Security Architect

Posted 1 day 5 hours ago by Trainline

Permanent
Not Specified
Other
London, United Kingdom
Job Description

About us:

We are champions of rail, inspired to build a greener, more sustainable future of travel. Trainline enables millions of travellers to find and book the best value tickets across carriers, fares, and journey options through our highly rated mobile app, website, and B2B partner channels.

Great journeys start with Trainline

Now Europe's number 1 downloaded rail app, with over 125 million monthly visits and £5.9 billion in annual ticket sales, we collaborate with 270+ rail and coach companies in over 40 countries. We want to create a world where travel is as simple, seamless, eco-friendly and affordable as it should be.

Today, we're a FTSE 250 company driven by our incredible team of over 1,000 Trainliners from 50+ nationalities, based across London, Paris, Barcelona, Milan, Edinburgh and Madrid. With our focus on growth in the UK and Europe, now is the perfect time to join us on this high-speed journey.

Introducing our Security

Trainline is investing in the next evolution of our security program-and we're hiring a Principal Security Architect to lead our enterprise-wide architecture vision. This hybrid role sits at the intersection of corporate IT security and cloud-native product security, shaping strategy and execution across a complex, fast-moving environment.

As part of Trainline's Information Security (InfoSec) team, reporting to the CISO, the Principal Security Architect you will define our Zero Trust architecture, embed secure-by-design thinking across engineering workflows, and partner with leaders across Platform, Engineering, Corporate Functions and GRC to uplift security maturity across both employee-facing and customer-facing systems.

The Principal Security Architect will bring hands-on experience in technical design with proven ability to influence stakeholders-from IT and DevOps to Product Engineering and Compliance Teams. Joining at a key moment of expansion across the security team, you will have the ability to make immediate and visible impact on the mission-driven strategy of the team.

As a Security Architect at Trainline, you will

  • Define and own the enterprise-wide security architecture blueprint across corporate and product domains.

  • Drive the Trainline Zero Trust initiative, spanning identity, device, network, and application layers.

  • Lead secure design reviews and threat modelling for key product and infrastructure initiatives.

  • Develop reference architectures and reusable security design patterns.

  • Collaborate with the IAM Engineer to architect enterprise identity and access management

  • Enforce secure configurations across SaaS, endpoint, and MDM platforms (e.g., CrowdStrike, Jamf, Intune).

  • Evaluate and guide SaaS tool usage, integrations, and risk mitigation.

  • Design and maintain DLP, insider threat, and device posture enforcement capabilities.

  • Collaborate with product and platform engineering teams to embed security into the SDLC and CI/CD.

  • Define security controls for cloud-native services in AWS (IAM, KMS, GuardDuty, VPC security, etc.).

  • Contribute to secure API design, secrets management, service-to-service auth, and cloud segmentation.

  • Provide architectural governance input into vendor risk, procurement reviews, and data privacy design.

  • Provide input as the security architecture voice in planning meetings, engineering forums, and GRC efforts to ensure Security by Design.

We'd love to hear from you if you have

  • Proven experience in security roles, with a focus on architecture across both corporate and product domains.

  • Demonstrable experience implementing Zero Trust in a cloud-first, SaaS-heavy environment.

  • Strong knowledge of Cloud security architecture and tools (Preferably AWS).

  • Experience with securing enterprise IT tools (O365, MDM, DLP, CASB).

  • Familiarity with compliance frameworks (e.g., ISO 27001, PCI DSS, GDPR).

  • Strong communication skills: equally comfortable in technical architecture forums and executive briefings.

  • Strategic mindset with a bias for action and iterative delivery.

  • Comfortable navigating ambiguity, competing priorities, and organisational scale-up challenges.

More information:

Enjoy fantastic perks like private healthcare & dental insurance, a generous work from abroad policy, 2-for-1 share purchase plans, an EV Scheme to further reduce carbon emissions, extra festive time off, and excellent family-friendly benefits.

We prioritise career growth with clear career paths, transparent pay bands, personal learning budgets, and regular learning days. Jump on board and supercharge your career from day one!

Our values represent the things that matter most to us and what we live and breathe everyday, in everything we do:

  • Think Big - We're building the future of rail

  • Own It - We focus on every customer, partner and journey

  • Travel Together - We're one team

  • Do Good - We make a positive impact

We know that having a diverse team makes us better and helps us succeed. And we mean all forms of diversity - gender, ethnicity, sexuality, disability, nationality and diversity of thought. That's why we're committed to creating inclusive places to work, where everyone belongs and differences are valued and celebrated.

Interested in finding out more about what it's like to work at Trainline? Why not check us out on LinkedIn , Instagram and Glassdoor !