NTT DATA is seeking a highly skilled and independent Senior Security Consultant (Architecture) to provide expert guidance and actively design and implement secure solutions within the Defence & Aviation sectors. This role requires a consultant with a proven ability to translate complex security requirements into robust architectural designs, influencing stakeholders and driving security best practices. This position involves working on high-impact projects that support national security and aviation operations. Key Responsibilities: • Security Architecture Design and Implementation: o Design and implement security architectures that align with industry standards, regulations (JSPs, DEFSTAN), and client requirements. o Conduct security architecture reviews, perform hands-on security assessments, including vulnerability scanning, configuration reviews, and security control validation, identifying vulnerabilities and implementing remediation strategies. o Develop and present security architecture roadmaps and strategic plans and then put those plans into action. o Engineer highly secure contained environments for cloud and on-premises solutions, with a focus on minimizing attack surfaces and preventing unauthorized access. • Risk and Threat Management: o Perform comprehensive risk assessments and threat modelling, providing detailed analysis and acting on recommendations. o Advise clients on risk mitigation strategies and security best practices and lead the implementation of those strategies. o Support security incident response and investigations, and apply lessons learned to improve future security. • Stakeholder Engagement and Technical Leadership: o Act as a trusted advisor to clients, providing expert guidance on highly secure architecture and risk management, and leading technical discussions. o Engage with senior stakeholders, including the MODs CSDA, Air PSyA, and CKEA, to influence security decisions and drive consensus on technical solutions. o Deliver clear and concise presentations and reports to both technical and non-technical audiences and provide technical leadership to project teams. • Security Policy and Standards Implementation: o Advise on the development and implementation of security policies, standards, and procedures, and oversee their enforcement. o Conduct security compliance assessments and audits, taking corrective action to address any gaps. o Ensure alignment with relevant security frameworks and regulations, while proactively identifying and mitigating potential compliance issues. • Technology Evaluation, Deployment, and Management: o Evaluate and recommend security technologies and solutions to meet client needs and lead the deployment and integration of those technologies. o Provide guidance on the implementation of security controls and best practices and manage the ongoing maintenance and optimization of those controls. o Keep up to date with emerging threats and technology, and proactively research and evaluate new security solutions. Qualifications & Experience: • Education and Certifications: o Degree in Computer Science, Information Security, or related field. o Relevant industry certifications (CISSP, CISM, GIAC) are essential. • Experience: o Extensive experience in Enterprise Security Architecture within the Defence/Government or Aviation sectors. o Proven track record of delivering successful security architecture projects from conception to completion. o In-depth knowledge of relevant security standards, regulations (JSPs, DEFSTAN), and best practices. o Hands on experience engineering Cloud security, and network security solutions. o Experience with providing security advice to senior stakeholders and leading technical teams. • Skills: o Expert knowledge of security architecture principles and practices, and the ability to apply those principles in a practical setting. o Strong analytical and problem-solving skills, and the ability to think creatively to develop innovative solutions. o Excellent communication and presentation skills, and the ability to clearly articulate complex technical concepts to a variety of audiences. o Ability to work independently and as part of a team, and the ability to lead and mentor junior team members. o Strong stakeholder management and influencing skills, and the ability to build consensus and drive alignment on security initiatives. The successful candidate must be a sole (not dual) UK national that is able to hold a minimum of UK SC clearance. Hybrid working options but must be willing to work on client site within UK locations.