Security and Infrastructure Architect

Role Overview

We are seeking a technically strong, delivery focused Security and Infrastructure Architect to lead the execution of a strategic transformation programme across infrastructure, cloud, and security. This role plays a central part in evolving a legacy estate into a modern, cloud-native, secure-by-design environment. This is an Opportunity to shape enterprise-wide cloud and security strategy.You will be responsible for completing a detailed roadmap of infrastructure and security enhancements, supporting Windows 11 and Azure migration programmes, and reporting progress to the SLT and Audit Committee.Key Responsibilities

Security Architecture & Roadmap Delivery

• Own and evolve the security roadmap, aligning with requirements and SLT guidance.
• Implement controls and best practices across MFA (apps & infra), AD hardening, email security, and secure transactions.
• Oversee implementation of technical controls: admin account segregation, patch management, endpoint hardening, and remote access policy.

Cloud & Infrastructure Modernisation

• working alongside third party suppliers and lead the Azure migration programme (including Intune, CoPilot, Zero Trust posture).
• Design infrastructure for Windows 11 deployment and manage rollout strategy globally alongside third party suppliers.
• Translate cloud strategy into hybrid and SaaS enabled solutions, identifying legacy components for decommission.

Operational Governance & Execution

• Finalise and document clear, actionable steps to fulfil roadmap recommendations, with associated investment requirements.
• Collaborate with vendors to ensure timely delivery and integration.
• Present progress through structured governance, including monthly updates to SLT and quarterly reports to the Audit Committee.

Essential Experience & Skills

• Proven leadership in delivering infrastructure architecture in regulated, enterprise environments.
• Background across:
• Azure IaaS/PaaS, Microsoft 365 Security, Intune, CoPilot
• Networking (segmentation, firewalls, NAC, remote access)
• Security operations and compliance frameworks (ISO27001, NIST, Cyber Essentials+)
• Windows 10/11 enterprise rollout
• Experienced in writing and delivering architectural documentation (HLDs, LLDs, runbooks, policy documents).
• Track record of engagement with SLT and governance boards, including reporting and presentation.

Desirable

• Experience in Private Equity owned organisations or high pressure transformation programmes.
• Familiarity with tools like BitSight, Duo/EntraID, Sentinel, and automated patching / configuration tools.
• Working knowledge of OT infrastructure and secure manufacturing environments.
• Understanding of both traditional datacentre architecture and cloud-native application patterns.

If you have the skills we are looking for and would like to learn more about the opportunity, please forward your CV

At Gleeson Recruitment Group, we embrace inclusivity and welcome applicants of all backgrounds, experiences, and abilities. We are proud to be a disability confident employer.By applying you will be registered as a candidate with Gleeson Recruitment Limited. Our Privacy Policy is available on our website and explains how we will use your data.