Principal Enterprise Security Architect - HM Revenue & Customs

Key Responsibilities

• Define and evolve the enterprise security architecture, ensuring alignment with business objectives and regulatory requirements.
• Design, implement and govern Identity and Access Management (IAM) solutions across on‑premise and cloud environments.
• Lead threat modeling, risk assessments and security controls for critical systems, including cloud platforms such as AWS and Azure.
• Develop and maintain security standards, policies and reference architectures, including ISO 27001 and GRC frameworks.
• Collaborate with senior stakeholders, providing expert advice on security strategy, incident response and emerging cyber threats.

Requirements

• Proven experience (8+ years) in security architecture and design for large, complex organisations.
• Deep knowledge of IAM, cloud security (AWS, Azure), network security and threat modeling methodologies.
• Strong understanding of risk management, ISO 27001, and governance, risk and compliance (GRC) practices.
• Excellent communication and influencing skills, with the ability to translate technical concepts for senior leadership.
• Relevant professional certifications (e.g., CISSP, CISM, AWS Certified Security – Specialty) are highly desirable.