Principal Consultant

Principal DevSecOps Architect – AWS Fully Remote (UK Only), Permanent or Contract (Outside IR35) A leading UK cloud consultancy is seeking a Principal DevSecOps Architect to join its growing Platform Engineering practice. This is a senior, client-facing role focused on shaping secure AWS platforms for an enterprise level client within the financial services sector. This opportunity is ideal for a highly experienced consultant who combines deep AWS architectural expertise with strong DevSecOps leadership and a track record of delivering in regulated financial environments.

The Role You will operate as a trusted advisor to senior technology stakeholders (CTO, CIO, CISO level), defining and delivering secure, automated AWS platform architectures across complex enterprise estates. This is a strategic architecture position with hands-on credibility. You will lead DevSecOps transformation initiatives, embed security-by-design principles, and establish scalable, compliant cloud foundations aligned to financial regulatory requirements. The role can be offered on a permanent basis or as a contract engagement (outside IR35) and is fully remote within the UK.

Key Responsibilities

• Lead enterprise AWS platform and DevSecOps strategy for financial services clients
• Design secure, multi-account AWS landing zones with strong governance controls
• Embed DevSecOps practices across CI/CD pipelines and cloud automation frameworks
• Drive adoption of infrastructure-as-code (Terraform/OpenTofu) and policy-as-code
• Define cloud security architecture aligned to regulatory frameworks (FCA, PRA, PCI-DSS, ISO, NIST)
• Implement automated security controls including IAM guardrails, secrets management, encryption, container security, and runtime protection
• Establish observability, monitoring, and incident response frameworks
• Provide architectural assurance, technical leadership, and mentorship across delivery teams
• Contribute to pre-sales engagements and solution shaping within consultancy environments

Required Experience

• Extensive experience as a Principal Architect, Lead DevSecOps Architect, or Cloud Security Architect
• Strong consultancy background with experience leading client-facing engagements
• Proven delivery experience within the financial services sector
• Deep expertise in AWS platform architecture and cloud-native security patterns
• Strong DevSecOps capability including secure CI/CD, GitOps, and automated compliance
• Advanced knowledge of infrastructure-as-code (Terraform preferred)
• Experience designing resilient containerised and serverless architectures (EKS, ECS, Lambda)
• Strong understanding of cloud risk management, regulatory compliance, and governance models
• Mandatory Certification: AWS Certified Solutions Architect – Professional

Technical Environment

• AWS (multi-account strategy, VPC, IAM, KMS, Control Tower, EKS, ECS, Lambda)
• DevSecOps tooling (GitHub Actions / GitLab CI / CodePipeline, SAST/DAST, container scanning)
• Terraform / OpenTofu
• Security tooling (WAF, GuardDuty, Security Hub, SIEM integration)
• Observability (CloudWatch, Prometheus, Grafana)
• Automation and scripting (Python, Bash)

What’s on Offer

• Fully remote working (UK-based)
• Permanent or contract engagement
• Outside IR35 (for contract roles)
• High-impact work within complex financial services environments
• Strategic, senior-level influence across enterprise cloud platforms

This is a rare opportunity to operate at Principal level, leading secure AWS platform transformations within regulated financial environments, while retaining flexibility and autonomy in a fully remote model. Please apply now online for a confidential discussion.