Advania UK

Security Architect

Advania UK  •  Manchester, GB (Hybrid)  •  1 hour ago
Apply
AI can make mistakes so check important info. Chat history is never stored.

Job Description

Security Architect

The Security Architect is a senior technical leadership role responsible for defining, governing and evolving secure enterprise architectures across Advania's Managed Services client base.

The role provides strategic and technical leadership across identity, security, cloud, infrastructure, networking, data protection and operational security domains, with a particular focus on Microsoft technologies including Entra ID, Defender, Sentinel, Purview, Azure and Microsoft 365.

Salary & Benefits

Our salaries are competitive within the cyber market

Click herefor the list of benefits.

Hybrid working

We recognise the benefits that remote and flexible working brings.

We operate a hybrid working policy that allows our employees to balance time in the office and time from home. Each team within our organisation can decide how to implement this policy. If you have any questions after applying, please reach out to our recruitment team.

Responsibilities

Key Responsibilities

Security Architecture Leadership

  • Act as the lead security architecture authority across assigned Managed Services clients.

  • Develop enterprise security strategies, roadmaps and target-state architectures.

  • Produce and govern High-Level Designs (HLDs), Low-Level Designs (LLDs) and reference architectures.

  • Ensure architectures align with Zero Trust, Security by Design and Secure by Default principles.

  • Conduct architecture reviews and design assurance activities.

Identity & Access Management Architecture

  • Design and govern enterprise identity strategies across cloud, hybrid and on-premises environments.

  • Lead architecture for:

    • Microsoft Entra ID

    • Active Directory

    • Identity Governance

    • Privileged Identity Management (PIM)

    • Conditional Access

    • Authentication Services

    • Federation

    • Single Sign-On

    • B2B/B2C identity models

  • Define lifecycle management and access governance strategies.

  • Architect integrations between Microsoft identity services and third-party platforms. Managed Identities, Conditional Access, Identity Governance, Enterprise Applications and hybrid identity capabilities are core areas already recognised within Advania's service offerings.

Microsoft Security Architecture

Provide architectural ownership across the Microsoft security ecosystem, including:

  • Microsoft Defender Suite

  • Microsoft Sentinel

  • Microsoft Purview

  • Security Copilot

  • Microsoft Intune

  • Entra ID Security

  • Azure Security Services

  • Microsoft 365 Security & Compliance

Develop security patterns and reference architectures for:

  • Threat protection

  • Identity protection

  • Data protection

  • Insider risk management

  • Security monitoring

  • Compliance

  • AI security

These technologies are explicitly identified as core security architecture domains within Advania's security architecture practice.

Infrastructure & Platform Integration

  • Design secure architectures spanning:

    • Azure

    • AWS

    • Google Cloud

    • On-premises infrastructure

    • SaaS platforms

    • Datacentre environments

Lead secure integration of:

  • Third-party security products

  • Network infrastructure

  • Business applications

  • Identity providers

  • Security operations tooling

  • Assess technical dependencies and integration risks across complex customer estates.

Managed Services Enablement

  • Support the onboarding of customer environments into managed services.

  • Ensure new solutions are operationally supportable.

  • Define service acceptance criteria and operational design requirements.

  • Work alongside SOC, Managed Identity, Azure and Infrastructure teams to establish support models.

  • Provide technical governance throughout the service lifecycle.

Client Advisory & Strategic Engagement

  • Act as trusted advisor to CIO, CTO, CISO and technology leadership teams.

  • Facilitate architecture workshops and strategy sessions.

  • Develop security strategies, maturity roadmaps and investment plans.

  • Present architecture solutions and recommendations to executive and board-level stakeholders.

  • Support client security assessments, audits and transformation programmes.

Service Development

  • Support the creation and evolution of Managed Security Services.

  • Define architecture standards, reusable patterns and technical frameworks.

  • Evaluate emerging technologies and services.

  • Drive innovation across identity, cloud security, AI security and automation.

What Success Looks Like

  • Structural review of 10 clients, understand posture, contract, roadmaps and major risks

  • Develop reusable patterns covering Entra ID, Purview, and Defender for Cloud

  • Support at least 5 qualified opportunities

Qualifications & Experience

Security Architecture

  • Minimum 3-5 years' experience in enterprise security, cloud architecture or cyber security roles.

  • Demonstrable experience operating as a Security Architect, Enterprise Architect or Principal Consultant.

  • Strong understanding of:

    • Zero Trust Architecture

    • Secure Architecture Frameworks

    • Threat Modelling

    • Security Governance

    • Risk Management

    • Security Engineering

    • Data Protection

Microsoft Expertise

Advanced experience across:

  • Microsoft Entra ID

  • Microsoft Defender Suite

  • Microsoft Sentinel

  • Microsoft Purview

  • Microsoft Intune

  • Azure Security

  • Microsoft 365 Security & Compliance

Identity & Access Management

Deep expertise in:

  • Authentication

  • Federation

  • SSO

  • MFA

  • PIM

  • Identity Governance

  • Directory Services

  • Hybrid Identity

Infrastructure

Strong understanding of:

  • Networking

  • Hybrid Infrastructure

  • Azure Landing Zones

  • Cloud Security

  • Cloud based PKI

  • Infrastructure Integration

  • API Security

  • Security Monitoring

Client Engagement

  • Extensive client-facing consultancy experience.

  • Executive stakeholder management.

  • Architecture workshop facilitation.

  • Technical leadership across multiple concurrent clients.

Desirable Experience

  • Managed Services environment.

  • Security Operations integration.

  • Exposure Management and Vulnerability Management platforms.

  • AI security and governance.

  • Multi-cloud security architecture.

  • Secure DevOps / DevSecOps.

  • Regulatory environments including:

    • ISO 27001

    • NIST CSF

    • NIS2

    • Cyber Essentials

    • GDPR

    • DORA

    • FCA / PRA

Certifications

Preferred

  • CISSP

  • CCSP

  • CISM

  • SABSA Practitioner

Microsoft

  • SC-100 Cybersecurity Architect Expert

  • SC-300 Identity & Access Administrator

  • SC-200 Security Operations Analyst

  • AZ-500 Azure Security Engineer

  • AZ-305 Azure Solutions Architect

Success Measures

  • Trusted architecture authority across assigned clients.

  • Security architectures successfully deployed into operational managed services.

  • Increased adoption of Microsoft security technologies.

  • Improved client security maturity and resilience.

  • Growth of architecture-led consultancy and managed service opportunities.

  • Reusable architecture standards and patterns established across the business.

  • Positive client satisfaction and stakeholder feedback.

About Us:
We are the tech company with people at heart.

At Advania, we believe in empowering people to create sustainable value through the clever use of technology. As one of Microsoft's leading partners in the UK, specialising in Azure, Security, Dynamics 365, and Microsoft 365, we have a proven track record of success in delivering transformational IT services.

Our Selection Process:

We are committed to ensuring an equitable experience for all candidates, regardless of race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, or any other basis as protected by applicable law.

Please do let us know if you’ll need any reasonable adjustments as part of the selection process by highlighting these on your application form.

As part of our commitment to our clients we will need to carry out background checks, including a criminal record check, for all offers of employment. If you have any unspent criminal convictions or questions about the screening process, please notify your recruiter once the application has been submitted.

#LI-Hybrid

Advania UK

About Advania UK

We empower people to create sustainable value with the clever use of technology. We believe this is simply necessary for not only sustainable social development, but also the success of our customers.

We’re proud to be one of Microsoft’s leading partners in the UK, specialising in AI, Azure, Security, Dynamics 365 and Microsoft 365.

By aligning ourselves to the evolution of Microsoft, we’ve become a specialist at helping our customers get the most out of their investment. Our deep expertise has led to a long track record of success delivering transformational IT services and solutions for our customers – as evidenced by our awards and accreditations.

Industry
IT & Software
Company Size
1,001-5,000 employees
Headquarters
London, GB
Year Founded
Unknown
Social Media