Existing UK Government Security Check (SC) clearance is required for this role.

As a Security Architect, you will be a subject matter expert in the secure design of Cloud based architectures with demonstratable experience in the UK Government and Defence sectors.

This is a fully remote role with occasional travel to Manchester or London (approximately once every 2 months).

Responsibilities

• Provide specialist secure design advice for UK Government security architecture and assurance requirements to OFFICIAL and above classifications for Public cloud-based workloads (Azure and AWS).
• Identify and deliver appropriate controls based on industry standards (e.g. NCSC Cloud Security Principles) and Client Security Standards/Patterns to drive cloud security solutions framework based on business risk and cloud native threats.
• Document Secure by Design artefacts, including Threat Models.
• Attend Client Governance forums providing expert critique and guidance on proposed designs and associated security controls.
• Continually evaluate new threats in the cloud, to identify the risk and impact to the Cient and develop proportionate security controls.
• Provide direction, analysis and design facilitation to develop, maintain and govern a customer security architecture.
• Ensure that architecture principles, designs, technologies, methods and practices are documented and properly executed.

Key Skills and Experience

• Significant AWS design experience in the UK Public Sector.
• Expert in Cloud security concepts, technologies and best practices for delivering security across IaaS and Serverless architectures using both native AWS security controls and commercial/open source products.
• Have experience in Secure Design concepts, design documentation and Threat Modelling.
• Have a strong understanding of securing Microservice based architectures and APIs.
• Possess a strong understanding of security frameworks such as CIS and NIST and how to apply the technical controls in a complex AWS hosting environment.
• Have experience of working directly with engineering teams and architects to review system/data architectures through the development of patterns and industry best practice.
• Have a solid understanding and experience of articulating the impact of vulnerabilities and required controls and mitigations on existing and future designs.
• Demonstrate a solid understanding of security concepts and can apply them to a technical level to guide engineering teams.

Job Types: Temporary, Freelance
Contract length: 6 months

Pay: £560.00 per day

Work Location: Remote