Security Architect - CAF - SC Cleared

Security Architect - CAF - SC Cleared We are seeking a Security Architect to lead the design and implementation of security controls for the rollout of Cloud Adoption Framework (CAF) compliance activities within an AWS-based software development programme. The role will ensure alignment with GDS Service Manual principles, delivering secure, resilient solutions across PAWS (Privileged Access Workstations), SOC integration, and device security.Essential Skills & Experience

• Active SC Clearance
• Proven experience as a Security Architect in cloud environments (AWS preferred).
• Strong understanding of UK Government CAF, GDS Service Manual, and related assurance frameworks.
• Expertise in AWS security services (IAM, KMS, GuardDuty, Security Hub, etc.) and MS Azure Entra ID.
• Experience implementing PAWS, SOC integration, and endpoint security controls.
• Knowledge of secure software development lifecycle (SSDLC) and DevSecOps practices.
• Familiarity with ISO 27001, NCSC guidance, and protective monitoring standards.
• Proven experience with Security Architecture frameworks such as SABSA and TOGAF.
• Experience in designing systems/products in line with UK Government Security Group secure-by-design approach/principles.

Desirable Skills

• AWS Certified Security - Specialty or equivalent.
• Experience in public sector or regulated environments.
• Knowledge of container security (ECS/EKS) and CI/CD pipeline hardening.