Key skills
AzureCloudCyber SecurityGoogle Cloud PlatformGCPGoogle CloudAgileRisk ManagementCommunicationOWASPNetwork SecurityCloud Security
About this role
Role Overview
- Provide security assurance and architectural review activities across change initiatives, operational platforms and transformational programs, including major technology migrations and system upgrades
- Establishing and documenting security requirements for projects and initiatives
- Conducting thorough reviews of designs, architectures and implementation plans to ensure security controls are appropriately integrated
- Identifying security issues, gaps and vulnerabilities, and recommending appropriate mitigations and risk treatments
- Contributing to threat modelling exercises, risk assessments and control validation activities
- Ensuring security requirements and controls are incorporated throughout the delivery lifecycle
- Supporting the development and maintenance of security standards, patterns, and best practices
- Actively engaging with project teams as an embedded security resource to ensure security considerations are integrated from inception
Requirements
- Strong foundational knowledge of information and cyber security principles and practices
- Demonstrated understanding of risk management methodologies, threat modelling, and secure design principles
- Experience with cloud security concepts and controls (Azure and/or GCP preferred)
- Excellent written and verbal communication skills with the ability to convey complex security concepts to diverse audiences
- Strong stakeholder engagement and relationship management capabilities
- Awareness of relevant security standards and frameworks (such as NIST CSF, ISO 27001, CIS Controls, OWASP)
- Experience working within Agile and traditional project delivery methodologies
- Deep expertise in 1-2 specialised security domains (e.g., cloud security, network security, application security, identity and access management, data protection, infrastructure security)
- Professional security certifications (such as CISSP, cloud specific security certifications)
- Experience with security testing methodologies and tools
Tech Stack
- Azure
- Cloud
- Cyber Security
- Google Cloud Platform
Benefits
- 25 days holiday, increasing through length of service, with option to buy or sell
- Bupa health insurance as a benefit in kind
- An enhanced pension plan and life insurance
- Onsite gyms or local discounts where no onsite gym available
- Various other benefits and online discounts