We are seeking an experienced Fractional CISO to provide hands on security leadership as we evolve our security function to support continued growth and European expansion. This is a permanent fractional engagement reporting directly to the CTO. You will own our information security strategy, maintain our ISO 27001 certification, build our security roadmap, and prepare the organisation for SOC 2 readiness in . This role requires someone who can operate both strategically and tactically - developing policy one day and reviewing cloud configurations the next. Key Responsibilities Strategy & Governance Develop and own the Information Security strategy aligned with ApprovalMax's business objectives and European expansion plans Maintain and continuously improve the Information Security Management System (ISMS) Create, review, and maintain core security policies, standards, and procedures Establish and chair a cross functional Security Working Group (Engineering, Architecture, IT, HR) Build and present a multi year security roadmap with clear milestones, resource requirements, and priorities Serve as the central authority on risk assessment, risk treatment, and risk acceptance decisions Assess and provide guidance on secure AI adoption across the organisation, including AI powered product features and internal AI tooling Compliance & Certification Maintain ISO 27001 certification and prepare for the 2027 recertification audit Lead SOC 2 Type II readiness programme (target: ), including gap analysis and control mapping Ensure compliance with GDPR and data protection requirements across EU/UK/US/AU/NZ/CA/ZA jurisdictions Collaborate with external DPO support provider on privacy related matters and customer security questionnaires as needed Cloud & Technical Security Provide security oversight across Azure, AWS, and Google Workspace environments Conduct access reviews and advise on identity and access management best practices Evaluate and guide implementation of security tooling (SIEM, vulnerability management, endpoint protection) Oversee VMware Workspace ONE MDM deployment and device security policies Advise engineering teams on secure SDLC practices, DevSecOps integration, and application security principles Operational Security Develop and maintain incident response plans and procedures Lead incident response tabletop exercises and post incident reviews Provide guidance on business continuity and disaster recovery planning Advise on vendor security assessments and third party risk management Awareness & Culture Design and deliver company wide security awareness training programmes Mentor and upskill internal staff on security best practices Foster a security first culture across all departments Act as a trusted advisor to leadership on emerging threats and security trends Stakeholder Engagement Report regularly to the CTO on security posture, risks, and programme progress Prepare board level security presentations as required (infrequent) Support commercial teams by contributing to customer security discussions when escalated Qualifications 8+ years of progressive experience in information security, with at least 3 years in a CISO, Head of Security, or senior security leadership role Demonstrated experience in B2B SaaS environments, ideally in fintech, finance software, or similarly regulated industries Proven track record of achieving and maintaining ISO 27001 certification Experience preparing organisations for SOC 2 Type II certification Hands on experience securing cloud environments (Azure and/or AWS required; GCP a plus) Experience with Google Workspace security configuration and administration Background working with distributed, remote first engineering teams Technical Knowledge Strong understanding of cloud security architecture, identity management, and zero trust principles Familiarity with secure software development lifecycle (SDLC) and DevSecOps practices Knowledge of MDM solutions (VMware Workspace ONE experience preferred) Understanding of API security and integration risk management Practical experience with security tooling: SIEM, vulnerability scanners, endpoint protection, etc. Awareness of AI/ML security risks, including secure AI adoption practices and emerging AI governance frameworks (desirable) Compliance & Regulatory Deep knowledge of ISO 27001:2022 requirements and audit processes Familiarity with SOC 2 Trust Service Criteria (Security, Availability, Confidentiality, Privacy) Understanding of GDPR, UK Data Protection Act, and international data transfer mechanisms Awareness of regional requirements across EU, UK, US, Australia, New Zealand, Canada, and South Africa Additional Information Growing international business with 10,000+ subscribers Regular performance based compensation reviews 26 days paid time off 1 additional day off for your Birthday Remote office assistance Service years recognition financial reward
Feb 09, 2026
Full time
We are seeking an experienced Fractional CISO to provide hands on security leadership as we evolve our security function to support continued growth and European expansion. This is a permanent fractional engagement reporting directly to the CTO. You will own our information security strategy, maintain our ISO 27001 certification, build our security roadmap, and prepare the organisation for SOC 2 readiness in . This role requires someone who can operate both strategically and tactically - developing policy one day and reviewing cloud configurations the next. Key Responsibilities Strategy & Governance Develop and own the Information Security strategy aligned with ApprovalMax's business objectives and European expansion plans Maintain and continuously improve the Information Security Management System (ISMS) Create, review, and maintain core security policies, standards, and procedures Establish and chair a cross functional Security Working Group (Engineering, Architecture, IT, HR) Build and present a multi year security roadmap with clear milestones, resource requirements, and priorities Serve as the central authority on risk assessment, risk treatment, and risk acceptance decisions Assess and provide guidance on secure AI adoption across the organisation, including AI powered product features and internal AI tooling Compliance & Certification Maintain ISO 27001 certification and prepare for the 2027 recertification audit Lead SOC 2 Type II readiness programme (target: ), including gap analysis and control mapping Ensure compliance with GDPR and data protection requirements across EU/UK/US/AU/NZ/CA/ZA jurisdictions Collaborate with external DPO support provider on privacy related matters and customer security questionnaires as needed Cloud & Technical Security Provide security oversight across Azure, AWS, and Google Workspace environments Conduct access reviews and advise on identity and access management best practices Evaluate and guide implementation of security tooling (SIEM, vulnerability management, endpoint protection) Oversee VMware Workspace ONE MDM deployment and device security policies Advise engineering teams on secure SDLC practices, DevSecOps integration, and application security principles Operational Security Develop and maintain incident response plans and procedures Lead incident response tabletop exercises and post incident reviews Provide guidance on business continuity and disaster recovery planning Advise on vendor security assessments and third party risk management Awareness & Culture Design and deliver company wide security awareness training programmes Mentor and upskill internal staff on security best practices Foster a security first culture across all departments Act as a trusted advisor to leadership on emerging threats and security trends Stakeholder Engagement Report regularly to the CTO on security posture, risks, and programme progress Prepare board level security presentations as required (infrequent) Support commercial teams by contributing to customer security discussions when escalated Qualifications 8+ years of progressive experience in information security, with at least 3 years in a CISO, Head of Security, or senior security leadership role Demonstrated experience in B2B SaaS environments, ideally in fintech, finance software, or similarly regulated industries Proven track record of achieving and maintaining ISO 27001 certification Experience preparing organisations for SOC 2 Type II certification Hands on experience securing cloud environments (Azure and/or AWS required; GCP a plus) Experience with Google Workspace security configuration and administration Background working with distributed, remote first engineering teams Technical Knowledge Strong understanding of cloud security architecture, identity management, and zero trust principles Familiarity with secure software development lifecycle (SDLC) and DevSecOps practices Knowledge of MDM solutions (VMware Workspace ONE experience preferred) Understanding of API security and integration risk management Practical experience with security tooling: SIEM, vulnerability scanners, endpoint protection, etc. Awareness of AI/ML security risks, including secure AI adoption practices and emerging AI governance frameworks (desirable) Compliance & Regulatory Deep knowledge of ISO 27001:2022 requirements and audit processes Familiarity with SOC 2 Trust Service Criteria (Security, Availability, Confidentiality, Privacy) Understanding of GDPR, UK Data Protection Act, and international data transfer mechanisms Awareness of regional requirements across EU, UK, US, Australia, New Zealand, Canada, and South Africa Additional Information Growing international business with 10,000+ subscribers Regular performance based compensation reviews 26 days paid time off 1 additional day off for your Birthday Remote office assistance Service years recognition financial reward
ISP Data Architect / Canonical Data Model (CDM) Lead Own ISP's enterprise data architecture and Canonical Data Model (CDM), defining the structural backbone for how data is represented, integrated, mastered, and consumed across ISP. The role establishes consistent entity structures, governed source-to-canonical mappings, identity resolution standards, and repeatable data movement patterns into the Unified Data Spine. The role prevents re-fragmentation, enables certified KPIs, and underpins the Unified Student Profile (USP) and Unified Customer/Household Profile (UCP). Scope & Complexity Enterprise wide, multi country environment Operates across ERP, HRIS, SIS, CRM, EdTech, Finance, Learning and regional platforms Acts as enterprise authority for canonical modelling and data architecture standards Balances architectural integrity with pragmatic delivery ISP Principles Begin with our children and students: our children and students are at the heart of what we do, and their success is our success. Wellbeing and safety are essential for learners and learning. Treat everyone with care and respect: we look after one another, embrace similarities and differences, and promote the well being of self and others. Operate effectively: we focus relentlessly on the things that are most important and will make the most difference. Are financially responsible: we make financial choices carefully based on the needs of the children, students and our schools. Learn continuously: getting better is what drives us; we positively engage with personal and professional development and school improvement. Key Responsibilities Canonical Data Model Ownership Define and maintain the enterprise CDM for priority domains Own entity, attribute, relationship, and hierarchy standards Maintain canonical definitions catalogue Ensure CDM aligns to business language and KPI semantics Source to Canonical Mapping & Transformation Define SoR mapping principles Approve source to canonical mappings Define transformation and enrichment patterns Prevent bespoke enterprise data models Identity Resolution Architecture (with MDM Lead) Define matching, linking, and hierarchy logic Define identifier strategy (natural vs surrogate keys) Ensure alignment between identity architecture and survivorship rules Data Architecture Patterns Define reference patterns for Ingestion, Transformation, Semantic modelling, Lineage & metadata, Access control Governance & Gating Review designs through Design Authority Approve canonical model changes via Data Governance Council Enforce "no bespoke data models" principle Provide patterns, templates and guidance to engineering teams Partner with BI Product Owner on semantic layer alignment Partner with Cyber Security & Privacy Manager on secure data design Decision Rights Approve canonical model changes Approve source to canonical mappings Define reference data architecture patterns Reject non compliant designs Key Responsibilities (Day to Day) Maintain CDM artefacts and catalogue Maintain SoR inventory Maintain identity resolution standards Support programme delivery with architectural input Provide governance input to Design Authority and programme gating Key Deliverables (First 6 Months) CDM v1 for priority domains Definitions catalogue Source to canonical mappings for Wave 1 systems Identity resolution architecture document Data movement pattern catalogue Reference semantic layer model Success Measures / KPIs % priority datasets using CDM Reduction in duplicate entity definitions Faster onboarding of new data sources Improved KPI consistency Skills, Qualifications and Experience 8-10+ years enterprise data architecture experience Strong canonical modelling background Experience with modern data platforms and integration patterns Strong communication with business and engineering audiences Systems thinking Pragmatic architecture Clear documentation Influence without authority ISP Commitment to Safeguarding Principles ISP is committed to safeguarding and promoting the welfare of children and young people and expects all staff and volunteers to share this commitment. All post holders are subject to appropriate vetting procedures, including an online due diligence search, references and satisfactory Criminal Background Checks or equivalent covering the previous 10 years' employment history. ISP Commitment to Diversity, Equity, Inclusion, and Belonging ISP is committed to strengthening our inclusive culture by identifying, hiring, developing, and retaining high performing teammates regardless of gender, ethnicity, sexual orientation and gender expression, age, disability status, neurodivergence, socio economic background or other demographic characteristics. Candidates who share our vision and principles and are interested in contributing to the success of ISP through this role are strongly encouraged to apply.
Feb 05, 2026
Full time
ISP Data Architect / Canonical Data Model (CDM) Lead Own ISP's enterprise data architecture and Canonical Data Model (CDM), defining the structural backbone for how data is represented, integrated, mastered, and consumed across ISP. The role establishes consistent entity structures, governed source-to-canonical mappings, identity resolution standards, and repeatable data movement patterns into the Unified Data Spine. The role prevents re-fragmentation, enables certified KPIs, and underpins the Unified Student Profile (USP) and Unified Customer/Household Profile (UCP). Scope & Complexity Enterprise wide, multi country environment Operates across ERP, HRIS, SIS, CRM, EdTech, Finance, Learning and regional platforms Acts as enterprise authority for canonical modelling and data architecture standards Balances architectural integrity with pragmatic delivery ISP Principles Begin with our children and students: our children and students are at the heart of what we do, and their success is our success. Wellbeing and safety are essential for learners and learning. Treat everyone with care and respect: we look after one another, embrace similarities and differences, and promote the well being of self and others. Operate effectively: we focus relentlessly on the things that are most important and will make the most difference. Are financially responsible: we make financial choices carefully based on the needs of the children, students and our schools. Learn continuously: getting better is what drives us; we positively engage with personal and professional development and school improvement. Key Responsibilities Canonical Data Model Ownership Define and maintain the enterprise CDM for priority domains Own entity, attribute, relationship, and hierarchy standards Maintain canonical definitions catalogue Ensure CDM aligns to business language and KPI semantics Source to Canonical Mapping & Transformation Define SoR mapping principles Approve source to canonical mappings Define transformation and enrichment patterns Prevent bespoke enterprise data models Identity Resolution Architecture (with MDM Lead) Define matching, linking, and hierarchy logic Define identifier strategy (natural vs surrogate keys) Ensure alignment between identity architecture and survivorship rules Data Architecture Patterns Define reference patterns for Ingestion, Transformation, Semantic modelling, Lineage & metadata, Access control Governance & Gating Review designs through Design Authority Approve canonical model changes via Data Governance Council Enforce "no bespoke data models" principle Provide patterns, templates and guidance to engineering teams Partner with BI Product Owner on semantic layer alignment Partner with Cyber Security & Privacy Manager on secure data design Decision Rights Approve canonical model changes Approve source to canonical mappings Define reference data architecture patterns Reject non compliant designs Key Responsibilities (Day to Day) Maintain CDM artefacts and catalogue Maintain SoR inventory Maintain identity resolution standards Support programme delivery with architectural input Provide governance input to Design Authority and programme gating Key Deliverables (First 6 Months) CDM v1 for priority domains Definitions catalogue Source to canonical mappings for Wave 1 systems Identity resolution architecture document Data movement pattern catalogue Reference semantic layer model Success Measures / KPIs % priority datasets using CDM Reduction in duplicate entity definitions Faster onboarding of new data sources Improved KPI consistency Skills, Qualifications and Experience 8-10+ years enterprise data architecture experience Strong canonical modelling background Experience with modern data platforms and integration patterns Strong communication with business and engineering audiences Systems thinking Pragmatic architecture Clear documentation Influence without authority ISP Commitment to Safeguarding Principles ISP is committed to safeguarding and promoting the welfare of children and young people and expects all staff and volunteers to share this commitment. All post holders are subject to appropriate vetting procedures, including an online due diligence search, references and satisfactory Criminal Background Checks or equivalent covering the previous 10 years' employment history. ISP Commitment to Diversity, Equity, Inclusion, and Belonging ISP is committed to strengthening our inclusive culture by identifying, hiring, developing, and retaining high performing teammates regardless of gender, ethnicity, sexual orientation and gender expression, age, disability status, neurodivergence, socio economic background or other demographic characteristics. Candidates who share our vision and principles and are interested in contributing to the success of ISP through this role are strongly encouraged to apply.
CBSbutler Holdings Limited trading as CBSbutler
Edinburgh, Midlothian
Role: Data Architect Location: Edinburgh or Luton (hybrid/onsite as required) Engagement: Contract - Inside IR35 Rate: 550 - 650 per day Security Clearance: Active SC Clearance required Project Description We are seeking an experienced Data Architect to lead the design, implementation, and governance of enterprise-scale data architectures within a secure environment. You will be responsible for ensuring data across systems is accurate, accessible, secure, and aligned to business and technical objectives. The role requires extensive experience delivering data-intensive systems end-to-end, from initial requirements capture through architecture design and implementation to production delivery. You will work closely with customers and stakeholders to translate business needs into robust, scalable data solutions. You will act as a senior technical authority, collaborating proactively with IT teams, data engineers, system engineers, and business stakeholders to define data models, data flows, and governance frameworks. Key Responsibilities Design and implement enterprise-level data architecture solutions, including databases, data warehouses, data lakes, and lakehouse platforms Develop and maintain conceptual, logical, and physical data models Define and enforce data management standards, policies, and best practices Work closely with data engineers to design and optimise ETL/ELT pipelines for structured and unstructured data Ensure data quality, consistency, security, and compliance across platforms Collaborate with business stakeholders to gather requirements and translate them into technical solutions Oversee data integration across cloud and on-premises environments Support and lead data governance initiatives, including metadata management, MDM, and regulatory compliance Evaluate and recommend new data technologies, tools, and platforms Provide technical leadership and mentorship to data engineering and analytics teams Skills and Experience Required Active SC Clearance (mandatory) Bachelor's degree in STEM, Computer Science, Information Systems, Data Science, or related field (Master's preferred) Strong experience in data architecture, database design, or senior data engineering roles High proficiency in SQL and database technologies (e.g. Oracle, SQL Server, PostgreSQL, MySQL) Strong knowledge of data warehouse, data lake, and lakehouse architectures Experience with ETL/ELT frameworks and orchestration tools (e.g. Informatica, Talend, Apache Airflow) Proven experience establishing and maintaining data governance frameworks Strong understanding of data security, access controls, and compliance requirements Excellent problem-solving, communication, and documentation skills Familiarity with AI/ML data pipelines and analytics platforms Preferred Qualifications Experience with cloud data platforms (AWS, Azure, GCP) Experience with big data technologies (Hadoop, Spark, Kafka) Familiarity with UML / SysML Strong understanding of API integration and microservices data flows
Jan 30, 2026
Contractor
Role: Data Architect Location: Edinburgh or Luton (hybrid/onsite as required) Engagement: Contract - Inside IR35 Rate: 550 - 650 per day Security Clearance: Active SC Clearance required Project Description We are seeking an experienced Data Architect to lead the design, implementation, and governance of enterprise-scale data architectures within a secure environment. You will be responsible for ensuring data across systems is accurate, accessible, secure, and aligned to business and technical objectives. The role requires extensive experience delivering data-intensive systems end-to-end, from initial requirements capture through architecture design and implementation to production delivery. You will work closely with customers and stakeholders to translate business needs into robust, scalable data solutions. You will act as a senior technical authority, collaborating proactively with IT teams, data engineers, system engineers, and business stakeholders to define data models, data flows, and governance frameworks. Key Responsibilities Design and implement enterprise-level data architecture solutions, including databases, data warehouses, data lakes, and lakehouse platforms Develop and maintain conceptual, logical, and physical data models Define and enforce data management standards, policies, and best practices Work closely with data engineers to design and optimise ETL/ELT pipelines for structured and unstructured data Ensure data quality, consistency, security, and compliance across platforms Collaborate with business stakeholders to gather requirements and translate them into technical solutions Oversee data integration across cloud and on-premises environments Support and lead data governance initiatives, including metadata management, MDM, and regulatory compliance Evaluate and recommend new data technologies, tools, and platforms Provide technical leadership and mentorship to data engineering and analytics teams Skills and Experience Required Active SC Clearance (mandatory) Bachelor's degree in STEM, Computer Science, Information Systems, Data Science, or related field (Master's preferred) Strong experience in data architecture, database design, or senior data engineering roles High proficiency in SQL and database technologies (e.g. Oracle, SQL Server, PostgreSQL, MySQL) Strong knowledge of data warehouse, data lake, and lakehouse architectures Experience with ETL/ELT frameworks and orchestration tools (e.g. Informatica, Talend, Apache Airflow) Proven experience establishing and maintaining data governance frameworks Strong understanding of data security, access controls, and compliance requirements Excellent problem-solving, communication, and documentation skills Familiarity with AI/ML data pipelines and analytics platforms Preferred Qualifications Experience with cloud data platforms (AWS, Azure, GCP) Experience with big data technologies (Hadoop, Spark, Kafka) Familiarity with UML / SysML Strong understanding of API integration and microservices data flows
