Application Security Architect – London/Remote
Hybrid
London, United Kingdom
Freelance
03-04-2025
Job Specifications
Application Security Architect – London/Remote
Atrium UK are looking for an accomplished Application Security Architect to work closely with all levels of engineering and solution architecture teams to produce technical requirements and ensure solutions work together and fulfil business needs. This is a remote role with occasional visit to the London office. You must be based within the UK and be able to travel to the London Office when needed. PAYE/umbrella option/ Inside IR35. Investigate and resolve complex and high-priority incidents. Communicate to senior management on risk management concepts, as well as specific project risks and risk mitigation options/scenarios.
Manage a portfolio of applications and projects from inception to completion, ensuring the correct security controls are put in place.
Maintain a deep understanding of the business, our patients and healthcare-delivery models. This understanding includes key systems, key contacts, priorities and concerns within the business and IT.
Ensure Information Security policies and procedures are up to date, relevant and adhered to, including security and technical standards.
Perform vulnerability testing, risk analysis, and security architecture assessments.
Relates well to constraints experienced by business partners and finds practical, win-win solutions.
Analyzes customer needs; ensures solutions meet business and security requirements.
Holds self and others accountable for meeting customer needs and expectations in a timely, professional manner.
Maintains high personal accountability; takes ownership of issues, develops effective remediation approaches, and drives for results.
Employs business acumen to develop appropriate solutions and solve problems - understands business risks and business objectives. Understands health care delivery and provider environments.
Able to translate business needs into information security requirements.
Ability to communicate technical security risks in a manner that resonates with business leaders.
Ability to establish and manage to a planned set of related activities with a focus on hitting deadlines.
Stay up to date with industry trends, best practices and regulatory standards that may impact product implementations.
Essential:
Extensive experience of Application security architecture
Experience working in large and highly regulated organizations and agile environments.
Experience with practical interpretation and application of policy and standards.
Subject matter expert knowledge of the technology aspects of security.
Experience with implementation of Security within development pipelines and Dev Ops with a good understanding of customer centric design principles and software development.
Experience with GDPR, HIPAA & PCI frameworks
Technical security certification like CISSP, CCSP, CEH, Microsoft Azure or AWS or equivalent
Thorough understanding of Development and Architecture roles such as DevOps, SRE, Solution/Technical Architect and Senior Developer
Working knowledge of secure development practices and standards such as OWASP and MITRE especially on cloud providers
Excellent written and verbal communication skills with Stakeholder management and interpersonal skills at both a technical and non-technical level as well as at various levels of seniority.
Identifying the need for new, or changes to existing, security patterns for UI, API, and micro services.
Threat Modelling and dynamic security testing experience, to identify any security risks before live deployment
Development experience in .NET and/or Java. Experience with scripting (e.g. python, PowerShell, bash). Experience of web application and API development (Typescript, React, HTTP, PHP).
Demonstrable Understanding of cryptography concepts.
Business analysis experience such as requirements gathering and modelling use cases and scenarios
Knowledge of information security concepts and technologies such as IDS, email gateways and desktop security products, SIEM and SOAR platforms, web application firewalls and vulnerability management tools.
Click Apply now to be considered for the Application Security Architect – London/Remote role
About the Company
Atrium is a global WBENC-certified Talent Solutions and Extended Workforce Management leader. For nearly three decades, our customized services have provided the world’s largest brands access to top talent and helped organizations optimize their extended workforce programs to maximize results. Guided by our Applicant-Centric™ philosophy, we approach hiring from the perspective of the candidate. We build lasting relationships and find our applicants jobs they love by getting to know them and listening to what truly motivates... Know more
Related Jobs
- Company Name
- NST Recruitment Limited
- Job Title
- Security Consultant – PCNSE, Firewalls, Hybrid (3d/w London) Outside IR35 - £600/day
- Job Description
- Security Consultant – PCNSE, Firewalls, NGFW, Panorama, Palo Alto, Virtualisation, Container Network, Optimisation, Strata Cloud Manager, Hybrid (3d/w London) Outside IR35 This is an exceptional Senior Security Consultant opportunity with a leading tech organisation. Due to the nature of the projects the Security Consultant must have the PCNSE (or PCNSC) certification. The Security Consultant position would be 3 days a week in central London, remote the rest so you must be local throughout the contract. The Security Consultant is Outside IR35. As Security Consultant you will be the go to SME on the project for all things Security and Firewall related. The Security Consultant must have a PCNSE certification (essential) and ideally they would have PCNSC (desirable) Strong knowledge of Palo Alto tools/technologies are essential as is Panorama Firewall Management experience. The Security Consultant will be responsible for optimising and implementing security projects, knowledge transfer and also the creation of documentation, runbooks, playbooks etc. The Security Consultant will act as the tech authority on all thing Palo Alto, including training of colleagues as required. Strong Virtualisation, Container Network firewalls and Strata Cloud Manager would also be beneficial as Security Consultant. Excellent client facing and communication skills are a must. Key skills as Security Consultant Based commutable distance form London PCNSE Certification (essential) Strong commercial experience on Palo Alto related projects Panorama Firewall Management NGFW Optimisation Knowledge transfer Creation of documentation, runbooks, playbooks Acting as technical authority on all things PA Excellent client facing and communication skills Desirable skills as Security Consultant PCNSC Certification VM & CN FWs, Strata Cloud Manager This is a fantastic Security Consultant contract with exciting projects and longevity on offer. Key skills: Security Consultant – PCNSE, Firewalls, NGFW, Panorama, Palo Alto Networks, Virtualisation, Container Network, Optimalisation, Strata Cloud Manager, (Hybrid 3d/w London) *PLEASE READ BEFORE APPLYING* PCNSE (or PCNSC) are essential please do not apply unless you have at least one Please ensure your location is clear on your CV/application. As the role requires 3days/week on site in London - location is a factor, applications without location may be rejected *PLEASE DO NOT CALL THE SWITCHBOARD TO DISCUSS APPLICATIONS* Due to high volume we cannot discuss individual applications one of our Consultants will contact you if your application is suitable.
- Company Name
- Jumar
- Job Title
- Security Operations Center Analyst
- Job Description
- Job Title: SOC Analyst Location: Stevenage – Full-time onsite Shift Pattern: 24/7 Desk, 4 on 4 off – Days & Nights Clearance Requirements: Ideally SC/DV Cleared – Must be eligible for clearance Role Overview We are seeking a motivated SOC Analyst to join our team in Stevenage, working full-time onsite in a dynamic 24/7 Security Operations Centre environment. This role involves monitoring, detecting, analyzing, and responding to cybersecurity incidents using a wide range of security tools and platforms. Key Requirements Hands-on experience with LogRhythm, Splunk, Darktrace (Threat Visualizer), and FireEye technologies (EX, NX, HX, CMS). Solid understanding of the OSI Reference Model and key network communication protocols such as DNS, HTTP/S, SSL, SMTP, FTP/S, LDAP/S. Practical experience in incident response, log analysis, and packet capture (PCAP) analysis. Familiarity with attack vectors including phishing, port scanning, web application attacks, DDoS, and lateral movement techniques. Working knowledge of Windows and/or Linux operating systems, including how to identify indicators of compromise. Proven ability to investigate and document security alerts and incidents in a clear and concise manner for both technical and non-technical stakeholders. Capable of tracking and managing complex remediation activities, delivering clear updates to customers. Able to articulate cybersecurity risks in the context of business impact and recommend appropriate remedial actions. Collaborative mindset, with experience in team-based environments and stakeholder reporting. Prior experience handling security incidents on behalf of customers or internal teams. Familiarity with defensive cyber methodologies and frameworks. Foundational scripting knowledge (e.g., Python, PowerShell) is advantageous. Strong verbal and written communication skills are essential. Desirable Skills Knowledge or exposure to tools such as: ObserveIT Symantec MessageLabs IronPort Splunk Phantom Recorded Future This is an excellent opportunity to grow your cybersecurity career in a hands-on, fast-paced environment. If you meet the criteria and are looking for your next challenge, we’d love to hear from you
- Company Name
- Infoplus Technologies UK Limited
- Job Title
- SOC Analyst (Security Operations Center)
- Job Description
- Job Description: We are looking for a hands-on, technical analyst, to join our SOC team and help us establish monitoring and alerting for our OT estate. They must have SOC experience, ideally using Microsoft Azure & Sentinel SIEM, and must have a good understanding of OT infrastructure. Furthermore, any exposure or experience to Claroty is of significant interest. The responsibilities for this role will include, at a high level: • Configuring Microsoft Sentinel analytical rules (KQL) • Building SOPs, runbooks and procedures for addressing and responding to alerts • Cross-training the IT SOC in OT technologies and alerting • Working with OT teams to ensure adequate log coverage and ingestion and remediation activities.
- Company Name
- TieTalent
- Job Title
- Network Practice Lead
- Job Description
- About A highly accomplished and detail-oriented UK based Network Practice Lead is required to join a leading IT solutions and services provider on their journey, during a significant period of growth and success. The contract will be home based so the candidate can claim mileage if travelling an office or client site. Candidates must be UK based and be able to travel to either the Reading or Leeds office. Preferred 1 day a week but can accommodate once a fortnight. Reasons to work for our client - Benefits Work with industry-leading technology to drive meaningful outcomes for clients Work in a fast-packed work culture where individuals are empowered to succeed Be a valued member in a rapidly growing team, with ambitious scale up plans A range of benefits are on offer (including electric vehicle benefit scheme, cycle to work scheme, private medical care, life assurance and health and wellbeing programmes) Own projects throughout the complete delivery lifecycle State of the art working space and facilities in Berkshire and Leeds with flexible remote working optionsThe Role: As the Network Practice Lead, your main focuses will be to help build highly resilient, scalable and modern product offerings and GTM strategy alongside fronting initial scale engagements with key clients as our client grows the practice. The successful candidate will be a driving force in the development of cutting-edge WAN and LAN networking technologies at the inception of new service propositions. This is your opportunity to make a mark - shaping and defining the future and productisation of new service offerings. Your role will be client facing but you are still technically strong. You will be commercially aware with a business mindset, an expert communicator and you'll be able to converse with a range of technical and non-technical stakeholders from client C-Suite through to internal Board of Directors. Being vendor agnostic is crucial - you'll need excellent knowledge and experience across multi-vendor networking solutions spanning traditional WAN and next gen cloud delivered WAN and LAN architectures. You'll also have deep knowledge of security and connectivity concepts with the ability to build a clients Internetwork Strategy Roadmap, linking in the benefits of multiple business propositions including Cloud networking. Your approach will be customer centric led to deliver outcome based solutions and you'll continually put the customer first. Ideal experience - In depth knowledge of major networking vendors - Fortinet, Palo Alto, Cisco, HPE Aruba and NVIDIA (Mellanox & Cumulus). MSP/VAR essential. In depth knowledge of virtualised network functions (NFVs) and Cloud network virtual appliances (NVAs) Formal training or certification on network migration concepts and proficient expert experience. Technical hands on ability to build out networking environments with best in class security and practices, and at scale with infrastructure as code (IaC) approaches (Terraform, Ansible, Python etc). Proven experience in managing multiple large scale network delivery projects and third parties. Proven successful experience in the Information Technology market with a demonstrable track record of developing teams and individuals. Have solid knowledge of security and connectivity concepts with a focus on Hybrid Cloud delivery. Our customers need to securely connect to cloud apps and services at scale and with the best internetworking experience. Demonstrable experience in delivering change initiatives in line with business strategy. Experience in portfolio creation and management, business and IT alignment, strategic planning and GTM planning.If this opportunity appeals to you and aligns closely to your background - please submit your application to Jackie Dean at Jumar for consideration. Jumar takes great pride in representing socially responsible clients who not only prioritise diversity and inclusion but also actively combat social inequality. Together, we have the power to make a profound impact on fostering a more equitable and inclusive society. By working with us, you become part of a movement dedicated to promoting a diverse and inclusive workforce Nice-to-have skills Fortinet Cisco Terraform Ansible Python Hybrid Cloud Reading, England Work experience System Engineer NOC Engineer Network Administrator Network Engineer Languages English