At a Glance
- Tasks: Lead security architecture across cloud, Kubernetes, and application delivery to ensure robust security.
- Company: Prestigious London-based investment firm with a focus on cybersecurity.
- Benefits: Competitive compensation package up to £250k and opportunities for professional growth.
- Other info: Collaborative environment with a focus on innovation and career advancement.
- Why this job: Shape the future of security in a high-impact role within a dynamic team.
- Qualifications: 7+ years in cybersecurity with strong cloud and Kubernetes security knowledge.
Role Overview
We’re working with a highly regarded London-based investment firm seeking a Security Architect to shape secure design across cloud, Kubernetes, application delivery, identity, and enterprise security controls. Sitting within a small, high-impact cybersecurity function, this role will act as a technical design authority across modern platforms, partnering closely with engineering, infrastructure, cloud, development, trading, investment, and compliance teams to embed security into technology decisions from the outset.
Key Responsibilities
- Lead security architecture across cloud, Kubernetes, secure software delivery, identity, infrastructure, and enterprise control domains.
- Define practical security principles, reference designs, patterns, standards, and reusable guardrails for engineering teams.
- Act as a security design authority for cloud platforms, Kubernetes clusters, application architectures, CI/CD pipelines, developer workflows, and supporting infrastructure.
- Review new systems, platforms, applications, and material technology changes, identifying risks and recommending proportionate controls.
- Shape cloud security architecture across identity, networking, encryption, logging, workload protection, secrets management, CSPM, and policy-as-code.
- Define Kubernetes security patterns covering cluster design, workload isolation, admission control, image security, runtime security, network policies, observability, and secure deployment.
- Influence secure software development practices across threat modelling, secure design, CI/CD controls, application testing, dependency risk, secrets scanning, and software supply chain security.
- Contribute to security roadmaps, control maturity plans, technical documentation, decision records, risk assessments, and target-state architecture.
What You’ll Bring…
- 7+ years of cybersecurity experience, including strong exposure to security architecture, security design, or senior technical security leadership.
- A strong academic background from a highly selective university or international equivalent, ideally in a technical discipline.
- Strong cloud security architecture knowledge across identity, networking, encryption, logging, monitoring, posture management, and workload protection.
- Experience designing or reviewing controls for Kubernetes, containers, and cloud-native platforms.
- Experience with policy-as-code, infrastructure-as-code security, and automated guardrails across cloud or Kubernetes environments.
- Strong understanding of secure software development, including threat modelling, secure design, CI/CD security, application testing, secrets management, dependency management, and software supply chain risk.
- Ability to assess technical designs, identify risk, explain trade-offs, and recommend practical security controls for engineering teams.
- Experience defining security standards, architecture patterns, control requirements, and technical guardrails across complex enterprise environments.
- Strong communication and stakeholder skills, with the ability to influence infrastructure, cloud, development, security, risk, and business teams.
- Clear architecture documentation skills, including design principles, control requirements, risk assessments, decision records, and target-state recommendations.
Preferred
- Relevant certifications such as CISSP, CCSP, GIAC, AWS Security Specialty, Azure Security Engineer, or equivalent practical experience.
- Experience with CSPM, container security, Kubernetes policy enforcement, SCA, SAST, DAST, secrets scanning, CI/CD security, or cloud-native security tooling.
- Familiarity with DevSecOps models and embedding security controls into developer workflows.
We think you need these skills to ace Security Architect | Global Macro Trading Specialist
Security Architecture
Cloud Security
Kubernetes Security
Secure Software Development
Threat Modelling
CI/CD Security
Identity Management