Cybersecurity Architect- Aerospace and Defence

We are seeking a highly skilled and experiencedCybersecurity Architectto lead the design and implementation of secure systems and infrastructure across enterprise and operational environments. This role is critical in ensuring the confidentiality, integrity, and availability of digital assets within a high-assurance engineering and technology organisation operating across Defence, Aerospace, and Industrial sectors.

• Develop and maintain cybersecurity architecture frameworks aligned with business and regulatory requirements.
• Lead the integration of secure-by-design principles into systems, platforms, and product development lifecycles.
• Conduct risk assessments and produce security documentation including RMADS, SyOPs, Security Cases, and Security Aspects Letters.
• Ensure compliance with relevant standards and frameworks including ISO 27001, NIST SP800, MOD JSPs, DEFSTANs, and airworthiness directives (e.g., DO-326A, DO-178C).
• Design secure cloud and hybrid environments using Azure and AWS, incorporating Zero Trust Architecture and DevSecOps methodologies.
• Collaborate with cross-functional teams to embed cybersecurity into digital transformation initiatives.
• Evaluate emerging threats, technologies, and regulatory changes to inform strategic security decisions.
• Support certification and assurance processes for secure systems and platforms.
• Provide technical leadership and mentoring to engineering and security teams.

• Proven experience in cybersecurity architecture within regulated sectors such as Defence, Aerospace, or Industrial Engineering.
• Strong understanding of enterprise security frameworks, secure system design, and risk management.
• Experience with cloud security, identity and access management, and secure integration patterns.
• Familiarity with cybersecurity tools and platforms including SIEM, endpoint protection, IAM, and vulnerability management.
• Excellent communication and stakeholder engagement skills.
• UK citizenship and eligibility for SC clearance (mandatory).

• Professional certifications such as CISSP, CISM, CCSP, TOGAF, or equivalent.
• Experience with cross-domain solutions and secure communications systems.
• Knowledge of MBSE, SysML, and enterprise architecture tools (e.g., Sparx EA, Cameo).
• Exposure to secure software development practices and DevSecOps pipelines.