Cloud Security Architect

Job Title

Cloud Security Architect

Manchester

Full time

Hybrid, 40% (or two days) in an office site

Friday 13 February 2026

£70,929 - £78,810

Flexibility in when hours are worked, Hybrid Working, Job Share

The Chief Security Office (CSO) is a vital part of delivering the Group's vision of putting customers at the heart of everything we do, helping Britain prosper and protecting the Group and customers from security threats. We’re responsible for defining and communicating Lloyds Banking Group's security strategy and providing a range of critical Enterprise Security Services which not only operate key controls that keep the Group safe but also enable the digital transformation agenda of the wider organisation.

The Cloud Enterprise & Server Security Lab
is at the forefront of this transformation driving secure-by-design principles across multi-cloud environments. We’re looking for a Cloud Security Architect
to shape the future of cloud security architecture and deliver secure, resilient, and scalable solutions.

Are you a forward-thinking Cloud Security Architect ready to make an impact? Do you want to develop secure multi-cloud architectures that accelerate delivery? If you thrive making risk-based decisions, standardising reference patterns, and turning sophisticated threats into clear guardrails – this is your opportunity!

• Develop and enforcereference architectures, patterns, and blueprintsfor secure cloud adoption across Azure, GCP and hybrid environments.
• Conductthreat modelling and security assessments for new cloud services, defining preventative and detective controls (via security guardrails) to maintain secure posture and detect drift.
• Partner with engineering and product teams to embedsecurity guardrails early in design, ensuring compliance and resilience.
• Review external architecture proposals and identify security gaps.
• Document and upholdsecure-by-design principles and architecture governance.
• Collaborate with senior partners to articulate security risks and mitigations.
• Anticipate customer needs taking proactive steps to address them.

We’re on an exciting journey to transform our Group and the way we’re shaping finance for good. We’re focusing on the future, investing in our technologies, workplaces, and colleagues to make our Group a great place for everyone. Including you.

Governance, Risk & Compliance:Risk-based decisions, adherence to regulatory and internal security standards.

Threat Modelling and

Risk Management:

Identify threats and mitigations for complex cloud systems.

Cloud Security Expertise:Broad knowledge across the following Security Domains and their capabilities within Azure/GCP and SME experience in at least one area. Familiarity in AWS is also desirable.

• AI/ML security:
  
  Knowledge of AI/ML threats and risks, with experience applying security controls for secure deployment of AI services in cloud platforms.
• Application Security:
  
  CI/CD Security including secure software supply chain.
• Data Security:
  
  Key, certificate and secrets Management.
• Identity and Access Management:
  Securing user/non-user access at scale.
• Infrastructure Security:
  
  Kubernetes (AKS/GKE/Istio), API Security, IaC security (e.g. Terraform, ARM templates).
• Network Security:
  Zero Trust, firewalls, segmentation, DDoS Protection.
• Security Logging and Monitoring:
  
  Security logging, SIEM integration, event correlation.

• CISSP,CCSP, or equivalent certifications.
• Azure Security Engineer Associate,Google Professional Cloud Security Engineer.
• Microsoft Certified:
  Azure Solutions Architect Expert,Google Professional Cloud Architect.

Our ambition is to be the leading UK business for diversity, equity and inclusion supporting our customers, colleagues and communities and we’re committed to creating an environment in which everyone can thrive, learn and develop.

We were one of the first major organisations to set goals on diversity in senior roles, create a menopause health package, and a dedicated Working with Cancer Initiative.

We offer…