Back

SC Cleared Security Architect (Contract)

  • Curo Resourcing Ltd.
  • Luton, Bedfordshire
  • Apr 14, 2026
Full time I.T. & Communications

Job Description

SC Cleared Security Architect (Contract)

Start Date: ASAP
Duration: 12 Months
Day Rate: Competitive
IR35: Inside (PLEASE NOTE: Employer NI is paid for by the client)
Location: Remote (rare on-site visits to Luton)
Security Clearance: SC clearance is highly desirable

Summary: The ideal candidate will be an experienced and highly technical Security Architect with a hands on background and strong Information Assurance (IA) capability. The role spans a wide range of initiatives, including security for security based projects as well as security governance for business applications. A broad and deep technical knowledge base is essential, particularly in: Identity, Zero Trust, Azure, Network Security, and Application Security. The Security Architect must operate at pace and make risk informed decisions in complex delivery environments.

Key Responsibilities
  • Security Architecture & Technical Leadership:
    • Lead the design and assurance of security architectures supporting obsolescence remediation, including upgrades, platform replacements, migrations, and decommissioning.
    • Provide hands on technical oversight for legacy on premise systems transitioning to cloud or hybrid architectures.
    • Define secure target architectures aligned to enterprise standards, cloud best practices, and obsolescence strategies.
    • Act as the senior security authority across multiple concurrent programmes.
    • Produce reusable security design patterns, blueprints, and architectural artefacts.
  • Information Assurance & Risk Management:
    • Conduct risk assessments, threat modelling, and impact analysis for end of life or obsolete technologies.
    • Identify residual risks and define pragmatic remediation or risk acceptance approaches aligned with organisational risk appetite.
    • Ensure Information Assurance principles are embedded throughout design, implementation, and transition.
    • Provide formal security sign off and assurance artefacts for governance forums.
  • Cloud & Hybrid Security (Azure Focus):
    • Define and validate security requirements for cloud platforms-particularly Microsoft Azure.
    • Ensure secure-by-design principles across identity, networking, data, workloads, and platform services.
    • Support migrations from traditional datacentre environments to Azure, ensuring continuity of security controls.
    • Advise delivery teams on Azure-native security services and shared responsibility models.
  • Security Controls & Tooling:
    • Define and oversee implementation of controls across:
      1. Identity & Access Management (IAM)
      2. Network security & segmentation
      3. Encryption & key management
      4. Logging, monitoring & SIEM
      5. Vulnerability and configuration management
    • Lead tooling modernisation, prioritising Microsoft native tooling where appropriate.
    • Ensure legacy controls are replaced, updated, or retired as part of remediation activity.
  • Governance, Compliance & Collaboration:
    • Ensure alignment with security standards and regulations (ISO 27001, NIST, GDPR) and internal policies.
    • Work with infrastructure, cloud, application, and programme teams to embed secure-by-design principles.
    • Support audits, compliance reviews, and regulatory assessments of transitioning systems.
    • Produce high-quality documentation, architectural artefacts, and technical decision records.
    • Experience in the UK Defence sector, including operation at OFFICIAL SENSITIVE classification levels.
    • Strong understanding of UK GOV Secure by Design principles.
    • Demonstrable ability to make timely, risk based decisions in complex delivery environments.
    • Extensive experience as a Security Architect on large-scale modernisation or obsolescence programmes.
    • Deep technical background across on-premise enterprise architectures: networks, servers, identity, legacy systems.
    • Strong expertise transitioning organisations from on premise to public cloud (Azure).
Hands on Proficiency
  • Cloud security architectures
  • IAM
  • Network and workload security
  • Encryption & data protection
Additional Qualifications
  • Strong Information Assurance experience in regulated and risk sensitive environments.
  • Proven ability to work across multiple programmes simultaneously.
  • Excellent communication, stakeholder engagement, and documentation skills.
Preferred Qualifications
  • Certifications such as: CISSP, CCSP, SABSA, TOGAF, Azure Security certifications.
  • Experience with Microsoft security tooling: Microsoft Defender, Sentinel, Entra ID, Azure Policy.
  • Background in environments with significant legacy technical debt and time-critical remediation.
About Curo Resourcing Ltd.
Apply Now