Summary: The Cybersecurity Architect role involves joining the Data and Application Security team to enhance security measures across various domains, including data loss prevention, application security, and cloud security. The position requires active SC clearance and focuses on integrating security into the software development lifecycle through DevSecOps practices. The ideal candidate will possess extensive knowledge in application security testing, infrastructure security, and data protection strategies. This role is hybrid based in London and classified as inside IR35.

Key Responsibilities:

• Integrate security into the software development lifecycle using DevSecOps practices.
• Conduct application security testing, including white-box and gray-box methodologies.
• Secure Infrastructure as Code (IaC) configurations and manage continuous monitoring.
• Protect cloud-native applications and manage vulnerabilities in microservices and containers.
• Utilize Cloud Security Posture Management (CSPM) tools for compliance across cloud environments.
• Ensure runtime security for applications and infrastructure in both cloud and on-prem environments.
• Implement data-at-rest encryption strategies and manage cryptographic key lifecycles.

Key Skills:

• Hands-on experience with DevSecOps tools and CI/CD pipeline integration.
• Proficiency in cloud-native security tools (e.g., Prisma Cloud, Palo Alto).
• Strong application security skills, including static and dynamic testing.
• Experience with master key ceremonies and PKI architecture.
• Deep knowledge of data protection, encryption standards, and compliance governance.

Salary (Rate): £800

City: London

Country: United Kingdom

Working Arrangements: hybrid

IR35 Status: inside IR35

Seniority Level: undetermined

Industry: IT