Role Overview
We are looking for a Solution Designer with strong expertise in cryptography and secure solution architecture. In this role, you will design secure, scalable, and resilient solutions that protect sensitive data across our platforms. You'll work hand in hand with engineering, architecture, and security teams to ensure cryptographic controls and secure design principles are embedded throughout the solution lifecycle.
This role suits someone who combines technical depth in cryptography with strong design, documentation, and communication skills.
Key Responsibilities
Solution Design & Architecture
Design end to end technical solutions with a focus on data protection, encryption, key management, and secure data flows.
Produce high quality solution design documents, architecture diagrams, and technical specifications.
Ensure cryptographic measures are aligned with business, functional, and non functional requirements (security, compliance, performance).
Define secure patterns for data in transit, data at rest, identity, access, and secrets management.
Cryptographic Expertise
Provide guidance on cryptographic algorithms, standards, and protocols (e.g., AES, RSA, ECC, SHA 2/3, TLS).
Support the design and implementation of PKI systems, certificate management, and digital signature solutions.
Review and advise on the use of HSMs, key vaults, and enterprise key management systems.
Ensure proper lifecycle management for encryption keys, secrets, and certificates.
Security Review & Assurance
Review solution designs for compliance with internal security policies and regulatory requirements.
Conduct threat modelling, identify risks, and recommend mitigation strategies.
Collaborate with security architects to ensure solutions align with enterprise security architecture and best practices.
Collaboration & Stakeholder Engagement
Work closely with product owners, engineers, architects, and business stakeholders to translate requirements into secure technical designs.
Provide clear and actionable guidance to technical teams throughout the build and implementation phases.
Communicate design decisions and trade offs to both technical and non technical audiences.
Governance & Documentation
Maintain accurate and up to date documentation across the design lifecycle.
Support design governance forums and contribute to the development of secure design standards, templates, and best practices.
Participate in technical assessments, design walkthroughs, and peer reviews.
Skills & Experience
Essential
Strong background in cryptography: symmetric/asymmetric encryption, hashing, digital signatures, PKI, TLS/SSL protocols.
Experience designing secure solutions within cloud (Azure, AWS, or GCP) and/or hybrid environments.
Deep understanding of encryption at rest, in transit, and key management practices.
Experience with technologies such as:
HSMs, Key Vaults, Key Management Services (KMS)
Certificate Authorities (CAs)
Secure APIs and secrets management tools
Ability to create clear, structured documentation and design artefacts.
Solid understanding of data security standards (e.g., NIST, ISO 27001, PCI DSS, OWASP).
Strong problem solving skills and the ability to challenge design decisions from a security perspective.
Preferred
Experience working in large, regulated organisations such as financial services or government.
Familiarity with secure architecture frameworks (SABSA, TOGAF).
Knowledge of identity and access management (IAM), authentication protocols (OAuth, SAML, OIDC).
Hands on experience with cloud security tools (Azure Key Vault, AWS KMS, GCP KMS, HashiCorp Vault).
Certifications such as CISSP, CCSP, CEH, or cloud security related credentials.
Personal Attributes
Strong communication and interpersonal skills.
Ability to simplify complex technical concepts for different audiences.
Detail oriented with a focus on high quality design.
Proactive, structured, and comfortable working across multiple teams.
Curious and continuously learning - especially in cryptography and emerging security technologies."
LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance.
A multiple award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over consecutive years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience.
Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.
