Amentum is a global leader in engineering, project and programme management, and solutions integration. Built on strong programme and engineering delivery experience, supported by deep specialist capabilities, Amentum is a recognised partner across major UK Government and commercial programmes.
People are at the centre of what we do. We offer a competitive package designed to attract and retain talent. In addition to standard benefits, UK employees receive free single medical cover, digital GP services, enhanced family‑friendly policies, employee assistance programmes, and reimbursement for professional development. Our community initiatives include matched‑funding schemes, paid volunteering, and charitable contributions.
About the Opportunity:
Amentum are offering an exciting opportunity to join our growing team of IT professionals to work on a range of projects for our diverse client portfolio that covers Critical National Infrastructure, National Security, Defence and Nuclear market sectors. Our team is growing and are we looking for proactive and collaborative professionals of all levels to work within us in providing a range of services to our clients. With our deep technical, commercial, and strategic expertise we develop solutions that address our client’s critical challenges supporting digitalisation and security.
We are looking for an individual to join our team supporting ICT system design activities for a UK defence project. You will play an integral role in safeguarding the integrity and confidentiality of our client’s data and systems, responsible for designing, implementing, and maintaining security architectures that protect against a wide range of cyber threats.
Key Responsibilities:
Designing Security Architecture. This is the core responsibility, involving the creation and oversight of robust security architectures for the ICT capabilities we are designing for our client. This includes planning, designing, building, and maintaining the overall security framework in line with SbD.
Strategic Alignment. Ensuring that security architectures align with the client's overall business strategy and technology goals. Translate business needs into security requirements.
Threat and Vulnerability Management. Identifying, assessing, and communicating current and emerging security threats and vulnerabilities. This involves performing or supervising risk analyses and security assessments (including ITHC).
Security Solution Design and Evaluation. Researching, evaluating, and recommending security technologies, tools (e.g., firewalls, VPNs, IDS/IPS, EDR, SIEM, SOAR), and solutions to mitigate identified threats and address security needs.
Policy and Procedure Development: Defining, implementing, and maintaining corporate security policies, standards, and procedures to ensure compliance with industry regulations, legal requirements (e.g., GDPR, HIPAA), and best practices.
Incident Response and Management: Playing a key role in developing incident response plans and coordinating efforts to detect, analyse, and respond to security incidents and breaches.
Stakeholder Communication and Collaboration: Effectively communicating complex security concepts, risks, and recommendations to diverse technical and non-technical stakeholders, including senior management.
Here's What You'll Need:
Degree qualified in Cyber Security, Computer Science, Engineering, or related discipline (or equivalent experience).
Excellent communication and stakeholder engagement skills, with the ability to influence at senior levels.
Strong analytical skills with the ability to break down complex security challenges.
Ability to produce high-quality technical documentation for both technical and non-technical audiences.
Experience:
5 years’ experience as a Security Architect within UK Defence.
Deep understanding of computer systems, networking, and cybersecurity principles. They should possess strong analytical and problem-solving skills, as well as the ability to think critically and creatively to identify and address potential security vulnerabilities.
Knowledge of cybersecurity standards and best practices.
Ability to design and implement security architectures.
Ability to stay up-to-date with the latest cybersecurity threats and trends.
Hands on experience with security technologies such as firewalls, intrusion detection systems, encryption etc.
Standards & Frameworks:
Experience of MOD security standards and principles (e.g., JSP440, JSP453, Secure by Design), and industry frameworks (e.g., NIST Cyber Security Framework, ISO 27001).
Professional certifications such as CISSP, CISM, or NCSC Certified Cyber Professional (CCP) [desirable].
Our Culture:
Our values stand on a foundation of safety, integrity, inclusion, and diversity. We put people at the heart of our business, and we genuinely believe that we all succeed by supporting one another through our culture of caring. We value positive mental health and a sense of belonging for all employees.
We aim to embed inclusion and diversity in everything we do. We know that if we are inclusive, we are more connected, and if we are diverse, we’re more creative. We accept people for who they are, regardless of age, disability, gender identity, gender expression, marital status, mental health, race, faith or belief, sexual orientation, socioeconomic background, and whether you’re pregnant or on family leave. This is reflected in our wide range of Global Employee Networks centred on inclusion and diversity.
We partner with VERCIDA to help us attract and retain diverse talent. For greater online accessibility, please visit Promoting Equality & Diversity in Jobs and Career - VERCIDA to view and access our roles. As a Disability Confident employer, we will interview all disabled applicants who meet the minimum criteria for a vacancy. We welcome applications from candidates who are seeking flexible working and from those who may not meet all the listed requirements for a role.
Your application experience is important to us and we’re keen to adapt to make every interaction even better. We welcome feedback on our recruitment process and if you need more from us before deciding to join us then please let us know.