Security and Infrastructure Architect

Role Overview

This is an Opportunity to shape enterprise-wide cloud and security strategy.

You will be responsible for completing a detailed roadmap of infrastructure and security enhancements, supporting Windows 11 and Azure migration programmes, and reporting progress to the SLT and Audit Committee.

Key Responsibilities

• Own and evolve the security roadmap, aligning with requirements and SLT guidance.
• Implement controls and best practices across MFA (apps & infra), AD hardening, email security, and secure transactions.
• Oversee implementation of technical controls: admin account segregation, patch management, endpoint hardening, and remote access policy. ul>

• working alongside third party suppliers and lead the Azure migration programme (including Intune, CoPilot, Zero Trust posture).
• Design infrastructure for Windows 11 deployment and manage rollout strategy globally alongside third party suppliers.
• Translate cloud strategy into hybrid and SaaS enabled solutions, identifying legacy components for decommission. ul>

• Finalise and document clear, actionable steps to fulfil roadmap recommendations, with associated investment requirements.
• Collaborate with vendors to ensure timely delivery and integration.
• Present progress through structured governance, including monthly updates to SLT and quarterly reports to the Audit Committee. ul>

• Proven leadership in delivering infrastructure architecture in regulated, enterprise environments.
• Background across:
• Azure IaaS/ PaaS, Microsoft 365 Security, Intune, CoPilot
• Networking (segmentation, firewalls, NAC, remote access)
• Security operations and compliance frameworks (ISO27001, NIST, Cyber Essentials+)
• Windows 10/ 11 enterprise rollout
• Experienced in writing and delivering architectural documentation (HLDs, LLDs, runbooks, policy documents).
• Track record of engagement with SLT and governance boards, including reporting and presentation. ul>

• Experience in Private Equity owned organisations or high pressure transformation programmes.
• Familiarity with tools like BitSight, Duo/ EntraID, Sentinel, and automated patching / configuration tools.
• Working knowledge of OT infrastructure and secure manufacturing environments.
• Understanding of both traditional datacentre architecture and cloud-native application patterns. ul>

If you have the skills we are looking for and would like to learn more about the opportunity, please forward your CV

p>

At Gleeson Recruitment Group, we embrace inclusivity and welcome applicants of all backgrounds, experiences, and abilities. We are proud to be a disability confident employer.

By applying you will be registered as a candidate with Gleeson Recruitment Limited. Our Privacy Policy is available on our website and explains how we will use your data.