Role Overview: Security Consultant Architecture - Remote First - £80,000

We’re seeking a well-rounded Security Consultant comfortable in both technical and architectural discussions. You’ll need strong technical fundamentals across networking, infrastructure, applications (on-premise and cloud, particularly AWS), and SDLC tools, with hands-on experience in infrastructure-as-code solutions and offensive security practices like pentesting and security assessments.

Key Responsibilities:

- Provide security-focused input on design decisions, including:
- Authentication and authorisation (e.g., OAuth, identity providers, and bypass prevention).
- Secure data storage and transfer, tailored to sensitivity and architecture.
- Best practices for input validation and logging
- Supply chain security, evaluating SaaS providers for risks like tenancy models and pentesting history.
- Cloud security for platforms like AWS and Azure.
- Addressing new technologies with an attacker’s mindset to identify and mitigate risks.
- Collaborate with global teams, assess risks, and provide pragmatic, business-focused solutions.
- Contribute to standards creation when none exist.

Qualifications:

- Hands-on experience with offensive security and vulnerability management.
- Familiarity with enterprise architecture and lifecycle management.
- Strong knowledge of cloud platforms, secure hosting, and modern tech like AI or messaging services.
- Effective communicator with experience working across diverse teams.
- Hold one of these certifications: OSCP, CSTM or CREST CRT

Additional Activities (20% of time)

- Training (delivering and receiving), research, service development, and internal security assessments. 

Role Overview: Security Consultant Architecture - Remote First - £80,000