Enterprise Architect; Security

Job Summary

Zurich Life Assurance is looking for an Enterprise Architect (Security).

The Enterprise Architect (Security) will be accountable for ensuring secure designs and governance within ZLAP IT’s evolving architecture, ensuring that new and existing technologies adhere to Zurich’s Information Security and Data Assurance Policies. Additionally, they will be accountable for the secure delivery of IT projects, working closely with both ZLAP IT and wider ZLAP teams, and ensure that operational platforms and project outcomes meet Zurich’s unified IT, data, and third-party control requirements to support secure and resilient digital operations.

This role may be available part-time or full time. This is because we want the best people for our roles, and we recognise that sometimes those people aren’t available full-time. Please talk to us at interview about the flexibility you may need.

As an Enterprise Architect (Security) your main responsibilities will include, but not necessarily be limited to, the following:

• Design, oversee and govern the introduction of any new projects or initiatives to Zurich’s information security and data policy standards, both within the IT team and the wider teams.
• Review new solutions to ensure design alignment with Zurich’s consolidated IT controls, identifying any gaps and ensuring all gaps are remediated appropriately.
• Drive and monitor remediation plans, ensuring that risk‑mitigating measures are understood, owned, and implemented by delivery teams.
• Signoff assurance that architectural decisions, third-party integrations, APIs, and cloud services introduce no new cyber exposures to ZLAP.
• Provide architectural security direction throughout the project lifecycle: initiation, design, build, deployment, and transition into BAU.

• Define and maintain the target IT architecture, ensuring alignment with business strategy, digital KPIs, and regulatory requirements.
• Direct the security designs and deployments of new strategic technologies (e.g., Salesforce, Mulesoft, cloud platforms) while maintaining operational resilience for legacy systems.
• Ensure all integration of business services and processes through reusable APIs, or legacy integration platforms adhere to Zurich’s security policy standards.
• ZLAP deploys architectural principles to reduce complexity: de-duplicate, decouple, and externalize core services. Your accountability is to ensure these deliveries adhere to Zurich’s Information Security polices and guidelines.
• Oversee the secure implementation and optimisation of key technology platforms, including:
  Customer/partner engagement platforms (e.g., Salesforce, Zurich portals, sales toolkits).
• API and integration technologies (Mulesoft, web services).
• Backend policy administration and servicing platforms (Salesforce, Life
  400, VPMS, BRC, automated underwriting, data lake, fund administration, document management system).
• Collaborate with ongoing modernization projects (e.g., Calcs platform, Group Risk policy admin, document storage and rendering, payroll enhancements) to ensure they adhere with Information Security Policies and guidelines.

• Collaborate with business, IT, and external partners to ensure architectural decisions meet business needs and strategic objectives.
• Communicate architectural vision, roadmaps, and progress to technical and non-technical stakeholders.

• Promote the adoption of group standard solutions where appropriate, seeking alternatives only by exception.
• Foster business unit convergence for shared solutions (e.g., content management, code repositories, project management tools).
• Champion a “Rent >
  Buy >
  Build” philosophy, prioritising secure cloud-based solutions, then industry-standard packages, then custom builds.
• Ensure future‑proofing by adopting technologies with market longevity and reducing key person dependencies.
• Maintain support for legacy technologies to ensure data security and operational resilience.
• Security governance signoff including control‑alignment reviews and signoff…