Company Description

Dev/Null Security is a cyber security consultancy specializing in security solution architecture, engineering, implementation, and operational support. Our team brings decades of experience in defending high-value assets and systems against sophisticated threats. We offer a range of services including Strategy + Advisory, Consulting + Managed Services, and Privileged Access Management. Our top-tier consulting teams ensure quality and value throughout the process. Contact us at [email protected] for more information.

Role Description

This is a full-time hybrid role for a Security Architect based in either Manchester, Glasgow, Sheffield, Birmingham or Edinburgh. The Security Architect will be responsible for designing and implementing security solutions, defining security policies, conducting risk assessments, and providing advisory services. The role involves collaborating with clients to understand their security needs and developing tailored solutions.

Qualifications

• Experience in CNAPP platforms such as Wiz, Prisma Cloud, Orca, Lacework, or Aqua Security and their capabilities across CSPM, CWPP, CIEM, DSPM and KSPM. 

• Strong knowledge of public cloud platforms . 

• Experience with container technologies and orchestration platforms including securing workloads and cluster configurations. 

• Strong understanding of Infrastructure as Code (IaC) tools. 

• Expertise in CI/CD pipeline integration, including embedding security controls into development toolkits. 

• The ability to conduct threat modelling, risk assessment, and design secure architectures for cloud-native applications and workloads.

• Familiarity with runtime protection and workload scanning for VMs, containers, and serverless using CNAPP or CWPP features. 

• Experience with identity and access management in the cloud, including least privilege design, CIEM tools, and federated identity models.

• Experience designing cloud-native security reference architectures, patterns, and reusable templates for development and platform teams. 

• Familiarity with compliance frameworks and security benchmarks, including CIS, NIST, ISO 27001, and how they apply to cloud-native applications.