Principal DevSecOps Architect – AWS
Fully Remote (UK Only), Permanent or Contract (Outside IR35)
A leading UK cloud consultancy is seeking a Principal DevSecOps Architect to join its growing Platform Engineering practice. This is a senior, client-facing role focused on shaping secure AWS platforms for an enterprise level client within the financial services sector.
This opportunity is ideal for a highly experienced consultant who combines deep AWS architectural expertise with strong DevSecOps leadership and a track record of delivering in regulated financial environments.
The Role
You will operate as a trusted advisor to senior technology stakeholders (CTO, CIO, CISO level), defining and delivering secure, automated AWS platform architectures across complex enterprise estates.
This is a strategic architecture position with hands-on credibility. You will lead DevSecOps transformation initiatives, embed security-by-design principles, and establish scalable, compliant cloud foundations aligned to financial regulatory requirements.
The role can be offered on a permanent basis or as a contract engagement (outside IR35) and is fully remote within the UK.
Key Responsibilities
* Lead enterprise AWS platform and DevSecOps strategy for financial services clients
* Design secure, multi-account AWS landing zones with strong governance controls
* Embed DevSecOps practices across CI/CD pipelines and cloud automation frameworks
* Drive adoption of infrastructure-as-code (Terraform/OpenTofu) and policy-as-code
* Define cloud security architecture aligned to regulatory frameworks (FCA, PRA, PCI-DSS, ISO, NIST)
* Implement automated security controls including IAM guardrails, secrets management, encryption, container security, and runtime protection
* Establish observability, monitoring, and incident response frameworks
* Provide architectural assurance, technical leadership, and mentorship across delivery teams
* Contribute to pre-sales engagements and solution shaping within consultancy environments
Required Experience
* Extensive experience as a Principal Architect, Lead DevSecOps Architect, or Cloud Security Architect
* Strong consultancy background with experience leading client-facing engagements
* Proven delivery experience within the financial services sector
* Deep expertise in AWS platform architecture and cloud-native security patterns
* Strong DevSecOps capability including secure CI/CD, GitOps, and automated compliance
* Advanced knowledge of infrastructure-as-code (Terraform preferred)
* Experience designing resilient containerised and serverless architectures (EKS, ECS, Lambda)
* Strong understanding of cloud risk management, regulatory compliance, and governance models
Mandatory Certification:
* AWS Certified Solutions Architect – Professional
Technical Environment
* AWS (multi-account strategy, VPC, IAM, KMS, Control Tower, EKS, ECS, Lambda)
* DevSecOps tooling (GitHub Actions / GitLab CI / CodePipeline, SAST/DAST, container scanning)
* Terraform / OpenTofu
* Security tooling (WAF, GuardDuty, Security Hub, SIEM integration)
* Observability (CloudWatch, Prometheus, Grafana)
* Automation and scripting (Python, Bash)
What’s on Offer
* Fully remote working (UK-based)
* Permanent or contract engagement
* Outside IR35 (for contract roles)
* High-impact work within complex financial services environments
* Strategic, senior-level influence across enterprise cloud platforms
This is a rare opportunity to operate at Principal level, leading secure AWS platform transformations within regulated financial environments, while retaining flexibility and autonomy in a fully remote model.
Please apply now online for a confidential discussion.