Head of Security Architecture & Projects at Apex Group

The Role

• Apex is seeking a Head of Enterprise Security Architecture & Projects to lead its enterprise security architecture function and security project delivery capability.  This is a senior leadership role accountable for setting architectural direction, governing secure design, and ensuring the successful delivery of security-led initiatives across the organization.
• You will provide strategic leadership to all Security Architects and a dedicated security project team, acting as the central authority for security architecture decisions while ensuring security initiatives are delivered effectively, consistently, and in alignment with business priorities.

Key Responsibilities  

• Define and own the enterprise security architecture strategy aligned to Apex’s technology roadmap, risk appetite, and regulatory obligations.
• Ensure Security architects and project managers meet KPI’s and business deliverables.
• Develop roadmaps to enable the expansion of team capabilities to keep up with emerging standards and technologies.
• Lead and manage all Security Architects across application, cloud, infrastructure, data, and emerging technology domains.
• Provide architectural governance and act as the final security design authority for major programs, platforms, and initiatives.
• Translate security strategy, principles, and standards into practical reference architectures, patterns, and roadmaps.
• Oversee the delivery of security-related projects and programs, ensuring alignment between architecture intent and execution.
• Establish and maintain security architecture governance processes, including design reviews and risk-based decision-making.
• Partner closely with Technology, Engineering, Cloud, Data, and Business teams to embed security by design.
• Ensure consistency of security controls and architectural standards across the enterprise.
• Identify architectural risks and technical debt, proposing pragmatic remediation strategies.
• Communicate security architecture decisions, trade-offs, and risks clearly to senior leadership and governance forums.
• Support audit, regulatory, and assurance activities related to security architecture and program delivery.
• there empowered Group Cyber leadership authorities, ensuring timely and effective completion in alignment with organizational priorities.
• Support the Group Cyber Strategy end-to-end, driving alignment of all activities, decisions, and deliverables with strategic objectives and business outcomes.

Areas of Specialization

• Enterprise Security Architecture: Definition of security principles, develop and oversee the development of reference  architectures, and own governance of security architecture deployment across the organization .
• Application, Cloud & Infrastructure Architecture: Secure design of applications, platforms, networks, and hybrid/multi-cloud environments.
• Data, AI & Emerging Technologies: Security architecture for data platforms, AI-enabled solutions, and new technology adoption.
• Security Programs & Projects: End-to-end ownership of security initiatives, from business requirements gathering through delivery and implementation governance .
• Architecture Governance & Advisory: Risk-based architectural decision-making, design assurance, and strategic advisory services.

Qualifications

• Formal qualification in Information Security, Computer Science, Engineering, or related technology discipline.
• Recognised security architecture qualifications such as SABSA or TOGAF, with demonstrated security architecture application.
• Professional security certifications such as CISSP or CCSP are strongly preferred.
• Cloud architecture or security certifications (e.g. Azure, AWS or OCI) are desirable.
• Programme or project delivery qualifications are beneficial.

Required Experience & Skills

Experience: 

• 10+ years in cybersecurity, enterprise architecture, or senior technology roles within complex environments.
• 8+ years in senior management positions within security architecture, technical leadership, or cyber & security program delivery roles.

Technical Expertise: 

• Proven experience designing and governing enterprise-wide security architectures across multiple domains.
• Strong understanding of security architecture frameworks and methodologies (e.g., SABSA, TOGAF, Zero Trust).
• Experience leading and coordinating teams of security architects across different specialist areas.
• Demonstrated ability to drive security programs and projects from strategy through to delivery.
• Strong understanding of cloud and hybrid architectures (Azure, AWS, OCI) and modern enterprise platforms