ARM
Cyber Solution Architect (Digital Platforms & Trading Systems) 8-Month contract - Inside IR35 - market rate London based - hybrid working - 3 days a week onsite Must have Base Metals trading experience Role Overview We are looking for a hands-on, highly technical Cyber Solution Architect to design and deliver secure solutions across our digital platform ecosystem, with a strong focus on Base Metals Order Execution Management Systems (OEMS). This role requires deep technical expertise, practical implementation capability, and the ability to embed security into complex, low-latency trading environments. Key Responsibilities Design and implement secure, scalable cyber solutions for digital platforms, including OEMS and associated trading infrastructure. Act as a hands-on architect, contributing directly to solution design, engineering decisions, and security implementation. Develop and maintain security architecture patterns, reference models, and solution blueprints. Lead security design for Base Metals OEMS platforms, ensuring alignment with performance, resilience, and regulatory requirements. Perform threat modelling, security risk assessments, and architecture reviews. Integrate security into DevOps pipelines, promoting DevSecOps best practices. Collaborate with engineering, infrastructure, and business teams to ensure security is embedded by design. Provide technical oversight on identity and access management (IAM), encryption, API security, and network security. Evaluate and implement security tooling (e.g., SIEM, EDR, DLP, WAF) within platform environments. Support incident response activities and provide expert guidance on security incidents affecting trading systems. Required Skills & Experience Proven experience in a Cyber Solution Architect role with strong hands-on delivery capability. Deep technical knowledge across application, infrastructure, network, and cloud security domains. Demonstrated experience securing digital platforms in complex enterprise environments. Strong understanding of Order Execution Management Systems (OEMS), ideally within Base Metals or commodities trading. Experience in commodities or financial trading environments (particularly Base Metals). Understanding of regulatory requirements relevant to trading systems. Knowledge of trading workflows, low-latency systems, and associated cyber risks. Experience with cloud platforms (AWS, Azure, or GCP) and cloud-native security architecture. Strong familiarity with security frameworks (e.g., NIST, ISO 27001, CIS). Experience implementing security controls including IAM, encryption, endpoint protection, and monitoring solutions. Proficiency in scripting or programming (e.g., Python, PowerShell, Bash). Desirable Skills Experience with high-frequency or algorithmic trading security. Knowledge of Zero Trust architecture and modern identity frameworks. Relevant certifications such as CISSP, CCSP, or TOGAF. Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission. Where the role is marked as Outside IR35 in the advertisement this is subject to receipt of a final Status Determination Statement from the end Client and may be subject to change.
Cyber Solution Architect (Digital Platforms & Trading Systems) 8-Month contract - Inside IR35 - market rate London based - hybrid working - 3 days a week onsite Must have Base Metals trading experience Role Overview We are looking for a hands-on, highly technical Cyber Solution Architect to design and deliver secure solutions across our digital platform ecosystem, with a strong focus on Base Metals Order Execution Management Systems (OEMS). This role requires deep technical expertise, practical implementation capability, and the ability to embed security into complex, low-latency trading environments. Key Responsibilities Design and implement secure, scalable cyber solutions for digital platforms, including OEMS and associated trading infrastructure. Act as a hands-on architect, contributing directly to solution design, engineering decisions, and security implementation. Develop and maintain security architecture patterns, reference models, and solution blueprints. Lead security design for Base Metals OEMS platforms, ensuring alignment with performance, resilience, and regulatory requirements. Perform threat modelling, security risk assessments, and architecture reviews. Integrate security into DevOps pipelines, promoting DevSecOps best practices. Collaborate with engineering, infrastructure, and business teams to ensure security is embedded by design. Provide technical oversight on identity and access management (IAM), encryption, API security, and network security. Evaluate and implement security tooling (e.g., SIEM, EDR, DLP, WAF) within platform environments. Support incident response activities and provide expert guidance on security incidents affecting trading systems. Required Skills & Experience Proven experience in a Cyber Solution Architect role with strong hands-on delivery capability. Deep technical knowledge across application, infrastructure, network, and cloud security domains. Demonstrated experience securing digital platforms in complex enterprise environments. Strong understanding of Order Execution Management Systems (OEMS), ideally within Base Metals or commodities trading. Experience in commodities or financial trading environments (particularly Base Metals). Understanding of regulatory requirements relevant to trading systems. Knowledge of trading workflows, low-latency systems, and associated cyber risks. Experience with cloud platforms (AWS, Azure, or GCP) and cloud-native security architecture. Strong familiarity with security frameworks (e.g., NIST, ISO 27001, CIS). Experience implementing security controls including IAM, encryption, endpoint protection, and monitoring solutions. Proficiency in scripting or programming (e.g., Python, PowerShell, Bash). Desirable Skills Experience with high-frequency or algorithmic trading security. Knowledge of Zero Trust architecture and modern identity frameworks. Relevant certifications such as CISSP, CCSP, or TOGAF. Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission. Where the role is marked as Outside IR35 in the advertisement this is subject to receipt of a final Status Determination Statement from the end Client and may be subject to change.
WTW
The Senior Cyber Security Architect is a strategic technical leader responsible for designing, implementing, and evolving the organization's enterprise security architecture to protect critical assets, systems, and data. This role partners with senior IT, engineering, and business leaders to define security principles, standards, and roadmaps that align with business objectives while mitigating cyber risk. The Senior Cyber Security Architect serves as the primary subject matter expert on secure architecture design, emerging threats, and security technology evaluation, ensuring the organization is protected against both current and future cyber risks. The Role Security Architecture & Strategy Develop, maintain, and communicate the enterprise security architecture framework, patterns, and standards. Translate business and technical requirements into secure, scalable, and resilient architecture solutions. Define and champion the organization's secure-by-design and zero trust strategies. Align architecture decisions with regulatory requirements, industry best practices, and organizational risk appetite. Solution Design & Governance Provide architecture oversight and guidance for IT and business projects to ensure compliance with security standards. Conduct architecture reviews and threat modeling for new and existing systems, applications, and cloud deployments. Advise on secure integration of on-premises, hybrid, and multi-cloud environments. Collaborate with DevSecOps teams to embed security in the software development lifecycle (SDLC). Technology Evaluation & Innovation Research and assess emerging security technologies, tools, and practices for enterprise adoption. Drive the evaluation, selection, and implementation of security platforms (e.g., IAM, PAM, SIEM, EDR, NDR, CASB). Partner with infrastructure and network teams to enhance security posture without impeding operational efficiency. Risk Management & Compliance Ensure architecture designs meet compliance requirements such as NIST CSF, ISO 27001, DORA, and local data protection regulations. Support security risk assessments and recommend remediation strategies for high-risk findings. Collaborate with governance, risk, and compliance (GRC) teams to maintain audit readiness. Leadership & Influence Serve as a trusted advisor to the CISO, CTO, and senior business leaders on security architecture matters. Mentor junior architects and security engineers, fostering technical excellence and innovation. Represent the organization in external security forums and architecture working groups. The Requirements Progressive experience in cybersecurity, with experience in an architecture leadership role. Deep expertise in security architecture across cloud, application, network, and endpoint domains. Strong knowledge of zero trust principles, secure cloud architecture (AWS, Azure, GCP), and modern identity solutions (IAM, PAM, MFA, SSO). Familiarity with enterprise security frameworks and regulations (e.g., NIST CSF, TOGAF, SABSA, DORA, GDPR). Relevant certifications (e.g., CISSP, CCSP, SABSA, AWS/Azure Security Specialty) strongly preferred. Exceptional communication, stakeholder management, and influencing skills. Bachelor's degree in Computer Science, Information Security, or related field is preferred. At WTW, we believe difference makes us stronger. We want our workforce to reflect the different and varied markets we operate in and to build a culture of inclusivity that makes colleagues feel welcome, valued and empowered to bring their whole selves to work every day. We are an equal opportunity employer committed to fostering an inclusive work environment throughout our organisation. We embrace all types of diversity. We're committed to equal employment opportunity and provide application, interview and workplace adjustments and accommodations to all applicants. If you foresee any barriers, from the application process through to joining WTW, please contact your recruiter.
The Senior Cyber Security Architect is a strategic technical leader responsible for designing, implementing, and evolving the organization's enterprise security architecture to protect critical assets, systems, and data. This role partners with senior IT, engineering, and business leaders to define security principles, standards, and roadmaps that align with business objectives while mitigating cyber risk. The Senior Cyber Security Architect serves as the primary subject matter expert on secure architecture design, emerging threats, and security technology evaluation, ensuring the organization is protected against both current and future cyber risks. The Role Security Architecture & Strategy Develop, maintain, and communicate the enterprise security architecture framework, patterns, and standards. Translate business and technical requirements into secure, scalable, and resilient architecture solutions. Define and champion the organization's secure-by-design and zero trust strategies. Align architecture decisions with regulatory requirements, industry best practices, and organizational risk appetite. Solution Design & Governance Provide architecture oversight and guidance for IT and business projects to ensure compliance with security standards. Conduct architecture reviews and threat modeling for new and existing systems, applications, and cloud deployments. Advise on secure integration of on-premises, hybrid, and multi-cloud environments. Collaborate with DevSecOps teams to embed security in the software development lifecycle (SDLC). Technology Evaluation & Innovation Research and assess emerging security technologies, tools, and practices for enterprise adoption. Drive the evaluation, selection, and implementation of security platforms (e.g., IAM, PAM, SIEM, EDR, NDR, CASB). Partner with infrastructure and network teams to enhance security posture without impeding operational efficiency. Risk Management & Compliance Ensure architecture designs meet compliance requirements such as NIST CSF, ISO 27001, DORA, and local data protection regulations. Support security risk assessments and recommend remediation strategies for high-risk findings. Collaborate with governance, risk, and compliance (GRC) teams to maintain audit readiness. Leadership & Influence Serve as a trusted advisor to the CISO, CTO, and senior business leaders on security architecture matters. Mentor junior architects and security engineers, fostering technical excellence and innovation. Represent the organization in external security forums and architecture working groups. The Requirements Progressive experience in cybersecurity, with experience in an architecture leadership role. Deep expertise in security architecture across cloud, application, network, and endpoint domains. Strong knowledge of zero trust principles, secure cloud architecture (AWS, Azure, GCP), and modern identity solutions (IAM, PAM, MFA, SSO). Familiarity with enterprise security frameworks and regulations (e.g., NIST CSF, TOGAF, SABSA, DORA, GDPR). Relevant certifications (e.g., CISSP, CCSP, SABSA, AWS/Azure Security Specialty) strongly preferred. Exceptional communication, stakeholder management, and influencing skills. Bachelor's degree in Computer Science, Information Security, or related field is preferred. At WTW, we believe difference makes us stronger. We want our workforce to reflect the different and varied markets we operate in and to build a culture of inclusivity that makes colleagues feel welcome, valued and empowered to bring their whole selves to work every day. We are an equal opportunity employer committed to fostering an inclusive work environment throughout our organisation. We embrace all types of diversity. We're committed to equal employment opportunity and provide application, interview and workplace adjustments and accommodations to all applicants. If you foresee any barriers, from the application process through to joining WTW, please contact your recruiter.
