Role Overview: Security Consultant Architecture - Remote First - £80,000

We’re seeking a well-rounded Security Consultant comfortable in both technical and architectural discussions. You’ll need strong technical fundamentals across networking, infrastructure, applications (on-premise and cloud, particularly AWS), and SDLC tools, with hands-on experience in infrastructure-as-code solutions and offensive security practices like pentesting and security assessments.

Key Responsibilities:

- Provide security-focused input on design decisions, including:

- Authentication and authorisation (e.g., OAuth, identity providers, and bypass prevention).

- Secure data storage and transfer, tailored to sensitivity and architecture.

- Best practices for input validation and logging

- Supply chain security, evaluating SaaS providers for risks like tenancy models and pentesting history.

- Cloud security for platforms like AWS and Azure.

- Addressing new technologies with an attacker’s mindset to identify and mitigate risks.

- Collaborate with global teams, assess risks, and provide pragmatic, business-focused solutions.

- Contribute to standards creation when none exist.

Qualifications:

- Hands-on experience with offensive security and vulnerability management.

- Familiarity with enterprise architecture and lifecycle management.

- Strong knowledge of cloud platforms, secure hosting, and modern tech like AI or messaging services.

- Effective communicator with experience working across diverse teams.

- Hold one of these certifications: OSCP, CSTM or CREST CRT

Additional Activities (20% of time)

- Training (delivering and receiving), research, service development, and internal security assessments.

Role Overview: Security Consultant Architecture - Remote First - £80,000