Kainos is seeking a Senior Security Architect (Manager) to embed robust security into the heart of our customer solutions. In this role, you will design and apply industry-leading security practices to the platforms and services we build, ensuring they are resilient and trustworthy from the ground up. At Kainos, we foster a people-first culture where your ideas are valued, your growth is supported, and your contributions make a real difference.
What You'll Do
- Design and apply industry-leading security practices in the platforms and services built for our customers.
- Collaborate with Agile delivery teams to ensure they follow good security practices throughout the entire software development lifecycle.
- Share knowledge and help educate customers and Kainos team members on good security practices.
- Manage, coach, and develop a small number of staff, focusing on performance management and career development.
- Provide direction and leadership for your team as you solve challenging security problems together.
What We're Looking For
- Expertise in leading the secure design of new cloud services and solutions in line with defined security strategies.
- Expertise in identifying security issues in existing system designs and recommending sensible mitigations that balance cost, risk, and usability.
- Knowledge of security standards and regulations (e.g., NCSC, ISO, SoC, NIST, PCI, GDPR).
- Experience in one of the following specialisms: AI/ML/Data/Cloud/M365/Security Architecture.
- Background in application architecture, software development and/or infrastructure architecture.
- Industry experience in one of the following sectors: Public/Healthcare.
- Experience in testing the security of software and infrastructure using appropriate security tools.
- Experience with Continuous Security, Continuous Integration and Continuous Delivery techniques.
- Experience with network security (e.g., OSI, TCP/IP), web application security (e.g., OWASP), and cryptographic controls (e.g., PKI, TLS).
- A demonstrated ability in managing, mentoring, and coaching members of your team and the wider community.
- Excellent communication skills, with the ability to convey security complexities to audiences of various technical abilities.
Nice to Have
- Experience with Identity management and authentication/authorization products and patterns.
- Experience in at least one Industry Vertical.
- Involvement across the full security lifecycle.
- End-to-end security involvement, including governance, risk and compliance, operational security, supply chain security and secure user management.
- Active participation in knowledge sharing activities, both within the team and at a wider capability level and externally where appropriate.
- Penetration specialist certifications.
We are committed to building a team that is as diverse as the world we live in, where everyone is valued, respected, and given an equal chance to thrive.
