CFC

Security Architect

CFC

full-time

Posted on:

Location Type: Hybrid

Location: LondonUnited Kingdom

Visit company website

Explore more

AI Apply
Apply

Tech Stack

AWSAzureCloudSDLC

About the role

  • Work daily with the Group CISO to ensure consistent high standards in your areas of responsibility.
  • Ensure global adherence to security practices.
  • Lead the design and review of secure architecture across strategic change projects.
  • Define and implement SDLC security standards and best practices.
  • Develop and enforce API security standards and secure integration patterns.
  • Conduct threat modelling and risk assessments for new technology implementations.
  • Ensure alignment with enterprise architecture and regulatory frameworks.
  • Support the integration of DevSecOps practices and secure CI/CD pipelines.
  • Collaborate with engineering, architecture, and compliance teams to embed security from project inception.
  • Provide expert guidance on privacy-by-design and operational resilience requirements.

Requirements

  • Proven experience as a Security Architect, ideally with more than five years in regulated environments.
  • Familiarity with regulatory frameworks across the US, UK, and Australia is important.
  • Holding relevant certifications such as CISSP, SABSA, TOGAF, or AWS/Azure Security is highly desirable.
  • Exceptional understanding of secure software development, cloud security, and API security is essential.
  • Experience working with DevSecOps, CI/CD pipelines, and modern development practices is beneficial.
  • Strong skills in conducting threat modelling, performing risk assessments, and reviewing solution architectures.
  • Excellent communication and stakeholder engagement abilities.
Benefits
  • **Love what you do:** We show up each day ready to take on the world. Our passion and intensity set us apart and makes the difference to our colleagues, customers, brokers and carriers.
  • **Challenge everything:** We’re never afraid to question the way that things are done and we constantly challenge ourselves and others to makes things better.
  • **Have fun, be good:** Insurance is a serious business, but we don’t take ourselves too seriously. We make it fun to work at CFC, we welcome all viewpoints, and we treat everyone how we would expect to be treated.
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
security architectureSDLC security standardsAPI securitythreat modellingrisk assessmentsDevSecOpsCI/CD pipelinescloud securitysecure software developmentprivacy-by-design
Soft Skills
communicationstakeholder engagement
Certifications
CISSPSABSATOGAFAWS SecurityAzure Security