Location: Remote / London (Hybrid) Rate: £660 per day (Inside IR35) Clearance: Active SC & NPPV3 Required
We are seeking a highly technical Security Architect with a strong background in DevSecOps to join a critical public sector digital programme. This role offers a unique blend of hands-on technical investigation within AWS and high-level architectural design to define the future of secure cloud-native services.
The Role
You will be embedded within a cross-functional engineering team, acting as the bridge between development and security. Your remit will involve:
AWS Investigation: Deep-dive analysis into enterprise AWS deployments to identify vulnerabilities and optimise security posture.
Security Design: Defining security solutions, guardrails, and 'ways of working' for engineering squads.
Automation: Embedding security tooling into automated CI/CD pipelines to ensure a 'secure by design' approach.
Technical Stack & Requirements
Core AWS Security:
Expertise in AWS Security Hub, GuardDuty, AWS Inspector, and AWS Config .
Deep knowledge of AWS IAM, STS, and complex policy structures.
Hands-on with Firewall Manager, Security Groups, and IAM Analyzer .
DevSecOps & Tooling:
CI/CD: Jenkins pipelines and GitLab source code management.
Artifact Management: Artifactory and JFrog X-Ray for vulnerability scanning.
Infrastructure as Code: Terraform expertise (including scanning tools like Checkov or Prowler ).
Modern Tech: Security oversight for Containers (EKS/ECS), Lambda, and Java Microservices.
Supplementary Skills:
Identity & Access: OAuth 2.0, JWT, and Microsoft Entra (Azure AD) .
Exposure to React.JS (from a security review perspective).
Apply now for immediate consideration
TPBN1_UKTJ