Enterprise Architecture. Cybersecurity. AI Operating Models. We build strategic systems for the future of business.
Principal Enterprise Security Architect, Senior Associate
Location
United Kingdom
Posted
3 days ago
Salary
0
Seniority
Senior
Job Description
Principal Enterprise Security Architect, Senior Associate
Intelance
• Lead independent security architecture reviews for complex enterprise environments. • Assess cloud, on-premises and hybrid architectures across identity, networks, endpoints, applications, platforms and data. • Review security requirements, architecture decisions, trust boundaries and control designs. • Carry out threat modelling and identify credible attack paths and design weaknesses. • Assess identity and access management, network segmentation, encryption, logging, resilience and recovery arrangements. • Judge whether proposed alternative controls provide equivalent protection. • Review high-level and detailed designs and challenge unsupported assumptions. • Work alongside governance and risk advisors, enterprise architects and technical assessors. • Turn technical findings into clear decisions and recommendations for executives and boards. • Produce client-ready architecture findings, diagrams and assurance reports. • Complete scheme-specific training and participate in internal quality reviews where required.
Job Requirements
- Substantial experience as a Principal Security Architect, Enterprise Security Architect or security design authority.
- Experience designing or assuring complex systems in large or regulated organisations.
- Strong knowledge of secure-by-design principles, threat modelling and architecture assurance.
- Practical experience across cloud, hybrid infrastructure, identity, networks, applications and data security.
- The ability to distinguish genuine security requirements from unnecessary complexity.
- Excellent written English and the ability to explain technical risks to non-technical decision-makers.
Benefits
- Senior architecture and assurance assignments.
- Flexible associate working based on your availability.
- Direct access to Intelance leadership.
- Work alongside experienced enterprise architects, risk advisors and technical assessors.
- Clear scopes and independent advisory responsibilities.
- Potential inclusion in Intelance proposals and associate credentials, subject to agreement.
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Presales Security Expert – Major Account Manager GSI
FortinetFortinet is a global leader in high-performance cybersecurity solutions. With a mission to secure People, Devices and Data everywhere, Fortinet offers a comprehensive suite of products and services to protect businesses of all sizes.
• Enabling the success of our rapidly growing business • Collaborate with Account Manager on customer issues • Strategizing future services or capabilities for client accounts • Build technical business relationships with key customers and partners • Presenting at events and seminars • Mentor others with your expertise
Information Security Manager
Proliance GmbHWir bei Proliance machen digitale Sicherheit für Unternehmen einfach erreichbar. Als KI-gestützte Compliance-Plattform für den Mittelstand unterstützen wir Unternehmen dabei, komplexe Anforderungen wie DSGVO, NIS2, ISO 27001, TISAX® und weitere regulatorische Standards effizient, automatisiert und souverän zu managen. Unsere Vision: Unternehmen zu befähigen, ihre digitale Sicherheit einfach, effizient und nachhaltig zu managen — für den souveränen Umgang mit Risiken und langfristigen Erfolg in einer vernetzten Welt. Unsere Mission: Wir machen komplexe Compliance-Anforderungen beherrschbar. Durch intelligente Automatisierung, klare Prozesse und persönliche Beratung aus Expert:innenhand helfen wir Unternehmen, sich wirksam zu schützen und sich auf das zu konzentrieren, was wirklich zählt: ihr Kerngeschäft.
Role Description Woran Du mit uns arbeitest: - ISMS-Beratung: Aufbau, Implementierung und Weiterentwicklung von Informationssicherheits-Managementsystemen nach etablierten Standards (z. B. ISO/IEC 27001, NIS-2, TISAX, BSI IT-Grundschutz) - Sicherheitsanalyse: Bewertung bestehender Maßnahmen und Prozesse, Identifikation von Schwachstellen und Ableitung von Optimierungspotenzialen - Gap-Analysen & Projektsteuerung: Durchführung von Reifegradanalysen, Planung geeigneter Maßnahmen und Begleitung bis zur erfolgreichen Zertifizierung - Auditvorbereitung: Organisation interner Audits und Mitwirkung bei vertraglich vereinbarten Leistungen wie Reporting, Change-Management, Überwachung - Risikomanagement: Durchführung von Risikoanalysen und Entwicklung technischer und organisatorischer Sicherheitsmaßnahmen - Richtlinien & Schulungen: Erstellung und Weiterentwicklung von Sicherheitsrichtlinien, Leitfäden und Awareness-Konzepten - Schnittstellenarbeit: Enge Zusammenarbeit mit Datenschutz, Produktentwicklung und weiteren internen Fachbereichen Qualifications - Ausbildung: Abgeschlossenes Studium im Bereich IT, Informationssicherheit oder eine vergleichbare Qualifikation - Erfahrung: Mehrjährige praktische Erfahrung im Aufbau und Management von ISMS, idealerweise in einer beratenden Rolle - Normenkenntnis: Tiefgehendes Verständnis relevanter Standards wie ISO/IEC 27001, NIS-2, BSI IT-Grundschutz und TISAX - Zertifizierungen: Wünschenswert sind anerkannte Qualifikationen wie ISO/IEC 27001 Lead Implementer, CISM oder CISSP - Arbeitsweise & Kommunikation: Analytisches Denken, strukturierte Herangehensweise und sicheres Auftreten im Kundenkontakt - Sprachkenntnisse: Sehr gute Deutschkenntnisse sowie verhandlungssicheres Englisch in Wort und Schrift - Reisebereitschaft: gelegentlich Benefits - Flexibles und hybrides Arbeitsmodell - Remote möglich! - Wettbewerbsfähiges Gehalt, Firmenfitness mit Wellpass und attraktive Mitarbeiterrabatte - 28 Urlaubstage und Workation-Möglichkeit - 1.000 € jährliches Weiterbildungsbudget für deine persönliche Entwicklung - Sinnstiftende Mission & Raum für Mitgestaltung und kreative Entfaltung - Regelmäßige Team- und Company-Events für echten Zusammenhalt - Modernes Office mit Ergonomie, Massagen, Snacks & Drinks
Senior Technical Specialist, Corporate Security
WealthsimpleRegardless of age or net worth, Wealthsimple's mission is to bring smarter financial services to everyone. Founded in 2014, Wealthsimple offers "investing on au
• Own all aspects of the Physical Protection System (PPS), with Genetec Security Centre (access control and VMS) as the primary platform — including configuration, maintenance, troubleshooting, and optimization across a multi-site enterprise architecture. • Serve as the first point of contact for PPS troubleshooting, conducting root cause analysis and driving defect resolution in partnership with our security integrator and internal IT. • Oversee and manage the Wealthsimple security integrator relationship, holding vendors accountable to SLAs and quality standards. • Lead technical planning, testing, and implementation of new security technologies and system integrations, managing projects from scoping through delivery. • Work with IT/Security teams to improve the existing and future integrations with our IdP, ensuring user onboarding and offboarding is automated correctly and user audits can be done by our IT and Compliance teams. • Develop and maintain complete technical documentation and controls, system audits, and infrastructure records in partnership with internal and external stakeholders. • Organize and lead annual penetration testing exercises and oversee remediation of identified vulnerabilities. • Manage access control credentials and site access programs. • Develop and lead training, as well as the creation of technical policies and procedures.
• Lead our security and privacy efforts and protect the students, educators, and partners who use the platform. • Drive the security engineering, compliance, and privacy programs forward with end-to-end ownership of risk and customer assurance. • Promote effective and thoughtful decision making to reduce uncertainty and increase organizational velocity. • Stand up SIEM and detection engineering pipelines to alert on and investigate anomalies before they turn into incidents. • Standardize and enforce RBAC on critical systems, including non-human and AI agent identities. • Add LLM-assisted and highly contextual code analysis to security-relevant pull requests, addressing tenant isolation and prompt injection threats. • Design data de-identification and isolation approaches for privacy-by-design use cases. • Keep an up-to-date risk register and security roadmap, communicating clearly through regular updates. • Support engineering team with secure design reviews that provide actionable and tradeoff-informed recommendations. • Equip customer-facing teams with top-notch trust center content, including security knowledge bases and customer assurance collateral. • Lead SOC 2 compliance operations and audits to reduce overhead on engineering and support teams. • Lead the incident response function to ensure rapid recovery capabilities. • Partner with Trust and Safety on child safety and responsible AI deployments. • Work cross-functionally to build partnerships instead of roadblocks.



