Job Description

Key role in ensuring that cyber security is embedded by design into digital, enterprise, and operational technology systems. This role supports the development and implementation of security architectures and standards across the organisation, delivering expert technical input and advising projects and programmes to reduce cyber security risk. Working across the three areas (Enterprise, Security, and Operational Technology), the role provides critical input to protect sensitive systems, data, and infrastructure in a nuclear-regulated environment.

Job Context and Challenges:
The role operates within a complex and regulated environment where security by design is critical to operational safety and national infrastructure protection. Cyber Security Architects must balance technical depth with risk-based pragmatism and be able to operate across a wide range of technology domains. The introduction of these roles is part of a growing cyber capability within the organisation, aligned to the Cyber Assessment Framework (CAF) and wider Digital Strategy. Architects will need to collaborate with colleagues across IT, OT, and business functions to ensure security is embedded consistently.

Principal Accountabilities

• Support the development and implementation of security architectures and patterns aligned to enterprise strategy, regulatory expectations and control standards.
• Provide technical guidance and assurance on cyber security design during project and solution delivery.
• Translate business and technical requirements into secure architectural designs.
• Collaborate with Enterprise, Solution and OT Architects to ensure security is integrated into all designs.
• Assist in defining and maintaining security standards, guidelines, and reference architectures.
• Participate in technical design authorities and review boards, representing cyber security concerns.
• Keep abreast of emerging cyber threats and technologies to provide forward-looking security architecture advice.
• Provide clear and actionable cyber security advice to a range of technical and non-technical stakeholders.
• Support risk assessments, threat modelling and security control selection.
• Champion a ‘Secure by Design’ approach across ISO/ICT.

Authorities & Dimensions
• No direct budget or line management responsibility.
• Responsible for providing technical cyber security advice and assurance.
• Operates across multiple technical domains and project teams.
• May lead work packages or task teams within wider architectural initiatives.

Knowledge & Experience

Essential Skills

• Degree or equivalent experience in cyber security, information systems, or a related technical field.
• Demonstrable experience in a technical cyber security role.
• Knowledge of enterprise IT systems, networks, cloud platforms (e.g. Azure), and associated security practices.
• Familiarity with secure design principles and architecture frameworks.
• Strong written and verbal communication skills, with the ability to explain complex topics clearly.
• Experience of working with stakeholders at multiple levels to influence design decisions.
• Awareness of regulatory and industry frameworks (e.g. CAF, NIST, CIS and NIS Regulations).

Desirable Skills

• Experience working in regulated industries (e.g. nuclear, defence, critical infrastructure).
• Knowledge of Operational Technology (ICS/SCADA systems).
• Understanding of TOGAF or other architecture frameworks.
• Professional cyber security certification (e.g. CISSP, CISM, CCSP).
• Experience contributing to security reference architectures or standards.
• Active membership in a professional body (e.g. CIISec, BCS, IET).

Additional Information

• Open VN
• Number of Vacancies: 1
• Contact: Mike Grice

The interviews for this vacancy are expected to be 17th November onwards.

ASW’s may have the right to apply for internal Sellafield Ltd vacancies. Please note if you are an Agency Supplied Worker you are required to attach evidence of all qualifications obtained to support your application. We require a minimum of A*-C GCSE in English, Maths & Science/IT or equivalent / higher qualification.

If you choose to apply for this role and your application is shortlisted by the hiring manager, you will be invited to a competency based interview. In the interview, you will be assessed against the below competencies:

Behavioural:
1. Team leadership
2. Effective Communication
3. Drive for results

Technical:
1. Technical knowledge of Sellafield Ltd – 313.1
2. Information Security 314.6
3. IT Security 314.7
4. Information Technology Technical Expertise – 38.3

Please see link to the competency framework for further information:
https://slportal.ssa-intra.net/pub/SC001/00027/Competency%20Framework/Forms/AllItems.aspx

If your technical competency is not in the above framework, please refer to the profession’s share point page for further information.

Sellafield Ltd are recognised as a Disability Confident Employer (Level 3). Disability Confident employers offer an interview to disabled applicants that meet the minimum criteria for a vacancy. Sellafield Ltd define the minimum criteria as the ‘essential skills’ which are listed on the vacancy notice. Whilst completing your application form, you will be able to indicate if you wish to be considered under the disability confident scheme. If you would prefer to discuss this directly with us, please contact the GBS Recruitment team on recruitment@sellafieldcloud.co.uk.

Please ensure that you save a copy of this advert for future reference if you make an application for this role.