Aker Systems was founded in 2017 by a team of experienced technology professionals who recognised an opportunity to provide highly secure enterprise data platforms to large organisations. Aker builds and operates ground-breaking, ultra-secure, high performance, cloud-based data infrastructure for the enterprise. Our proprietary technology solutions drive performance and reduce costs while helping our clients to improve the management and sharing of data across their organisations. In 2022, Aker Systems was proud to win the ‘Scale up Business of the Year’ award by the British Business Excellence Awards. In 2020 Aker Systems was recognised as a ‘One to Watch’ on the Sunday Times Tech Track and was also recognised at the Thames Valley Tech Awards 2020; winning the Thames Valley Tech Company of the year, the Emerging Tech Company and High Growth Tech Business categories. Most recently in September 2021, we were successfully acquired by a new investor (Abry Partners) who have a deep industry expertise in our field to support us in the next part of our journey and as we continue to grow and diversify as a business. We encourage people of all different backgrounds and identities to apply. We are committed to maintaining an inclusive, and supportive place for you do your very best work. Aker Systems designs, builds & operates advanced, ultra-secure data infrastructure, delivering data modernisation at enterprise scale to enable AI-driven transformation and seamless sharing of trusted data at scale, predominantly for highly regulated and Central Government clients in the UK. Aker has proven tech-enabled service offerings - covering the entire client lifecycle through strategic cloud & data capability leadership, secure cloud and data infrastructure modernisation, managed services in client environments and data & platform engineering. Aker powers AI digital transformation through trusted, enterprise scale data modernisation with proven mission critical, secure, trusted and real-time expertise & solutions. With deeply trusted relationships and influence, innovative technology and excellent delivery track record. Client Focus You will be working for national security and defence clients in the Southwest, across both short and long-lived programmes of work, as part of an Agile team of likeminded individuals that thrive on solving real-world problems, keeping the UK safe. Due to the nature of the work and the customers, you must hold enhanced DV Security Clearance. Duties & Responsibilities As an Aker Lead Security Architect, you will be a recognised subject matter expert in security, risk management and compliance with demonstratable experience in UK National Security and Defence. You will build effective working relationships with delivery team members and Aker customers and operate without supervision as a security lead across multiple projects and platforms, with extensive latitude for independent judgment to drive the required outcomes for Aker and its customers. You will: Lead client-specific security and assurance of highly complex, cloud-centric data and digital services across entire lifecycle (strategy, design, implementation and operations) Provide oversight and guidance on Defence security standards and processes including JSP 440, NATO Cyber Security Framework, Defence Service Manual Provide specialist advice and knowledge of HMG government security architecture and assurance to OFFICIAL, SECRET and above classifications. Provide specialist advice and knowledge of Cloud (Azure, AWS, GCP) cloud-based security architectures. Define and lead external security testing e.g. ITHC of solutions on the cloud (Azure, AWS, GCP), cloud native platforms (Docker, Kubernetes, etc.), and Software as a Service (SaaS) solutions. Formulate HMG Information Assurance Risk Assessment and Risk Treatment Plans Formulate Threat Models Establish security requirements by evaluating business strategies and requirements, implementing security standards such as ISO 27000 series and NIST 800-53, Continually evaluate new threats to identify the impact on IT and the business to develop and implement security controls. Provide direction, analysis and design facilitation to develop, maintain and govern a customer security architecture. Ensure that architecture principles, designs, technologies, methods and practices are properly executed. Core Competencies You will have 10 years of relevant experience in Production environments, and you can clearly demonstrate the following competencies. Domain expertise: Detailed knowledge of Defence standards and processes including JSP 440, NATO Cyber Security Framework, Defence Service Manual Experience of security solution design at OFFICIAL, SECRET and above. Significant public cloud (AWS/Azure/GCP) and hybrid cloud security architecture experience across multiple domains: Cloud, Network, Infrastructure, Application, Data, IAM Cloud security concepts, technologies and best practices for delivering security across IaaS, PaaS, SaaS and Serverless architectures Implementing Information Security and Privacy Standards and Frameworks (e.g. ISO 27k, NIST800-53.) Leading security working groups and external security testing (ITHC, Penetration Testing, etc) of cloud solutions at high HMG classification levels. Designing & delivering secure systems & tooling: Working directly with engineering teams to design and review system/data architectures through the development of patterns and principles Working within environments utilising DevOps, DevSecOps, SRE, CI/CD, Infrastructure & Security as Code (Docker, Git, Terraform) Managing technical assessments of security related technologies, vulnerability assessments and penetration tools and techniques Enabling & informing risk-based decisions: Working with higher impact or more complex risks, advising on the impact and whether this is within risk tolerance Understanding and articulate the impact of vulnerabilities and required controls and mitigations on existing and future designs and systems Communication with different stakeholders: Demonstrate a deep understanding of security concepts and can apply them to a technical level to guide engineering teams Effectively translate and accurately communicate security and risk implications to technical and non-technical stakeholders Manage delivery manager and stakeholder expectations and be flexible, adapting to stakeholder reactions to reach consensus Aker Systems Attributes At Aker we work as a team, we are collaborative, hardworking, open, and delivery obsessed. There is no blame culture here: try things, and take responsibility for the outcomes. You are always part of the wider Aker. We help out our colleagues and take pride in successfully achieving difficult tasks. We run towards problems and help solve them. Communicate always, do so accurately and in a timely fashion. In return, we offer a competitive salary, 25 days holiday (excluding bank holidays), Company Paid Medical Insurance, Life Assurance (4x times basic salary), Pension scheme, Perks at Work, Cycle Scheme, Tech Scheme and Season Ticket Loan. Plus, a list of voluntary benefits including Dental Insurance, Critical illness cover, Virtual GP. Equal Opportunities Aker Systems fosters a diverse environment that encourages openness in its communications and is committed to providing equal employment opportunity for all people regardless of race, religion, gender or sexual orientation, age, marital status, national origin, citizenship status, disability, veteran status or other personal characteristics. We embrace differences of opinion and diversity because they help challenge us and find new groundbreaking technical solutions.