compliance and migration requirements. • Produce current-state assessments, target-state architectures, strategic recommendations, roadmaps, options appraisals and migration strategies. • Create high-quality architecture and solution designs capable of being handed over to multi-disciplinary delivery teams for successful implementation. • Provide technical leadership across large customer programmes, coordinating architecture decisions across productivity, collaboration, security, compliance, identity, endpoint, migration and UC workstreams, and drawing on SMEs for specialist design input where required. • Support technical governance, design assurance, dependency management and risk resolution throughout customer engagements. • Assist in writing compelling proposals, responses to tenders, discovery reports, business cases and statements of work. • Estimate delivery effort and support solution costing activities across complex, multi-phase engagements. • Ensure all customer-facing deliverables meet CPS quality standards. • Promote CPS as a recognised leader in Microsoft Modern Work and Security through blogs, webinars, events, conferences and customer engagements. • Contribute to internal standards, methodologies and reusable assets to improve the consistency and quality of delivery. • Lead the creation, development and evolution of the CPS Modern Work and Security service portfolio. • Define and maintain service propositions covering Microsoft 365 strategy, tenant design, Google Workspace to Microsoft 365 migration, SharePoint, Teams, Exchange Online, OneDrive, Viva, Copilot, Intune, Entra ID, Defender, Purview, UC and adoption programmes, with support from specialist SMEs where appropriate. • Work with the Head of Practice to develop packaged offerings with clearly defined scope, deliverables, commercial models, assumptions, risks and pricing structures. • Work closely with Sales, Marketing and Delivery teams to develop go-to-market strategies and supporting collateral. • Identify emerging Microsoft technologies, market trends and customer requirements, translating them into new service opportunities. • Support pipeline development and business growth through technical sales engagement, opportunity qualification and executive-level solution positioning. • Contribute to strategic partnerships with Microsoft and other technology vendors. • Create repeatable delivery frameworks, migration approaches, architecture patterns and best-practice guidance that improve scalability and profitability across the practice.
Job Requirements
- Specific Role Requirements
- A self-starter, keen to further develop both their personal and the company's knowledge and skillset, with a 'make it happen' attitude.
- Senior-level experience with at least 5 years in Microsoft 365 transformation architecture or delivery roles.
- Experience engaging technical leads, programme sponsors, senior IT leadership and executive stakeholders on client accounts.
- Willingness to travel as required, including occasional overseas assignments.
- Prior consulting, Microsoft partner, or other client-facing transformation environment experience would be advantageous.
- Technical Attributes
- Strong knowledge of Microsoft 365 and the wider Microsoft Cloud, with the breadth to operate confidently across complex customer estates and engage credibly in enterprise architecture discussions.
- Experience shaping and supporting large-scale Microsoft 365 transformation programmes, including Google Workspace to Microsoft 365 migrations across mail, files, collaboration, device management, identity, security and governance.
- Detailed knowledge and practical delivery experience in selected Modern Work technology areas, such as SharePoint, intranets, content services, collaboration platforms, Teams, OneDrive or migration delivery.
- Working knowledge of Microsoft Entra ID, identity architecture, access management, authentication, conditional access, identity governance and hybrid identity dependencies.
- Working knowledge of Microsoft security technologies including Microsoft Defender, Intune, endpoint management, device compliance, security baselines and Zero Trust principles.
- Working knowledge of Microsoft Purview, information protection, data loss prevention, retention, records management, eDiscovery, insider risk and compliance governance.
- Experience contributing to secure, scalable tenant architectures, including target operating models, platform governance, administrative models, lifecycle management and service transition considerations.
- Experience supporting migration delivery, including discovery, data analysis, migration design, pilot planning, cutover strategy, coexistence, rollback planning and post-migration optimisation.
- Broad understanding of Google Workspace services and their Microsoft 365 equivalents, including Gmail, Google Drive, Shared Drives, Google Groups, Google Sites, Google Forms and Google Workspace security models.
- Knowledge of migration tooling and approaches, including tools such as ShareGate, AvePoint Fly, BitTitan MigrationWiz or equivalent enterprise migration platforms.
- Ability to lead and coordinate cross-functional technical teams delivering productivity, collaboration, migration, security, endpoint, compliance and Unified Communications workstreams, with clear escalation to specialist SMEs when required.
- Awareness of the direction of travel of Microsoft Cloud services, including Power Platform, Copilot, Copilot Studio, automation, AI readiness, data readiness and responsible AI governance considerations.
- Awareness of Microsoft Teams Phone, Teams Rooms and Unified Communications architecture, sufficient to provide governance and direction across UC workstreams.
- Knowledge of Azure infrastructure, networking, integration, PKI, security and supporting technologies required to deliver resilient Microsoft cloud architectures.
- Experience in public sector or other regulated environments would be advantageous.
- Personal Attributes
- Strong written and verbal communication skills, with the ability to explain complex technical topics clearly to technical and non-technical audiences.
- Excellent stakeholder management skills and confident facilitation across workshops, service reviews, design discussions and executive-level conversations.
- Able to work effectively as part of a team of specialists while also providing leadership, guidance and mentoring to others.
Benefits
- Current at the time of writing. Subject to change.**
- 9 Day Fortnight (compression of 10 working days into 9 to be able to not work every other Friday)
- PMI with Vitality Health
- Medical Cash Plan with Medicash
- Life Assurance (Death in Service) with YuLife
- Employee Assistance Programme
- 25 days holiday (plus all Public Holidays) – increasing to 26 days after 1 year, to 27 days after 2 years and to 28 days after 5 years
- Your birthday day off
- Access to Costco Membership
- Salary Sacrifice Scheme, applicable to:
- Workplace Pension https://www.nestpensions.org.uk/schemeweb/nest/about-pensions/why-save-with-a-workplace-pension.html
- Employer contribution is currently 5.5% of qualifying salary (above legislated minimum and will increase if we achieve certain business targets)
- Employee contribution is 4% of qualifying salary (legislated minimum but you can elect to increase)
- EV Car Schemes
- Discounted Gym Membership
- Cycle Schemes
- Home & Tech discounts for IKEA and Curry PC World
- Holiday Exchange Scheme: buy up to 10 additional day per year and sell up to 5.
- In addition, these are just some of our cultural benefits
- Quarterly and annual star performer awards – voted for by your peers and colleagues
- Spot Awards of £25 and up, to instantly recognise excellence in you and your colleagues
- Annual professional and personal training budget to support your PDP
- Career Development Frameworks
- Reward schemes that are designed to thank you for your hard work and make life a little more affordable.
- Monthly employee experience/engagement survey
- Quarterly company meetings
- At least one, usually the kick-off in March/April, will typically be in-person.
- The others are conducted as Town Halls.
- Duration of in-person company meetings is generally 2 or 3 days and location changes every year.
- Social/team building events, organised by our incredible Employee Forum
- Regular, meaningful 1 to 1s
- Long service recognition at 5, 10, 15, 20 years and onwards
- Award winning culture Great Place to Work™ Nov 25 to Nov 26; Best Workplaces for Development™ 2026, Best Workplaces for Wellbeing™ 2026, Best Workplaces for Women™ 2025, Best Workplaces in Tech™ 2025
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
• Design and ship scalable security solutions. • Build relationships with engineering to foster cooperative partnerships across key Twilio products and platforms. • Partner with product and engineering teams to integrate scalable security capabilities. • Use metrics and data on the state of security at the product level, to drive accountability and action. • Drive security risk reduction through technical leadership and influence of engineering roadmaps. • Lead security reviews for critical features, new initiatives and infrastructure changes. • Cultivate security expertise across engineering teams through mentorship, technical guidance and training.
• Make Our Products Brilliant: Feed research directly into product and engineering — work close to the roadmap and the codebase to sharpen how we detect, prioritise, and remediate, building capabilities that outclass the competition • Shape How Our AI Understands Risk: Translate deep threat research into the labels, signals, and product feedback that train our models to prioritise vulnerabilities like a seasoned researcher • Lead Our Security Research Function: Set the direction, standards, and methodologies for how Maze researches, validates, and prioritises cloud and application security threats, scaling a small team of researchers as we grow • Find Novel Vulnerabilities That Get Reach: Surface original research and build narratives — blog posts, technical talks, podcasts, video, conference presentations — that earn real reach and give Maze technical credibility with the security community • Build Authoritative Technical Intelligence: Produce detailed research on exploitation techniques, attack vectors, and remediation across cloud infrastructure and application security, enriched with CVE, advisory, and threat-intel sources • Set the Standard for Research Quality: Establish the frameworks and review processes that keep our vulnerability assessment consistent, defensible, and ahead of the threat landscape • Grow the Bench: Mentor and develop researchers, raising the technical bar of the team and creating a research culture others want to join
Role Description The Cloud Network Engineer III at Staritas is responsible for the architecture, design, governance, and operational excellence of enterprise cloud and hybrid network environments. This role leads the development and enforcement of network policies, standards, and security controls while ensuring scalability, performance, and resilience across multi-cloud and colocation platforms. This position plays a key leadership role in cloud transformation initiatives, including the migration of colocation-based infrastructure to cloud-native architectures. The Cloud Network Engineer III partners with IT Operations, Security, and Cloud Engineering to define network strategy, implement monitoring and KPIs, and ensure alignment with enterprise compliance and performance objectives. - Architect and govern enterprise cloud network solutions across Azure, AWS, and GCP, including landing zones, hub/spoke, and zero trust architectures - Lead network strategy and design for migration initiatives from colocation environments to cloud-native and hybrid architectures - Develop, implement, and enforce network policies, standards, and guardrails aligned with security and compliance frameworks (e.g., SOC 2, HIPAA) - Define and operationalize network KPIs and SLAs (e.g., availability, latency, MTTR, change success rate) and implement monitoring frameworks to track performance - Design and maintain secure hybrid connectivity (VPN, ExpressRoute, Direct Connect) with a focus on resiliency and scalability - Own and enhance network observability, including logging, alerting, and telemetry across cloud and hybrid environments - Architect and manage network security controls, including NGFWs (Check Point), WAFaaS, segmentation, and zero trust network access (ZTNA) - Drive capacity planning and cost optimization strategies for cloud networking resources - Lead incident response and root cause analysis, ensuring systemic improvements and prevention of recurring issues - Establish and maintain network architecture documentation, standards, and runbooks at an enterprise level - Collaborate with Security to ensure policy enforcement, audit readiness, and continuous compliance - Evaluate and recommend new technologies and architectural patterns to improve reliability, performance, and security - Provide technical leadership and mentorship to junior engineers and cross-functional teams - Interface with vendors and providers to guide strategic improvements and issue resolution - Manage DNS, load balancing, and traffic management services in cloud environments - Assist with cost optimization and capacity planning for cloud network resources - Evaluate and recommend new networking technologies, tools, and services - Work with vendors and service providers to resolve issues and optimize performance - Participate in incident response and root cause analysis for network-related issues Qualifications - 10+ years of experience in network engineering, with significant focus on cloud networking and architecture - Proven experience leading colocation to cloud migration initiatives, including network design and cutover execution - Deep expertise in Azure networking (preferred), with working knowledge of AWS and/or GCP - Strong hands-on experience with Check Point NGFWs, Cisco networking, and secure hybrid connectivity - Demonstrated experience developing and enforcing network policies, governance models, and standards - Experience implementing monitoring, observability tools, and KPI-driven operations - Strong understanding of zero trust architecture, segmentation, and cloud-native security controls - Experience supporting regulated environments (e.g., SOC 2, HIPAA) - WAFaaS and advanced traffic management experience strongly preferred Requirements - Associate/bachelor’s degree in Info Tech, Cybersecurity, Computer Science, or related field is preferred but not required - Relevant experience may be considered equivalent Benefits - Competitive salary and performance bonus program - Fully remote work environment - Comprehensive benefits package including 401k match - 19 days of PTO per year; 10 holidays per year - Opportunity to work in a mission-driven organization where your work directly shapes clarity, confidence, and better outcomes across healthcare - Up to 10% travel, based on business needs
Senior Manager, Cyber Org Alignment & Compliance – Information Security Program
MashreqWe are Mashreq - Inspiring you to Rise Every Day
• Ensure compliance with policies, regulatory requirements, and industry standards • Identify, assess, and manage information security risks • Develop and maintain a comprehensive process for managing policy exceptions • Perform risk assessments for proposed policy exceptions • Coordinate and ensure regular risk control self-assessments across various business units • Compile and analyze assessment results and prepare reports • Maintain accurate and timely reporting of offshoring activities • Develop and maintain a comprehensive service catalog for ISG • Oversee the implementation and management of information security compliance across the bank • Be the owner of the bank’s GRC platform for ISG



