Information Security Architect

🔒 Confidential Employer

Posted 21 March 2026

LOCATION

Manchester

TYPE

Full-time

LEVEL

Mid-Senior level

SKILLS

Information Security Cloud Security ISO27001 NIST Risk Management Security Governance End Point Protection Network Security

FULL DESCRIPTION

To support the Chief Information Security Officer in managing and reporting the Information Security Risks faced by Technology Services (TS) in delivering [Employer hidden — view at passion-project.co.uk]’s systems and services. This role is responsible for facilitating the secure delivery of [Employer hidden]’s technology and business change. The Information Security Architect will play a lead role in designing and implementing security controls and processes. Key to this is assisting and supporting our colleagues in achieving their goals, but in a secure manner.

Key Responsibilities:

Subject matter expertise for security best practice, ensuring the maintenance of the confidentiality, integrity and availability of [Employer hidden]’s systems and data.
Design and implementation of enterprise security technology controls and platforms, following industry best practices.
Supporting and advising on projects and change initiatives to ensure that there is no negative impact on our security posture
Carrying out internal security reviews both on solutions we develop in house and third-party solutions.
Supporting audit and due diligence activities within Technology Services
Working with Information Security, Infrastructure and Architecture to define security standards.
Acts as an integration point between the CISO and [Employer hidden] business and technology teams to ensure security is embedded across the organisation

Technical Skills:

Demonstrable experience of implementing enterprise security platforms
Previous experience of delivering and maintaining of technical enterprise security solutions for (but not limited to) the following areas: End Point Protection, Cloud Security, Network Security, DevOps, Security Monitoring & Remediation is advantageous.
Knowledge of Secure Software Development Life Cycle best practices
Strong understanding and knowledge of Information Security risk management tools and techniques
Experience of security governance and compliance, ideally gained in financial services organisations
Demonstrable understanding of Information Security control standards and frameworks e.g. ISO27001, NIST, PCI DSS
Awareness and understanding of the Information Security threat landscape
Deep understanding of Information Security solutions and controls
Experience of Cloud security solutions and standards is highly advantageous

Competence, knowledge, and skills

Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc.
5 years’ experience in an Information Security role gained in a financial services or e-commerce environment is preferred

Knowledge & Skills

Excellent communicator, able to translate complex topics to all areas of the business
Significant experience in the area of Information security
Strong knowledge of core IT and networking concepts
Well versed in IT security capabilities, framework and concepts
Strong ownership of tasks, attention to detail and following through to conclusion
Ability to challenge approach, strategy and implementation to ensure Information Security is consistently considered and improved
Ability to work under own initiative to plan and communicate effectively with colleagues and customers
Structured, self-starting, flexible and enjoy working in fast-paced environments
Effective communication skills, both written and verbal
Ability to plan, organise and follow through on assigned tasks and complete with little or no prompting from management
Excellent attention to detail
Attained CISSP or similar certification

If you like the sound of the above, or just want to know more about the company and the role, we'd love to speak to you.