×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer Data Security Cloud Computing

Security Architect - Zero Trust & Access Controls

Job in Dartford, Kent County, DA1, England, UK
Listing for: Hargreaves Lansdown
Full Time position
Listed on 2026-01-13
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer, Data Security, Cloud Computing
Job Description & How to Apply Below

Excited to grow your career?
Our purpose is to make it easy for people to save and invest for a better future. We are looking for great people to join us, so please come and invest in YOUR future at Hargreaves Lansdown.

We know that sometimes people can be put off applying for a job if they don't tick every box. If you're excited about working for us and have most of the skills or experience we're looking for, please go ahead and apply. We’d love to hear from you!

About the role

We are seeking an experienced Security Architect - Zero Trust & Access Controls to join our rapidly evolving financial services organisation. This role will be instrumental in shaping and securing our digital future as we undergo significant transformation across our technology landscape.

The position will focus primarily on securing customer interactions and fraud prevention while championing security-by-design principles across our product development lifecycle. You will be required to have a strategic input into enterprise IAM security architecture, with a direct influence on the security posture of our customer-facing services. Additionally, you will provide mentorship and guidance to our security architects, product security specialists and product development teams.

What you’ll be doing Strategic Leadership
  • Lead the development and evolution of enterprise IAM frameworks and patterns for customer-facing (Client) and workforce (Colleague) identity solutions across on-premises, colocation, SaaS, AWS, and Azure environments.
  • Drive zero-trust architecture adoption and security-by-design principles across all product development and engineering initiatives.
  • Provide thought leadership in cloud IAM, federated identity, privileged access management, and identity governance for hybrid multi-cloud environments.
Architecture & Design
  • Design and oversee robust IAM architectures spanning:
    • On-premises:
      Active Directory, AD FS, RADIUS/LDAP integrations.
    • Colocation:
      Hybrid identity sync, network-level authentication.
    • SaaS:
      Okta, Ping Identity, Auth0, Azure AD B2C.
    • AWS: IAM, Identity Center, Organizations, Cognito, Secrets Manager.
    • Azure:
      Entra , Conditional Access, PIM, Key Vault, Managed Identities.
  • Develop reference architectures for OAuth 2.0, OIDC, SAML 2.0, FIDO2/Web Authn, and passwordless authentication flows.
  • Review and approve identity designs for critical systems including API security, service-to-service authentication, and customer authentication journeys.
  • Establish controls for identity lifecycle, access governance, JIT/JEA access, and privileged account management.
Digital Transformation
  • Align IAM architecture with agile delivery, Dev Sec Ops  practices, and infrastructure-as-code approaches.
  • Design identity controls enabling risk-based authentication, adaptive MFA, and continuous authorisation.
  • Develop migration strategies from legacy IAM systems to modern cloud-native platforms.
  • Governance & Risk Management.
  • Participate in security governance forums, design authority and architecture review boards.
  • Conduct IAM assessments, access reviews, segregation of duties analysis, and privilege escalation risk reviews.
  • Ensure regulatory compliance (GDPR, PSD2, DORA) through identity controls and access certification.
Qualifications
  • Extensive experience in security architecture with deep IAM, preferably within the Financial Services Industry.
  • Proven experience in designing and implementing IAM solutions.
  • Deep understanding of cloud security architecture and control (AWS, Azure).
  • Experience with modern authentication protocols (OAuth 2.0, OIDC, SAML) and fraud prevention technologies.
  • Extensive knowledge and expertise on securing mobile apps, API transactions and system integrations with optimal combination of security capabilities.
  • Knowledge of application cryptography, PKI infrastructure and use of mobile TEE.
  • Strong communication and stakeholder management skills, with the ability to translate complex technical concepts for non-technical audiences.
  • Able to work under pressure in a fast paced, transformation-focused environment.
  • Bachelor's degree in computer science, Information Security, or related field.
Relevant certifications (highly desirable)
  • Certified…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search