Operate as senior cyber architect and SME within the programme's structured operating model — actively engaged from requirements capture through to BAU handover, owning Definition-of-Done evidence at every gate.
Break down each Master Programme Plan activity into discrete People / Process / Technology tasks viewed through a cyber security lens — define the validation and assurance criteria, embed them as DoD acceptance criteria, and evidence them before status can advance.
Requirements: author threat model v1, control intent statement, and compensating controls; validate requirements against current operational baseline and monitoring posture.
Architecture (LEAD): author security architecture, safeguard mapping, and trust boundaries; approve the threat model; chair Security Council review of the architecture pack.