Job Description

We have an exciting opportunity for a Security Solution Designer managing end-to-end solution design, responsible for delivering architecture design documents in line with functional and non-functional business requirements, strategies, principles, standards, and patterns. Alongside the creation of high-level designs, you will be required to publish new architecture patterns, key decisions, design deviations, and technical risks and issues where appropriate.

The Security Solution Designer should be comfortable presenting and sharing solutions at design authorities and senior leadership & stakeholders level. Additionally, the Security Solution Designer will provide technical thought leadership and direction to their aligned projects and may stand in as subject matter experts and consultants related programmes.

Principal Preferred Requirements

Cybersecurity Expertise:

Significant experience and proven technical depth within the following domains identity & access management, cryptography, privileged access management, SSH key management. Broad background across information technology with the ability to communicate clearly with non-security technical SMEs at a comfortable level Experience working in large-scale IT transformation programmes
Significant experience and proven technical depth within cryptography, including;

Design and implement secure SSH key management solutions for large scale hybrid (on-prem, Cloud) environments. Experience with the design, deployment, and management of key management systems (e.g., AWS KMS, Azure Key Vault, Google Cloud KMS, HashiCorp Vault). Public Key Infrastructure (PKI): Framework for managing digital certificates and public-key encryption. Understanding of digital certificate management and secure communication protocols (e.g., TLS) using digital signatures. Knowledge of hardware security modules (HSMs) for storing cryptographic keys securely, including integration with enterprise applications for key generation and usage. Familiarity with NIST's Post-Quantum Cryptography (PQC) standardization efforts and practical approaches for transitioning to quantum-resistant encryption schemes. Knowledge of FIPS 140-2 and FIPS 140-3 validated cryptographic modules and their integration with enterprise applications. Expertise in cryptographic risk management, including assessing the potential impact of cryptographic weaknesses and determining mitigations such as key rotation, algorithm migration, or enhanced entropy sources.

Qualifications & Certifications:

Bachelors or Master's degree in cybersecurity, computer science, software engineering, or related field CISSP/CISM certification or other broad cybersecurity industry-recognised certificate

Platform & Technology:

BizzDesign, Archi, or generic UML visualisation experience for high-level designs Working proficiency in Jira for project & tasks management Working proficiency in Confluence for documentation

Principal Accountabilities and Responsibilities

Architecture & Design:

Produce, manage, and update end-to-end solution designs in line with reference architecture & business requirements Articulate and publish key design decision records and options to ensure all solutions follow a logical, transparent decision-making process Articulate, publish, and ensure approval of any design deviations resulting in technical debt Ensure any technical risks or issues arising from a solution design are recorded and mitigated. Produces, manages and translates the requirements into the architecture for that solution, ensuring technology and services meet the customer needs and expected business outcomes Ensures the design of the solutions are efficient, timely and cost effective throughout the project lifecycle Clear understanding of both the motivations of the business and technical security Promote strong documentation and clerkship

Governance:

Ensures all high-level designs, architecture patterns, decision records, deviation requests, and technical risks or issue records undergo architectural and project governance processes Ensure all architecture artefacts undergo appropriate peer review prior to design authority presentation Present publications at technical design authorities for input, feedback, and approval

Risk and Dependency Management:

Effectively manages and escalates both technical and project risks or issues Articulates solutions and remediation steps to technical risks & issues Ability to map design decisions to resultant technical risks & issues to articulate the cause and rationale which leads to any negatively impacting change

Leadership & Teamwork

Provides technical thought leadership in their domain of expertise Willingness and ability to work across information technology as a cybersecurity SME

Your Base

Whilst DevNull Security are a remote-first company, our consulting team may be required to travel to a physical site 2-3 times per week (either Edinburgh, Birmingham, Sheffield, Manchester, London or Glasgow) subject to project/customer requirements.

A career in cybersecurity should be accessible for everyone. We encourage all applicants, regardless of race, ethnicity, gender, age, sexual orientation, disability, or neurotype. We want to ensure our hiring experience is inclusive, fair, and accessible but recognize that as a new company, we might sometimes miss something.

Requirements added by the job poster

Commute to this job's location No need for visa sponsorship Authorized to work in United Kingdom Working in a hybrid setting
Job Type: Full-time

Pay: 80,000.00-90,000.00 per year

Benefits:

Company events Company pension Life insurance Private medical insurance Referral programme Work from home
Work Location: Hybrid remote in London