Role Overview: Security Consultant Architecture - Remote First - £80,000 We’re seeking a well-rounded Security Consultant comfortable in both technical and architectural discussions. You’ll need strong technical fundamentals across networking, infrastructure, applications (on-premise and cloud, particularly AWS), and SDLC tools, with hands-on experience in infrastructure-as-code solutions and offensive security practices like pentesting and security assessments. Key Responsibilities: - Provide security-focused input on design decisions, including: - Authentication and authorisation (e.g., OAuth, identity providers, and bypass prevention). - Secure data storage and transfer, tailored to sensitivity and architecture. - Best practices for input validation and logging - Supply chain security, evaluating SaaS providers for risks like tenancy models and pentesting history. - Cloud security for platforms like AWS and Azure. - Addressing new technologies with an attacker’s mindset to identify and mitigate risks. - Collaborate with global teams, assess risks, and provide pragmatic, business-focused solutions. - Contribute to standards creation when none exist. Qualifications: - Hands-on experience with offensive security and vulnerability management. - Familiarity with enterprise architecture and lifecycle management. - Strong knowledge of cloud platforms, secure hosting, and modern tech like AI or messaging services. - Effective communicator with experience working across diverse teams. - Hold one of these certifications: OSCP, CSTM or CREST CRT Additional Activities (20% of time) - Training (delivering and receiving), research, service development, and internal security assessments. Role Overview: Security Consultant Architecture - Remote First - £80,000