Security Architect at DESNZ, Remote, 3 Months, £Contract Rate

  • Contract Spy
  • Remote (United Kingdom)
  • Feb 02, 2024
up to 6 Months

Contract Description


Security Architect - Inside IR35


Contract Term: 3 months with potential for extension


Contracting Authority: DESNZ - Department for Science, Innovation and Technology


Location: Remote

The Centre for Data Ethics and Innovation, a directorate in the Department for Science, Innovation and Technology is leading delivery of a pilot project to explore the application of novel privacy enhancing technologies (PETs) - e.g. homomorphic encryption, secure multi-party computation, secure enclaves, federated analytics, differential privacy – to enable collaboration on healthcare data held across jurisdictions. We are collaborating with two data owners who hold structurally and semantically similar datasets which they will make available for such a pilot, each hosted in a different jurisdiction.


We are seeking a privacy engineering and PETs expert to lead the system architecture design, collaborating with the data owners and other relevant technical teams to design a system that will be privacy-preserving by design, enable meaningful and accurate data analysis, and provide a straightforward user experience to the researcher carrying out analysis.


As a Security Architect your main responsibilities will be to: 

  • Describe the privacy requirements of the datasets and define an appropriate privacy threat model for the system.
  • Provide an analysis of different possible PETs-based solutions, listing costs and benefits, and providing recommendations on which solution to pursue.
  • Sketch out theoretical proofs of privacy guarantees based on the chosen threat model.
  • Derive theoretical values for the compute/memory/network overhead introduced by the use of PETs.
  • Clearly list any foreseeable outstanding privacy or performance issues and describe potential mitigations.
  • Articulate clear justification for how the proposed solution meets the design requirements.
  • Define the user journey for a researcher using the platform, and list potential strengths, weaknesses, and mitigations.
  • Provide options for delivery, including estimated timelines and costs for each option.



  • Demonstrated experience designing and building privacy engineering solutions.
  • Demonstrated experience working with one or more of the following technologies: federated learning, homomorphic encryption, secure enclaves, secure multi-party computation, differential privacy.
  • Experience in communicating technical concepts to a range of technical and non-technical audiences.
  • Strong management and leadership skills, with the ability to collaborate effectively with diverse stakeholders.


  • Certified Information Systems Security Professional (CISSP), Certified Information Privacy Technologist (CIPT), or related certification.
  • Experience working with healthcare data.
  • Knowledge of the UK GDPR and HIPAA.