Enterprise Security Architect - Consultancy

Keen to join a company that champions growth and development?

Join one of the world's leading IT services, consulting, and business solutions organization. Backed by decades of experience, the company consistently ranks among the top global IT service providers. With an international presence across multiple countries, the company has built a reputation for delivering high-quality technology services across industries including banking, healthcare, telecommunications, and retail.

The consulting firm is looking for a senior security professional to lead the implementation of the CIS Critical Security Controls across a large enterprise on a 6-month contract based in London. This role combines strategic leadership with hands-on technical expertise, driving the transition to a CIS-aligned security framework while working across infrastructure, cloud environments, governance, and senior stakeholder engagement.

If you would like to learn more about this opportunity, feel free to reach out and apply today!

Responsibilities:

• Lead the end-to-end design and implementation roadmap for CIS Controls (v8 or latest), mapping existing technical controls to the CIS framework.
• Define and enforce secure architecture patterns across on-premises, hybrid, and multi-cloud environments (AWS, Azure, GCP) in line with CIS Benchmarks.
• Develop enterprise-wide security policies, standards, and procedures aligned to CIS Implementation Groups (IG1, IG2, IG3).
• Oversee technical implementation by collaborating with DevOps, Network Engineering, and IT Operations to automate security configurations, hardening, and patching.
• Serve as the primary subject matter expert, reporting on security requirements, risk posture, and programme milestones to executive leadership and technical teams alike.

Skills/Must Have:

• CIS Controls expertise - Deep, hands-on experience implementing CIS Critical Security Controls at scale within large, complex enterprise environments.
• Cloud security architecture - Strong architectural design experience across AWS, Azure, and GCP, including cloud-native security practices and secure migration programmes.
• Security automation & IaC - Proficiency in "Security as Code" principles with hands-on experience in Python, PowerShell, Terraform, or Ansible for automated hardening and configuration management.
• Senior stakeholder management - Proven ability to engage and influence at executive level, translating complex security risks into clear business language through reports and presentations.
• Broad cybersecurity seniority - 10+ years in cybersecurity with a minimum of 5 years in a senior architecture role; ideally holding certifications such as CISSP, CISSP-ISSAP, or cloud-specific security credentials.

Contract Details:

• Contract Type: Initial 6 month contract (Inside IR35)
• Location: Hybrid in London

Salary:

• £700 per day Inside IR35