Security Consultant
Posted 1 day ago by James Adams
Negotiable
Outside
Hybrid
London Area, United Kingdom
Summary: The Security Consultant role focuses on providing security expertise within a leading financial services organization, emphasizing the integration of secure-by-design principles across engineering, product, and architecture teams. The position requires a balance of technical credibility and seniority to influence various stakeholders effectively. The consultant will lead threat modeling and secure design reviews while ensuring security is embedded within Agile delivery processes. This role is not purely advisory or delivery-focused but seeks a pragmatic individual who can navigate complex governance structures.
Key Responsibilities:
- Leading threat modelling (STRIDE) and secure design reviews for key solutions across the organisation
- Acting as the go-to security advisor for Product, Engineering, and Architecture - embedded in delivery, not observing from a distance
- Applying CIS-aligned security NFRs and patterns across cloud, identity and application security
- Supporting teams to implement security within the SDLC without creating friction
- Navigating Design Authority and CAB governance to deliver consistent, auditable assurance outcomes
- Identifying security technical debt, establishing clear ownership, and driving remediation with realistic timelines
- Building stakeholder relationships and influencing through clear, practical guidance - not lengthy reports
Key Skills:
- Hands-on threat modelling experience - STRIDE specifically
- Strong Azure security knowledge across IAM, cloud, and application/API security
- Experience embedding security within Agile delivery teams and the SDLC
- A background in financial services or another regulated environment
- Comfort working within Design Authority and CAB governance structures
Salary (Rate): undetermined
City: London
Country: United Kingdom
Working Arrangements: hybrid
IR35 Status: outside IR35
Seniority Level: undetermined
Industry: IT
Security Consultant – Financial Services
London / Hybrid (1 day a week on site)
6-Month Contract Outside IR35
We're working with a leading financial services organisation to find a Security Consultant who can act as a trusted advisor across their engineering, product, and architecture teams, embedding secure-by-design principles at pace, without slowing delivery down. This isn't a box-ticking compliance role. The client needs someone technically credible enough to engage at the design level with engineers, but senior enough to influence architects and product owners. If you've spent your career purely in advisory or purely in delivery, this probably isn't the right fit. If you sit somewhere in between - pragmatic, outcome-focused and comfortable holding your own in a room full of architects one minute and a sprint team the next then this should be a great fit.
What You'll Be Doing
- Leading threat modelling (STRIDE) and secure design reviews for key solutions across the organisation
- Acting as the go-to security advisor for Product, Engineering, and Architecture - embedded in delivery, not observing from a distance
- Applying CIS-aligned security NFRs and patterns across cloud, identity and application security
- Supporting teams to implement security within the SDLC without creating friction
- Navigating Design Authority and CAB governance to deliver consistent, auditable assurance outcomes
- Identifying security technical debt, establishing clear ownership, and driving remediation with realistic timelines
- Building stakeholder relationships and influencing through clear, practical guidance - not lengthy reports
What We're Looking For
- Hands-on threat modelling experience - STRIDE specifically
- Strong Azure security knowledge across IAM, cloud, and application/API security
- Experience embedding security within Agile delivery teams and the SDLC
- A background in financial services or another regulated environment
- Comfort working within Design Authority and CAB governance structures