“What if you could embed security into a platform before it goes live—not fix it after?”
Coba IT are hiring on behalf of a client for a Senior Security Consultant to lead security across a brand-new, cloud-native platform being built from the ground up.
This is not a box-ticking role. It’s a chance to operate at the intersection of fast-paced engineering and rigorous governance—shaping security strategy while enabling delivery at speed.
The Role
As a Senior Security Consultant, you’ll act as the technical security lead within a high-velocity engineering environment.
You’ll work closely with engineering teams and senior stakeholders, ensuring a secure-by-design approach is embedded throughout the entire development lifecycle—from architecture through to deployment.
Key Responsibilities
Security Architecture & “Shift-Left”
* Lead security design across platform and product engineering
* Conduct architecture reviews and threat modelling early in the lifecycle
* Provide pragmatic guidance that enables delivery, not blocks it
* Design and secure AWS-based environments using modern cloud-native approaches
* Secure CI/CD pipelines and containerised environments (Docker/Kubernetes)
* Drive adoption of “controls-as-code” and automated security practices
* Act as a key link between engineering teams and senior security leadership
* Translate technical risks into clear business impacts
* Influence governance forums and ensure alignment to risk appetite
Modern Workspace Security
* Lead security hardening across collaboration and endpoint environments
* Support secure configuration of modern workplace tooling and infrastructure
What We’re Looking For
* Strong background in Security Architecture or Consultancy
* Experience operating within financial services, fintech, or regulated environments
* Deep expertise in AWS security and cloud architecture patterns
* Hands‑on experience securing CI/CD, IaC, and containerised environments
* Strong understanding of AppSec, IAM, cryptography, and network security
* Experience applying frameworks such as NIST, ISO 27001, or PCI DSS
* Ability to engage both engineers and senior stakeholders confidently
* Exposure to payments or merchant platforms
* Experience with endpoint and workspace security (e.g. JAMF, modern device estates)
* Knowledge of Google Workspace security
* Experience supporting red team readiness or pre-go-live security assurance
What’s on Offer
* Hybrid working based in London
* Opportunity to work on a truly greenfield, cloud-native platform
* High-impact role with direct exposure to senior security leadership
* Fast-paced, engineering-driven environment with real influence on outcomes
#J-18808-Ljbffr