Responsibilities
- Designing, maintaining, and supporting secure infrastructure for platforms, applications, and data.
- Automating processes to enable rapid, secure deployment of approved features across environments.
- Reviewing and validating code contributions as part of governance and quality assurance.
- Building systems with security embedded from the outset to defend against cyber threats.
- Collaborating with business units, architects, engineers, security, and data teams to align delivery with standards.
- Contributing to project planning and participating in key project management decisions.
- Overseeing the architecture, security posture, and ongoing operations of on-premises and cloud infrastructure.
- Making sound technical judgments, explaining rationale clearly, and resolving complex technical disagreements.
- Translating technical concepts into accessible language for non-technical stakeholders across departments.
- Enabling data access through APIs, integrating data across systems, and supporting real-time data streaming.
- Identifying, assessing, and documenting risks related to system deployment.
- Embedding security practices throughout the software development lifecycle.
- Proactively identifying potential security vulnerabilities and defining strategies to reduce risk.
- Implementing and managing technical security controls.
- Monitoring infrastructure performance and detecting potential security threats.
- Ensuring systems comply with relevant security regulations and industry standards.
- Accelerating the release of secure software without compromising safety.
- Improving adherence to security policies and regulatory requirements.
- Increasing organizational awareness of current and emerging security risks.
Requirements
- Proven experience creating and managing Infrastructure as Code across development to production environments.
- Committed to evolving workflows and adopting best practices through customer and market insights.
- Able to understand stakeholder needs and communicate them effectively to technical and non-technical audiences.
- Familiar with NCSC principles for secure system design.
- Experienced in securing cloud and on-prem platforms, including managing secrets, tokens, and certificates.
- Experience working within agile delivery frameworks.
Nice to Have
- Experience collaborating with multiple teams, particularly security teams.
- Strong background in designing on-prem infrastructure for application and database deployment or migration.
- Experience with hybrid infrastructure combining on-premise and cloud environments.
- Proficient across a broad technology stack, capable of selecting appropriate tools for specific projects and organizational needs.
- Able to create innovative solutions within technical and budgetary constraints.
- Deep understanding of software change and release management, including technical governance and live system maintenance.
- Skilled in container platforms like Kubernetes, Docker, and PKS; provisioning tools such as Ansible and Terraform; and performance monitoring using YAML and related technologies.
- Experience conducting functional and non-functional testing.
- Demonstrated experience in automating the deployment of applications, databases, and infrastructure.
- Familiarity with the UK Government Digital Service (GDS) standards across Discovery, Alpha, Beta, and Live phases.
- Understanding of SaaS, PaaS, and IaaS models and their trade-offs compared to custom-built solutions.
- Capable of delivering training, guidance, and mentorship to broader teams.
- Knowledge of documenting and communicating deployment risks effectively.
Work Arrangement
Hybrid
Other
- Applicants must hold, or be eligible for, Security Clearance.
- Candidates will be required to complete the Baseline Personnel Security Standard during onboarding.
- Further details on required documentation are available on the Gov.UK website.
- Failure to meet these security requirements may result in delayed or rejected employment.
- These requirements will be discussed during the interview process.
