Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join a DevSecOps team to enhance security across banking projects.
- Company: A leading bank focused on innovative security solutions.
- Benefits: Enjoy hybrid work, competitive pay, and professional growth opportunities.
- Why this job: Make a real impact in security while working with cutting-edge technology.
- Qualifications: Experience in security architecture and relevant certifications are essential.
- Other info: This role is perfect for tech-savvy individuals eager to tackle security challenges.
The predicted salary is between 100800 - 136000 £ per year.
The client is seeking a Security Architect with experience in customer-facing consultancy to support a DevSecOps engineering team. The role involves embedding Security by Design across the bank’s change portfolio, authoring Security Design documents, and providing consultancy on security threats, risks, and controls.
Key Responsibilities:
- Deconstructing and evaluating solution/network architectures.
- Identifying and mitigating threats and vulnerabilities using industry practices like STRIDE and MITRE.
- Interpreting threats into risks and assisting the business in assessing their likelihood and impact.
- Communicating technical concepts effectively to both technical and non-technical stakeholders.
- Producing and articulating Security Designs to project and business stakeholders.
- Balancing risks and benefits of competing security design options.
- Managing multiple challenging projects simultaneously.
- Generalist security design skills.
- Experience with DevOps/DevSecOps.
- Knowledge of Hybrid Cloud environments.
Preferred Qualifications and Experience:
- Awareness of security standards (ISO 27000 series, PCI DSS, COBIT, NIST, OWASP).
- Security Management certifications (CISSP, CISM, CCSP or equivalent).
- Technical Security certifications (CEH, OSCP or equivalent).
- Experience with Public and/or Private cloud environments.
Candidates are encouraged to demonstrate evidence of the required skills and experience in their CVs. If applicants do not hear back within 48 hours, their application has not been successful, but their details may be kept for future suitable vacancies.
Security Architect - DevSecOps employer: Huxley
Contact Detail:
Huxley Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Architect - DevSecOps
✨Tip Number 1
Familiarise yourself with the latest security frameworks and standards mentioned in the job description, such as ISO 27000 series and OWASP. Being able to discuss these frameworks confidently during your interview will show that you are well-prepared and knowledgeable.
✨Tip Number 2
Prepare specific examples from your past experience where you've successfully implemented Security by Design principles. This will help you demonstrate your practical understanding of the role and how you can add value to our DevSecOps engineering team.
✨Tip Number 3
Brush up on your communication skills, especially in translating complex security concepts into layman's terms. You’ll need to effectively communicate with both technical and non-technical stakeholders, so practice explaining your ideas clearly and concisely.
✨Tip Number 4
Network with professionals in the security field, particularly those with experience in DevSecOps. Engaging with industry peers can provide insights into current trends and challenges, which you can reference during your discussions with us.
We think you need these skills to ace Security Architect - DevSecOps
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in security architecture and DevSecOps. Use specific examples that demonstrate your ability to embed Security by Design and manage multiple projects.
Showcase Your Certifications: Clearly list any relevant security management and technical certifications, such as CISSP, CISM, or CEH. This will help you stand out as a qualified candidate for the role.
Demonstrate Communication Skills: In your application, provide examples of how you've effectively communicated technical concepts to both technical and non-technical stakeholders. This is crucial for the role.
Highlight Industry Practices Knowledge: Mention your familiarity with industry practices like STRIDE and MITRE, as well as security standards such as ISO 27000 series and PCI DSS. This shows you understand the landscape of security threats and controls.
How to prepare for a job interview at Huxley
✨Showcase Your Consultancy Skills
Since the role involves customer-facing consultancy, be prepared to discuss your previous experiences in this area. Highlight specific examples where you successfully communicated complex security concepts to non-technical stakeholders.
✨Demonstrate Your Knowledge of Security Frameworks
Familiarise yourself with key security standards like ISO 27000, PCI DSS, and OWASP. Be ready to explain how these frameworks influence your approach to security design and risk management.
✨Prepare for Technical Questions
Expect questions related to threat modelling techniques such as STRIDE and MITRE. Brush up on how you would identify and mitigate threats in a DevSecOps environment, as well as your experience with hybrid cloud setups.
✨Balance Risks and Benefits
Be prepared to discuss how you evaluate competing security design options. Think about how you would articulate the trade-offs between security measures and business needs, showcasing your ability to manage multiple projects effectively.
