Security Architect (Consultant)
As a Security Architect (Consultant) in Kainos, you’ll be responsible for the design and application of good security practices in the platforms and services we build for our customers. You’ll work with Agile delivery teams to develop good security practices throughout the software development journey. You’ll learn about and apply new technologies and approaches, with talented colleagues who will help you develop and grow.
You’ll share knowledge and help educate people - both customers and Kainos team members. You’ll manage, coach and develop a small number of staff, with a focus on managing employee performance and assisting in their career development. You’ll also provide direction and leadership for your team as you solve challenging problems together.
Minimum (Essential) Requirements
* Experience in the secure design and delivery of new cloud services and solutions.
* Experience in identifying security issues in existing system designs or products, including recommending sensible mitigations that balance cost, risk and usability.
* Knowledge of security standards and regulations (e.g. NCSC, ISO, SoC, NIST, PCI, GDPR).
* Deep architectural experience in one of the following specialisms: AI Security / Data / Cloud / M365 / Application / DevSecOps Security Architecture
* Experience in application architecture, software development and/or infrastructure architecture.
* Clear communication with technical and non-technical audiences.
* Experience mentoring engineers and architects.
* Experience testing the security of software and infrastructure using appropriate security tools.
* Experience with Continuous Security, Continuous Integration and Continuous Delivery techniques.
* Experience of network security (e.g. OSI, TCP/IP), web application security (e.g. OWASP) and cryptographic controls (e.g. PKI, TLS).
* We are passionate about developing people - a demonstrated ability in managing, mentoring and coaching members of your team and wider community is important.
* Excellent communication skills, with the ability to convey security complexities to audiences of various technical abilities (e.g. senior stakeholders, development teams).
Desirable
* Experience of Identity management and authentication/authorisation products and patterns.
* Industry experience in Public / Commercial / Defence / Healthcare Sector(s).
* End-to-end security involvement, including governance, risk and compliance, operational security, supply chain security and secure user management.
* Penetration testing qualifications (e.g. OSCP, CREST, TIGER or equivalent).
* Experience leading security engineers and other junior members of staff.
* Involvement across the full security lifecycle.
Senior Security Architect (Manager) - Kainos
As a Senior Security Architect (Manager) in Kainos, you’ll be responsible for the design and application of industry leading security practices in the platforms and services we build for our customers. Our projects range greatly in variety, from visa and passport processing systems, to hospital medical record platforms and global financial management and HCM systems.
You’ll work with Agile delivery teams to ensure that they follow good security practices throughout the software development journey. You’ll learn about and apply new technologies and approaches, with talented colleagues who will help you develop and grow.
You’ll share knowledge and help educate people on good security practices - both customers and Kainos team members. You’ll manage, coach and develop a small number of staff, with a focus on managing employee performance and assisting in their career development. You’ll also provide direction and leadership for your team as you solve challenging problems together.
Minimum (Essential) Requirements
* Expertise in leading the secure design of new cloud services and solutions in line with defined security strategies.
* Expertise in identifying security issues in existing system designs, including recommending sensible mitigations that balance cost, risk and usability.
* Knowledge of security standards and regulations (e.g. NCSC, ISO, SoC, NIST, PCI, GDPR).
* Experience in one of the following specialisms: Identity / AI / Data / Cloud / M365 / GRC / Application / DevSecOps Security Architecture
* Experience in application architecture, software development and/or infrastructure architecture.
* Industry experience in one of the following sectors: Public / Healthcare / Defence / Commercial Sectors
* Experience in testing the security of software and infrastructure using appropriate security tools.
* Experience with Continuous Security, Continuous Integration and Continuous Delivery techniques.
* Experience of network security (e.g. OSI, TCP/IP), web application security (e.g. OWASP) and cryptographic controls (e.g. PKI, TLS).
* We are passionate about developing people - a demonstrated ability in managing, mentoring and coaching members of your team and wider community is important.
* Excellent communication skills, with the ability to convey security complexities to audiences of various technical abilities (e.g. senior stakeholders, development teams).
Desirable
* Experience of Identity management and authentication/authorisation products and patterns.
* Experience in at least on Industry Vertical.
* Involvement across the full security lifecycle.
* End-to-end security involvement, including governance, risk and compliance, operational security, supply chain security and secure user management.
* Active participation in knowledge sharing activities, both within the team and at a wider capability level and externally where appropriate.
* Penetration specialist certifications.
#J-18808-Ljbffr