Control Plane

Job Title: Technical Security Architect

Report To: Security Engineering Manager

Job Location: Remote UK (Must be able to obtain UK BPSS)

Employment Status: Full Time

Salary: Competitive

Who is ControlPlane?

We are a London based cloud native technology company, helping to keep people safe online. We work with cloud providers and their customers to secure the building blocks of the internet, by offering consulting, training and products related to cloud native development, security and operations.

ControlPlane’s priority is to continue to be a leader in the Kubernetes and Cloud DevSecOps space. We secure the next generation of software systems and provide a clear, risk-based adoption guide for organisations looking to implement best practices.

Trusted by Google Cloud, UK Home Office, JPMC, among many others, our clients are world leading organisations.

What We’re Looking For in a Technical Security Architect

We are looking for Technical Security Architects to represent the technical and cultural values of ControlPlane, leading our customers by example in the complex and fast-changing world of cloud native technology. You will perform a mix of client consulting, working on internal labs projects, and contributing to Open Source projects on ControlPlane’s behalf.

You will be comfortable defining end-to-end security architectures for cloud infrastructure platforms and CI/CD pipelines, through a combination of Threat Modelling and Proof of Concepts, and High and Low Level Designs. You are able to perform hands-on proof of concept work to demonstrate viable designs that can be clearly understood by implementing engineers.

We're looking for mid-to-senior level skill sets and must be able to obtain UK BPSS. You should have strong knowledge of container and cloud security architecture principles, and you enjoy getting hands-on, experimenting with cloud infrastructure, and want to expand your horizons in this area. You value transparency and candid feedback, and are driven by a strong desire to become the best you can be.

ControlPlane thrives on community participation and collaboration through meetups and conferences, working groups, and training. We encourage our employees to be passionate about sharing information with friends and colleagues. You may be asked to:

  • actively participate to Special Interest Groups and Technical Advisory Groups with our business partners, collaborators, and friends
  • deliver Kubernetes Security and Kubernetes Threat Modelling training
  • attend conferences and meetups in the UK and abroad

This is a unique job role within a successful start-up company where you will have the chance to make a positive impact, learn, grow and work with great colleagues who consistently challenge the status quo.

This is a remote position, but we invite you to spend time in person at our London office: this is optional and we aim to be entirely flexible to your needs. You may be expected to work on a client site for a few days a month. As a leader in the cloud native community there are opportunities for international travel.

Roles, Responsibilities and Requirements of our Technical Security Architect

Experience or knowledge of some of the below:

  • Experience of leading Threat Modelling engagements or designing Cloud Native security architectures (AWS, GCP, Azure)
  • Experience of presenting to technical design or project security authorities
  • Kubernetes and container experience (some of EKS, GKE, AKS, OpenShift, and container runtimes)
  • DevSecOps principles and Engineering practices
  • Any Vault, service mesh, in-toto, Tekton Chains, SPIFFE, and/or Sigstore experience is a plus
  • CI/CD experience, automating security tests and hardening pipelines
  • Knowledge of security tooling
    • from enterprise tools such as Aqua, Prisma Cloud, and Sysdig
    • to Open Source tools such as falco, kube-hunter and kube-bench
  • Knowledge and experience using hardening guides, compliance and risk management standards
  • Security related qualifications such as OSCP, Cloud Provider Security certifications, or CISSP
  • A desire to learn, or experience with:
    • CLI tooling in any of the above technologies
    • Golang or Python
    • Terraform and cloud infrastructure best practices (IaC, regulated systems)

Benefits

ControlPlane is a dynamic, cutting edge and passionate business for which to work. Our employees’ are the heart of our business which means we care about our company culture and our employees’ wellbeing and progression. Alongside this, as our colleague you will also have the following benefits:

  • Generous and competitive salary
  • Discretionary team bonus
  • 33 days of paid holiday, including paid leave for the standard 8 UK Bank Holidays
  • Statutory pension contribution
  • An individual training budget for personal development, including but not limited to:
    • Conferences
    • Training (books, courses, coaching, as well as internal training which is of course included beyond budget)
    • Qualifications
  • Individual development time:
    • 10 days for training
    • 7.5 days to attend and present at conferences
    • 10 days company research and development time

We are looking for technical practitioners who can work with our clients and the team to deliver these projects and help establish ControlPlane as a world-class technical thought leader.

We believe our peers are equally as important as the technology we use. We’re looking for people of the highest personal calibre, quietly confident, with a good work ethic, keenness to learn, emotional maturity and respect, who knows that “we” is more than “me”, and who embrace human diversity of all kinds. As one of our early employees you will help us to build a company culture of which we can all be proud. If you espouse these values, we want you!

NOTE FOR RECRUITMENT AGENCIES: Please do not call or email our team speculatively; we do not accept unsolicited CVs. If you wish to partner with us please contact jobs at control-plane.io.

%FOOTER_POWERED_BY%breezy