Technology Architect

Join a leading independent technology company as a Security Architect - Obsolescence!

Job Overview:
We are seeking a highly experienced Security Architect to provide technical security leadership across multiple projects and programmes primarily addressing technology obsolescence. This role is critical to ensuring that Legacy platforms, infrastructure, and applications are remediated, modernised, retired, or migrated in a secure, compliant, and risk-managed manner.The role requires an experienced technical security architect who has come from a hands-on background but has an Information Assurance (IA) string to their bow. The role will support security assurance and design across multiple projects, some security for security and other security for business apps.

The ideal candidate must have a breadth and depth of knowledge and in particular, have a strong experience in Identity; ZeroTrust; Azure; Network Security; Application Security.The Security Architect will operate at pace, making informed security decisions in complex, time-constrained delivery environments.

Role Title: Security Architect - Obsolescence

Location: 100% remote

Duration: 1 year Start/End Date: 13-Apr-2026 to 12-Apr-2027

Rate: £680/day to £740 via umbrella payroll co-op'

The candidate must have SC Clearance.

Key Responsibilities:

Security Architecture & Technical Leadership

• Lead the design and assurance of security architectures supporting obsolescence remediation initiatives, including system upgrades, platform replacements, migrations, and decommissioning.
• Provide hands-on technical security oversight for Legacy on-premise systems transitioning to modern cloud or hybrid architectures.
• Define secure target-state architectures aligned to enterprise standards, cloud best practices, and obsolescence roadmaps.
• Act as the senior security authority across multiple concurrent projects and programmes.
• Generating security design blueprints and patterns which are re-usable to accelerate design assurance and delivery.

Information Assurance & Risk Management

• Conduct security risk assessments, threat modelling, and impact analysis for obsolete or end-of-life technologies.
• Assess residual risk and define pragmatic remediation or risk acceptance strategies aligned with organisational risk appetite.
• Ensure Information Assurance principles are Embedded throughout solution design, implementation, and transition phases.
• Provide formal security sign-off and assurance artefacts as required by governance forums.

Cloud & Hybrid Security (Azure-Focused)

• Define and validate security requirements for public cloud platforms, with a strong emphasis on Microsoft Azure.
• Ensure security by design for identity, networking, data protection, and workload security in hybrid and cloud-native environments.
• Support migration from traditional data centre architectures to Azure, ensuring continuity of security controls and compliance.
• Guide teams on secure use of Azure-native security capabilities and shared responsibility models.

Security Controls & Tooling

• Define and oversee implementation of security controls covering:
• Identity and Access Management (IAM)
• Network security and segmentation
• Encryption and key management
• Logging, monitoring, and alerting (SIEM)
• Vulnerability and configuration management
• Lead security tooling modernisation, prioritising the effective use of Microsoft native security capabilities where appropriate.
• Ensure Legacy security controls are appropriately replaced or retired as part of obsolescence activities.

Governance, Compliance & Collaboration

• Ensure alignment with regulatory and standards-based requirements (eg, ISO 27001, NIST, GDPR) and internal security policies.
• Collaborate with infrastructure, cloud, application, and programme delivery teams to embed security-by-design.
• Support audit, compliance, and regulatory reviews relating to obsolete or transitioning systems.
• Produce high-quality security documentation, architecture artefacts, and decision records.

Required Skills and Qualifications

• Experience of the UK Defence sector and operating in classifications up to and including OFFICIAL sensitive.
• Demonstrate an understanding of UK GOV Secure by Design
• Proven experience operating at pace, making timely, risk-informed security decisions in complex delivery environments.
• Extensive experience as a Security Architect supporting large-scale transformation, obsolescence, or modernisation programmes.
• Strong technical background in traditional on-premise enterprise architectures, including networks, Servers, identity, and Legacy platforms.
• Demonstrable experience transitioning from on-premise environments to public cloud, with strong expertise in Microsoft Azure.

Deep hands-on knowledge of:

• Cloud security architecture and frameworks
• Identity and access management
• Network and workload security
• Encryption and data protection
• Strong Information Assurance experience within regulated or risk-sensitive environments.
• Experience working across multiple projects and programmes simultaneously.
• Excellent stakeholder engagement, documentation, and communication skills.

Preferred Qualifications

• Security or architecture certifications such as CISSP, CCSP, SABSA, TOGAF, or Azure Security certifications.
• Experience leveraging Microsoft security tooling such as Microsoft Defender, Sentinel, Entra ID, and Azure Policy.
• Background in environments with significant Legacy technical debt and time-bound remediation pressures.

Key Attributes

• Highly technical and pragmatic
• Strong risk-based decision-maker
• Comfortable operating under delivery pressure
• Able to balance security rigor with business outcomes
• Confident engaging at both engineering and senior governance levels

How to Apply: If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.

Hays Talent Solutions is a trading division of Hays Specialist Recruitment Limited and acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found on our website.