Home
Jobs
Kainos
Security Architect

Security Architect

On site

The Home, United Kingdom

Full Time

03-04-2025

Share this job:

Score my CV Apply

Job Specifications

When you join Kainos, you get to think beyond limitations to make an immediate and positive impact – like transforming digital services for millions of citizens or helping Fortune 500 companies get live and thrive on Workday.

You’ll be part of a people-first culture that is growing around the world. We’re a creative, committed, and diverse group of individuals who succeed as a team.

At Kainos your ideas are heard and valued and you’ll leave a legacy that you can feel proud of. Join us and discover how our people write our story.

MAIN PURPOSE OF THE ROLE & RESPONSIBILITIES IN THE BUSINESS:

As a Security Architect (Consultant) in Kainos, you’ll be responsible for the design and application of good security practices in the platforms and services we build for our customers. You’ll work with Agile delivery teams to develop good security practices throughout the software development journey. You’ll learn about and apply new technologies and approaches, with talented colleagues who will help you develop and grow.

You’ll share knowledge and help educate people – both customers and Kainos team members.  You’ll manage, coach and develop a small number of staff, with a focus on managing employee performance and assisting in their career development. You’ll also provide direction and leadership for your team as you solve challenging problems together.

Minimum (essential) Requirements

Experience in the secure design and delivery of new cloud services and solutions.
Experience in identifying security issues in existing system designs or products, including recommending sensible mitigations that balance cost, risk and usability.
Knowledge of security standards and regulations (e.g. NCSC, ISO, SoC, NIST, PCI, GDPR).
Experience in application architecture, software development and/or infrastructure architecture.
Experience testing the security of software and infrastructure using appropriate security tools.
Experience with Continuous Security, Continuous Integration and Continuous Delivery techniques.
Experience of network security (e.g. OSI, TCP/IP), web application security (e.g. OWASP) and cryptographic controls (e.g. PKI, TLS).
We are passionate about developing people – a demonstrated ability in managing, mentoring and coaching members of your team and wider community is important
Excellent communication skills, with the ability to convey security complexities to audiences of various technical abilities (e.g. senior stakeholders, development teams).

DESIRABLE

Experience of Identity management and authentication/authorisation products and patterns.
End-to-end security involvement, including governance, risk and compliance, operational security, supply chain security and secure user management.
Penetration testing qualifications (e.g. OSCP, CREST, TIGER or equivalent)
Experience leading security engineers and other junior members of staff

So what are you waiting for? Let’s write the next incredible chapter of our story together.

Embracing our differences

At Kainos, we believe in the power of diversity, equity and inclusion. We are committed to building a team that is as diverse as the world we live in, where everyone is valued, respected, and given an equal chance to thrive.   We actively seek out talented people from all backgrounds, regardless of age, race, ethnicity, gender, sexual orientation, religion, disability, or any other characteristic that makes them who they are.   We also believe every candidate deserves a level playing field. Our friendly talent acquisition team is here to support you every step of the way, so if you require any accommodations or adjustments, we encourage you to reach out. We understand that everyone's journey is different, and by having a private conversation we can ensure that our recruitment process is tailored to your needs.

About the Company

At Kainos we use technology to solve real problems for our customers, overcome big challenges for businesses, and make people’s lives easier. We build strong relationships with our customers and go beyond to change the way they work today and the impact they have tomorrow. Our two specialist business areas, Digital Services and the Workday Practice, work globally for clients across healthcare, commercial and the public sector to make the world a little bit better, day by day. Know more

Related Jobs

Company Name: Secure Mojo
Job Title: Co-Founder⚡Cybersecurity
Job Description: About Secure Mojo: We’re on a mission to make personal digital protection as essential as health insurance. Secure Mojo is building an intelligent platform that combines cyber risk assessments, expert consultation, and real-world cyber insurance — built for individuals, not just enterprises. We’re not here to patch yesterday’s threats. We’re here to build what comes next. The Opportunity: We’re looking for a Co-Founder who isn’t just an expert — but a visionary in cybersecurity. Someone who can help architect our technical backbone while also shaping the future of proactive, personalized cyber defense. This role isn’t for the side-lines. You’ll be driving product innovation, security strategy, and user trust. You'll work alongside the founding team to turn Secure Mojo into a category-defining company. You’re a great fit if you have: Strong background in cybersecurity with hands-on experience. Skills in ethical hacking, OSINT, digital forensics, and incident response. Experience with or passion for cybersecurity training / public awareness. Startup-ready mindset — proactive, adaptable, and mission-driven. Ability to lead technical teams or build one from scratch. A deep passion for solving real-world security problems for everyday users. What You’ll Be Doing: Leading the technical vision for Secure Mojo’s security tools and assessment engine. Building and refining risk assessment frameworks. Helping shape product features with real-world security insights. Collaborating on content, education, and trust-building initiatives. Becoming the voice of credibility for our platform — from the inside out. Perks and Benefits: Opportunity to be a co-founder without any financial investment. Equity stake in the company. Work remotely or from our office; we value results over hours. As Secure Mojo is currently in the pre-revenue stage, no salary can be offered at the start. If you're a highly motivated individual with a strong entrepreneurial spirit, we encourage you to apply. Let's build something extraordinary together!

Company Name: Google
Job Title: Strategic Security Consultant, Mandiant, Google Cloud (English)
Job Description: Note: Google’s hybrid workplace includes remote roles. Remote location: United Kingdom.Minimum qualifications: Bachelor's degree in Computer Science, Information Systems, Cybersecurity, related technical field, or equivalent practical experience. 4 years of experience assessing and developing cybersecurity solutions and programs across security domains. 4 years of experience in delivering cyber outcomes, identifying mission risks, and devising solutions. Ability to communicate in English fluently to work with internal partners and customer teams. Ability to travel up to 30% of the time as required. Preferred qualifications: Certifications related to cloud platforms. Experience implementing industry-leading practices around cyber risks and cloud security for clients’ cloud security frameworks using industry standards. Experience with cloud governance, with the ability to convey governance principles to cloud computing in terms of policies. Excellent time and project management skills. About the jobIn this role, you will lead and support projects on behalf of clients that assess, test, or build their security programs. Project teams may range from 2 to 5 colleagues. Clients will range from start-up companies looking to supplement their security team to Fortune 100 companies that need fresh ideas to enhance their perspective on the security program. You will provide guidance and advice to the client on best practices and manage the risks for their security program.Part of Google Cloud, Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services. Mandiant's cybersecurity expertise has earned the trust of security professionals and company executives around the world. Our unique combination of renowned experience responding to some of the most complex breaches, nation-state grade threat intelligence, machine intelligence, and the industry's best security validation ensures that Mandiant knows more about today's advanced threats than anyone. Responsibilities Develop roadmaps and recommendations to drive client enhancements of their cloud security architecture, governance, and standards. Identify, incorporate, and articulate cloud security best practices such as DevSecOps strategy, Zero Trust design, and cloud incident response. Perform security configuration reviews for common cloud-based Software-as-a-Service (SaaS) platforms. Assess security operations and incident response team capabilities and provide recommendations for improvement . Participate in client workshops and develop reports. Google is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See also Google's EEO Policy and EEO is the Law. If you have a disability or special need that requires accommodation, please let us know by completing our Accommodations for Applicants form .

Company Name: Cyderes
Job Title: Principal Security Analyst
Job Description: Cyderes (Cyber Defense and Response) is a pure-play, full life-cycle cybersecurity services provider with award-winning managed security services, identity and access management, and professional services designed to manage the cybersecurity risks of enterprise clients. We specialize in multi-technology, complex environments with the in speed and agility needed to tackle the most advanced cyber threats. We leverage our global scale and decades of experience to accelerate our clients’ cyber outcomes through a full lifecycle of cybersecurity services. We are a global company with operating centers in the United States, Canada, the United Kingdom, and India. About the Role: The Managed Services Principal Security Analyst Is a Customer-Facing Role Focused on Delivering Security Solutions and Exceptional Client Experiences. As A Trusted Advisor, The Principal Security Analyst Is Responsible for Strategic Advisory, Advanced Analysis, And Custom Security Content for Cyderes’ Managed Service Customers. This Role Requires Consistent Representation of The Cyderes Brand Through Effective Collaboration and Positive Engagement with Internal Teams and Clients. Responsibilities: Own security outcomes for assigned customers, ensuring high-quality SOC deliverables and alignment with client expectations Lead customer-facing calls to discuss incident investigations, provide strategic guidance, and offer recommendations for improving security posture Perform advanced threat hunting and proactive investigations to detect, isolate, and mitigate malicious activities in customer environments Act as a technical lead within the SOC, providing mentorship, guidance, and leadership to other Security Analysts Oversee real-time monitoring and detection activities using SIEM, EDR, and other security tools, ensuring timely identification and escalation of threats Collaborate with internal teams, such as Detection Engineering, to refine detection rules and enhance automation workflows to close gaps in customer security posture Maintain and update security operations processes and incident response playbooks to ensure they remain current and effective Provide training to Security Analysts on tools, processes, and emerging threats to enhance team capabilities Lead post-incident reviews, identifying lessons learned, and sharing findings to improve operational effectiveness Tailor detection and response strategies to meet the unique needs of individual customer environments Stay informed of the evolving threat landscape to provide actionable insights and ensure a proactive approach to security operations Requirements: Experience: Minimum 5+ years of professional experience in cybersecurity, with a strong background in security operations System Administration Knowledge/Experience: Expertise securing and investigating security incidents on Windows, Unix/Linux, and MacOS environments Networking Proficiency: Advanced understanding of networking concepts, including the ability to analyze network artifacts and logs effectively Endpoint Detection and Response (EDR): Hands-on experience with EDR tools such as SentinelOne, CrowdStrike, Microsoft Defender, or equivalent platforms Security Information and Event Management (SIEM): Advanced knowledge and experience with at least one SIEM platform, such as Microsoft Sentinel, Splunk, Google Chronicle, or IBM QRadar Technical Skills: Proficient in threat hunting, malware analysis, and leveraging security tools to investigate and mitigate threats Communication: Strong written and verbal communication skills, with the ability to create and present reports, dashboards, and strategic recommendations Certifications (Preferred): Industry-recognized certifications such as CISSP, GCIH, GCFA, OSCP, or equivalent Cyderes is an Equal Opportunity Employer (EOE). Qualified applicants are considered for employment without regard to race, religion, color, sex, age, disability, sexual orientation, genetic information, national origin, or veteran status. Note: This job posting is intended for direct applicants only. We request that outside recruiters do not contact us regarding this position.

Company Name: KDR Talent Solutions
Job Title: Head of Cyber Security
Job Description: Head of Cyber Security Location: Isle of Man | Salary: £80,000-£100,000 | Reporting to: CIO We're proud to have partnered with high-growth fintech business that is looking for a hands-on and strategic Head of Cyber Security to lead its cyber defence efforts across infrastructure, cloud, endpoints, and digital platforms. This role offers a pathway to CISO, depending on experience and performance. As the Head of Cyber Security you will be the only person solely focused on Cyber Security and will report into the CIO. This is a fantastic opportunity for you to put a real stamp on something and have a massive impact, leading to an opportunity to grow a team and have career path to a CISO role. Key Responsibilities: Define and deliver the cyber security strategy aligned with business and regulatory needs Lead risk management, governance, and compliance (PCI DSS v4, ISO 27001, SWIFT CSCF preferred) Oversee incident response, threat intelligence, and business continuity planning Drive infrastructure, cloud, and endpoint security across AWS, Azure, GCP Manage vulnerability testing, red teaming, SOC and EDR functions Foster a strong security culture through training, awareness, and internal collaboration Advise senior leadership and manage third-party security risk What We're Looking For: 5+ years in senior cyber security roles, with leadership experience Deep technical knowledge across cloud, network, and application security Strong understanding of DevSecOps, SIEM, IAM, and zero-trust frameworks Proven ability to communicate security priorities to technical and non-technical audiences Experience in highly regulated environments with knowledge of GDPR, NIST, SOC 2 This role is a hybrid role based out of our client's office in the Isle of Man, if you're not based currently in the Isle of Man but in the wider UK, you must be prepared to relocate, with financial support from our client. If the above sounds like your next challenge then click that apply button now.