Summary: The Cybersecurity Architect will join the Data and Application Security team, focusing on enhancing security measures across various domains, including Data Loss Prevention, Cloud Security, and Application Security. The role requires active SC clearance and emphasizes integrating security into the software development lifecycle through DevSecOps practices. The ideal candidate will possess extensive knowledge in securing cloud-native applications and managing data protection strategies. This position is hybrid based in London and classified as inside IR35.

Key Responsibilities:

• Integrate security into the software development lifecycle using DevSecOps practices.
• Conduct application security testing, including white-box and gray-box methodologies.
• Secure Infrastructure as Code (IaC) configurations and manage continuous monitoring.
• Protect cloud-native applications and microservices from vulnerabilities.
• Utilize Cloud Security Posture Management (CSPM) tools for compliance and configuration management.
• Ensure runtime security for applications and infrastructure in cloud and on-prem environments.
• Implement Data Loss Prevention (DLP) solutions and manage cryptographic key processes.
• Oversee data-at-rest encryption strategies and key management solutions.

Key Skills:

• Hands-on experience with DevSecOps tools and CI/CD pipeline integration.
• Proficiency in cloud-native security tools (e.g., Prisma Cloud, Palo Alto).
• Strong application security skills, including static and dynamic testing.
• Experience with master key ceremonies and PKI architecture.
• Deep knowledge of data protection, encryption standards, and compliance governance.

Salary (Rate): £800

City: London

Country: UK

Working Arrangements: hybrid

IR35 Status: inside IR35

Seniority Level: undetermined

Industry: IT