Senior Security Architect - DWP - G7

Senior Security Architect - DWP - G7 (Manchester Digital)

This role may be located in one of the following locations:
Blackpool, Birmingham, Leeds, Manchester, Newcastle or Sheffield. Candidates based in Newcastle will be first based at Benton Park View from September 2025, and then at 1 Pilgrim Place in Newcastle city centre by the end of 2027.

About the job

Important
:
This role requires you to pass a Security Check clearance. For further information, see 'Selection process details'. The position is part of the Health & Disability team and the Identity & Trust team.

As a Security Architect you will use a blend of technical security knowledge, architecture design, and development skills to help secure services used by millions of people against cyber threats. DWP is a huge and complex organisation with unique architectural and security challenges.

This role will involve identity for DWP through online channels. A CISSP certification or a Master's degree in Information Security is highly desirable.

The Security Architect will provide guidance across the following activities:

• Scoping IT Health Checks and providing guidance in risk assessment.
• Providing security guidance and checking the cloud posture management platform for vulnerabilities.
• Advising on online identity and verification and telephone based identity and verification projects.
• Serving as a strategic advisor to Health & Disability and Identity & Trust teams.
• Building relationships with other teams, the security community and the design authority.

• Security Architecture design and modelling techniques, tools and standards.
• Application and Cloud Security.
• Enterprise scale IT experience in at least one recent security architect role in a complex large scale, national or multi-national organisation.
• Network Security: knowledge of network protocols (e.g., TCP/IP, BGP, OSPF) and experience configuring secure routers, switches, firewalls, and load balancers.
• Threat analysis and mitigation: expertise in identifying and mitigating cyber threats, including the use of advanced threat detection tools (e.g., SIEM, IDS/IPS, endpoint detection systems).
• Encryption & Cryptography: use of encryption technologies (e.g., SSL/TLS, IPsec, Kerberos, VPNs, PKI) to secure data in transit and at rest.
• Knowledge of AuthN/AuthZ (OIDC, OAuth, JWT, SAML).
• Knowledge of Cloud Native technologies (Docker, Kubernetes, Istio, CI/CD tools such as Jenkins, Git Lab).

• Leadership
• Working Together
• Communicating and Influencing

• Analysis (Practitioner)
• Research and innovation (Practitioner)
• Designing secure systems (Practitioner)
• Enabling and informing risk‑based decisions (Practitioner)
• Security technology (Expert)
• Understanding security implications of transformation (Practitioner)
• Communication (security architect) (Practitioner)

• Seniority level:
  Mid‑Senior level
• Employment type:
  
  Full‑time
• Job function:
  Information Technology
• Industries:
  Technology, Information and Internet

If you would like to learn more about the role, please contact

Referrals increase your chances of interviewing at Manchester Digital by 2x.