Security Architect

Role Overview: Security Consultant Architecture – Remote First – £80,000 We’re seeking a well-rounded Security Consultant comfortable in both technical and architectural discussions. You’ll need strong technical fundamentals across networking, infrastructure, applications (on-premise and cloud, particularly AWS), and SDLC tools, with hands-on experience in infrastructure-as-code solutions and offensive security practices like pentesting and security assessments. Key Responsibilities: – Provide security-focused input on design decisions, including: – Authentication and authorisation (e.g., OAuth, identity providers, and bypass prevention). – Secure data storage and transfer, tailored to sensitivity and architecture. – Best practices for input validation and logging – Supply chain security, evaluating SaaS providers for risks like tenancy models and pentesting history. – Cloud security for platforms like AWS and Azure. – Addressing new technologies with an attacker’s mindset to identify and mitigate risks. – Collaborate with global teams, assess risks, and provide pragmatic, business-focused solutions. – Contribute to standards creation when none exist. Qualifications: – Hands-on experience with offensive security and vulnerability management. – Familiarity with enterprise architecture and lifecycle management. – Strong knowledge of cloud platforms, secure hosting, and modern tech like AI or messaging services. – Effective communicator with experience working across diverse teams. – Hold one of these certifications: OSCP, CSTM or CREST CRT Additional Activities (20% of time) – Training (delivering and receiving), research, service development, and internal security assessments. Role Overview: Security Consultant Architecture – Remote First – £80,000