Security Architect

Salary – £78,702.12 – £104,936.16

Closing date – Tuesday 24th February 2026

NATS is the UK’s leading air navigation service provider, handling over 2.4 million flights each year. We provide air traffic control services from two control centres and at airports around the UK. We also provide a wide range of commercial products and solutions internationally. Our people are at the heart of our purpose to advance aviation and keep the skies safe.

Job Purpose/Overview:

Cyber security is central to the success of NATS digital transformation, which is aimed at evolving the services we provide to current and future airspace users. The cyber security Strategy & Architecture team sets the direction for cyber security and uses an architecture framework to help business and operational teams follow this direction. We continue to grow to meet the demand for transformation and we have an opportunity for a Security Architect to join our team.

The role of the Security Architect is to understand enterprise and business unit specific strategies (and constraints) and apply knowledge of cyber security to these, proposing appropriate (e.g., proportional) security strategies and architectures. They support the development of the Enterprise Security Architecture, working with colleagues to agree, scope and publish changes, driven by the programmes they are assigned to or via investments made to address the security threats we face.

The role provides a single point of reference for all security architecture artefacts (e.g. principles, policies and standards) at a NATS and Domain (e.g. Business Unit) level to enable a unified approach for reasoning and defining architectures with security embedded. They provide clear traceability between security risks and security controls to help businesses and projects demonstrate how their solutions / systems comply with regulation and mitigate identified security risks.

They provide reusable models (e.g. security design patterns) that speed up the delivery of change and embed “standard” security controls throughout projects, systems and operations, and incorporate industry best practice, relative to an up-to-date view of the threat landscape, within architecture to ensure defences are developed relative to risk.

They align security activities within NATS ways-of-working (challenge these where appropriate) to help ensure security is more effectively embedded (adoption, time, money) where it is needed and drive a continuous improvement programme of change that delivers enhanced security controls where these are needed, on an incremental and proportional basis.

Other Duties Include:

  • Lead the definition and modelling of current and future security capabilities to identify areas for improvement, guide product and service designs, and comply with corporate, legislative, contractual, or regulatory requirements.
  • Find and direct pragmatic approaches for the security architecture to match business needs and adhere to broader reference architectures.
  • Lead the identification, development, and management of security architecture principles & policies to ensure design, development, implementation and operating boundaries.
  • Provide business areas with cyber security thought leadership and subject matter expertise to help them align their security controls and approaches with NATS security strategy & enterprise security architecture.
  • Create and communicate baseline security requirements to ensure consistency in designs and supplier contracts.
  • Ensure that all security architecture-related knowledge is digitised and readily accessible for use by other teams.
  • Attend governance boards to guide and advise Service Designers to align designs to architecture, strategy, principles, and policies.
  • Lead the identification of strategic and emerging security technology capabilities and engage with external partners for innovative, improved or better fit opportunities for NATS.
  • Collaborate with external aviation and cyber security organisations to acquire knowledge that can be used inform our security strategy & architecture.
  • Actively solicit feedback from all relevant areas of the business that can be used to update enterprise security strategy and architecture, the reusable capabilities and guidance it incorporates.
  • Work alongside a solution design team to develop the security plan, requirements and design(s) necessary to reconcile the security risks identified with suitable (e.g. proportional) security controls for inclusion within the target solution.
  • Provide NATS and partner teams with specialist advice that would help them understand and align their work with NATS security strategy and architecture (enterprise and business unit specific).
  • Leads on cyber and security related matters affecting the overall Enterprise Security Architecture.
  • Support teams, with security risks assessments, threat modelling and identify appropriate NATS security controls to mitigate the threats / risks identified.
  • Advise product and service teams on how to apply existing security standards and capabilities (NATS and industry) to their product and service strategies, architectures and designs.
  • Review and assure service designs’ adherence to the Enterprise Security Architecture, principles, policies and standards.
  • Work with assurance stakeholders to scope security related audits with an understanding of the threats that need to be mitigated and the corresponding criteria for assessment.
  • Consult on supplier contracts & procurement activities to ensure their adherence to NATS security strategy & enterprise security architecture.

Essential Skills and Experience:

  • Degree in a relevant Business or IT technical qualification or equivalent of knowledge acquired through experience, other qualifications and training/development.
  • Subject Matter Expert in a wide range of security technologies, with working knowledge of their integration, configuration and deployment needs. Brings broad experience in most of the following: Cloud, Enterprise IT, Operational Technology, safety critical systems, software development, emerging technology, AI, Quantum etc.
  • Certified to one of the following: CISSP, CISM, CRISC, CISA, or equivalent professional certification or experience
  • Demonstrable architectural experience with the practical application of NIST, SABSA, TOGAF, or equivalent security frameworks.
  • Able to assimilate and consider issues from the technical, operational, contractual and business perspective, supported by a pragmatic attitude to the implementation of security in a complex and diverse organisation.
  • Comprehensive experience in the approaches required to identify, quantify and address cyber security risks
  • Experience of the development and implementation of appropriate risk mitigation plans, processes, and technical controls relative to the policies they must address.
  • Good working knowledge of an Information Security Management System and the ISO27000 series / appreciation of Cyber Essentials preferred.
  • Full system delivery lifecycle experience (e.g. waterfall or agile etc), with expertise at the application of security thinking at each lifecycle phase.
  • Good understanding of ITIL methodologies and standards (ITILv3 and above, Foundation level) or applicable framework.
  • An accomplished and credible leader with a proven ability to set direction and make sound, timely decisions that deliver business outcomes. Provides clarity of purpose, inspires confidence, and fosters a culture of accountability and excellence.
  • Builds strong cross-functional networks, aligning diverse disciplines and viewpoints to deliver results. Demonstrates diplomacy and resilience in overcoming resistance and securing commitment to shared goals.
  • An excellent communicator with a proven ability to influence, challenge, and negotiate at all levels, both within the organisation and with external partners. Skilled at simplifying complex issues and ensuring consideration of both technical and business perspectives when shaping decisions.
  • Demonstrates a commitment to continuous improvement and professional growth, actively developing self and others to build organisational capability and future leadership strength.

Additional Vacancy Information:

We are proud to offer a fantastic total reward package to help you thrive both personally and professionally – for more information on what NATS can offer you please visit – Why NATS?

We have adopted agile working to provide greater flexibility and increased choice over working arrangements, with the opportunity to work in our modern office facilities as well as remotely. We also welcome discussions on flexible and part-time working arrangements. Find out more here.

If you share our passion to advance aviation and keep the skies safe – we would like to hear from you whatever your age, sex, race, faith, sexual orientation, gender identity, gender expression, visible or invisible disability. Individuals that bring different perspectives, skills, life experiences and backgrounds help us be at the forefront of our industry.

Job Information

Job Reference: 1193_1770740592
Salary: £78702.12 - £104936.16 per annum
Salary From: £78702.12
Salary To: £104936.16
Job Industries: Aerospace
Job Locations: Whiteley, Hampshire
Job Types: Permanent
Job Skills: CNI, NATS, security architect
Apply Now

Accessibility

Company Search

Commercial Manager (Economic Development and Stakeholder Relations) 1 week ago

Maritime and Coastguard Agency (MCA)

Salary Offer: £57,515 - A Civil Service Pension with an employer contribution of 28.97%

Job Search

Company Search

Login/Register

Login

Register

Contact

info@inclusivecompanies.co.uk

0151 708 5775