Security Architect Data Services and Analytics (DSA) - HO - SEO

Data Services and Analytics (DSA) consist of technical and non-technical professionals from a wide variety of backgrounds, we are the hub of data expertise within the department. We support our teams with structured learning, both formal and on-the-job, mentoring and feedback. We embrace diversity and inclusion to ensure we represent the public we serve, and we are passionate about fair treatment and the wellbeing of our colleagues as part of our ambitions to be a brilliant Civil Service. By joining Data Services and Analytics now, you can help drive forward our aim to become recognised as the leading provider of data insight services in Government. 

As a Security Architect (SEO), you will shape secure architectures and services across the Home Office, ensuring our systems stay resilient against evolving threats. Working with Lead and Principal Security Architects, you’ll apply best-practice patterns, risk[1]based controls, and industry frameworks to deliver reliable outcomes. You’ll advise teams on designing robust solutions that meet user needs while maintaining compliance with standards, guidelines, or other relevant policies. In this dynamic, multi-technology environment, you’ll engage with engineers, DevOps practitioners, business stakeholders, and other architects, translating complex security issues into clear recommendations. Through proactive vulnerability assessments and continuous improvement, you’ll help safeguard citizens’ data and maintain public trust. If you value collaboration, innovation, and impactful security solutions, this role offers a chance to make a tangible difference.

Due to business requirements this post is available on a full time/flexible working basis. Where business needs allow, some roles may be suitable for a combination of office and home-based working. Where this is the case, employees will be expected to spend a minimum of 60% of their working time in the office. Applicants can raise any queries to the email address at the bottom of the advert.   

We value diversity and inclusion and welcome applications from the widest diversity of backgrounds, cultures, and experiences. We particularly encourage applications from women, people with disabilities and LGBT+ as they are currently under-represented in the Home Office at this grade level. Appointments will be made on merit based on fair and open competition. 

Job description

In this role, you will design and maintain secure system architectures, partnering with Lead and Principal Security Architects to ensure the Home Office’s risk management strategies are properly executed. By working closely with DevOps, engineering, and broader architecture teams, you’ll provide expert counsel on choosing appropriate controls, performing risk assessments, and balancing security with operational efficiency.

A key part of your remit involves analysing existing infrastructure, identifying vulnerabilities, and implementing mitigations in line with ISO and NCSC guidelines. You’ll translate complicated threats and exposures into straightforward explanations that resonate with both technical teams and non-technical stakeholders. Additionally, you’ll lead or participate in penetration tests and reviews, turning findings into actionable improvements.

Whether you’re recommending new tooling, enforcing best-practice encryption standards, or guiding policy updates, you’ll continuously aim to reduce risks and ensure teams can deliver secure services effectively. Ultimately, your expertise will help shape an environment where user needs, security standards, and business objectives converge to support the Home Office’s vital public mission.

Person specification

Key responsibilities

• Design secure architectures and review existing systems, ensuring alignment with industry frameworks (e.g., ISO 27001, NCSC).
• Collaborate with Lead/Principal Security Architects to implement cohesive security solutions, bridging technical teams and senior stakeholders.
• Advise multidisciplinary groups (Engineering, DevOps, Architecture) on risk assessments, recommending proportionate controls for cloud, on-premise, and hybrid environments.
• Oversee or assist in penetration testing and security assessments, verifying vulnerabilities are identified and tracked to resolution.
• Communicate complex security concepts clearly, helping both technical and non-technical colleagues to understand risks and adopt best practices.
• Maintain awareness of evolving threats, tooling, and methodologies, adapting security strategies to protect critical systems and data.
• Enforce consistent security standards, documenting designs, updating policies, and applying recognized architecture approaches (e.g., SABSA, TOGAF).

Essential skills 

You’ll have a demonstrable passion for Security Architecture, with certified skills or experience in:

• Secure system design – applying best-practice patterns (e.g., zero trust, defense in depth) to manage risk while meeting user requirements.
• Threat and risk assessment – using frameworks like ISO 27001, COBIT, or NIST to identify vulnerabilities, prioritize fixes, and justify decisions.
• Technical expertise – applying security concepts at a technical level, working with security tools, network security infrastructure technologies, and Information Security Management frameworks (e.g. ISO 27000, CoBIT, NIST).
• Penetration testing & remediation – planning or scoping tests, interpreting findings, and guiding improvements to maintain system integrity.
• Effective communication – translating security concepts for diverse audiences, influencing decisions, and promoting secure practices.
• Collaboration – partnering with architects and DevOps teams to ensure alignment between security goals and business objectives.

SFIA capability framework  

Skills for the Information Age (SFIA) is the technical framework that sets the standard capability and development of all levels in the Home Office. This is a link to the capability framework:  All skills A - Z English (sfia-online.org)  

We use set SFIA technical skills to form our interview questions and we will assess you against these technical skills during the selection process.  

The essential skills listed above are reflective of the Home Office Government Digital and Data Profession Career Framework (based on the industry standard SFIA framework- Use the SFIA Levels of responsibility to understand what would be expected for each technical skill listed). Please see below for the relevant skills for your role: 

SFIA Technical skills  

Strategy & Architecture:

• Strategy and Planning
  • Strategic Planning (ITSP) – Level 3
  • Innovation (INOV) – Level 3
  • Enterprise and Business Architecture (STPL) – Level 3
  • Solution Architecture (ARCH) – Level 3
• Advice & Guidance
  • Consultancy (CNSL) – Level 3
  • Specialist Advice (TECH) – Level 3

Technical skills

We'll assess you against these technical skills during the selection process:

• Strategic Planning (ITSP) – Level 3
• Innovation (INOV) – Level 3
• Enterprise and Business Architecture (STPL) – Level 3
• Solution Architecture (ARCH) – Level 3
• Consultancy (CNSL) – Level 3
• Specialist Advice (TECH) – Level 3