Security Architect

Main Purpose and Responsibilities

As a Security Architect (Consultant) in Kainos, you’ll be responsible for the design and application of good security practices in the platforms and services we build for our customers. You’ll work with Agile delivery teams to develop good security practices throughout the software development journey. You’ll learn about and apply new technologies and approaches, with talented colleagues who will help you develop and grow. You’ll share knowledge and help educate people – both customers and Kainos team members. You’ll manage, coach and develop a small number of staff, with a focus on managing employee performance and assisting in their career development. You’ll also provide direction and leadership for your team as you solve challenging problems together.

Minimum (Essential) Requirements

• Experience in the secure design and delivery of new cloud services and solutions.
• Experience in identifying security issues in existing system designs or products, including recommending sensible mitigations that balance cost, risk and usability.
• Knowledge of security standards and regulations (e.g. NCSC, ISO, SoC, NIST, PCI, GDPR).
• Deep architectural experience in one of the following specialisms: AI/ML, Security, Cloud, M365, DevSecOps, Security Architecture.
• Experience in application architecture, software development and/or infrastructure architecture.
• Clear communication with technical and non-technical audiences.
• Experience mentoring engineers and architects.
• Experience testing the security of software and infrastructure using appropriate security tools.
• Experience with Continuous Security, Continuous Integration and Continuous Delivery techniques.
• Experience of network security (e.g. OSI, TCP/IP), web application security (e.g. OWASP) and cryptographic controls (e.g. PKI, TLS).
• We are passionate about developing people – a demonstrated ability in managing, mentoring and coaching members of your team and wider community is important.
• Excellent communication skills, with the ability to convey security complexities to audiences of various technical abilities (e.g. senior stakeholders, development teams).

Desirable

• Experience of Identity management and authentication/authorization products and patterns.
• Industry experience in Public, Commercial, Defence, Healthcare Sector(s).
• End-to-end security involvement, including governance, risk and compliance, operational security, supply chain security and secure user management.
• Penetration testing qualifications (e.g. OSCP, CREST, TIGER or equivalent).
• Experience leading security engineers and other junior members of staff.
• Involvement across the full security lifecycle.

Embracing Our Differences

At Kainos, we believe in the power of diversity, equity and inclusion. We are committed to building a team that is as diverse as the world we live in, where everyone is valued, respected, and given an equal chance to thrive. We actively seek out talented people from all backgrounds, regardless of age, race, ethnicity, gender, sexual orientation, religion, disability, or any other characteristic that makes them who they are. We also believe every candidate deserves a level playing field.