Principal Cloud Native Security Consultant
Job Title: Principal Cloud Native Security Consultant
Report To: Security Engineering Manager
Job Location: London (Must be able to obtain UK SC or above)
Employment Status: Full Time
Salary: Competitive
Who is ControlPlane?
We are a London based cloud technology company, helping to keep people safe online. We work with cloud providers and their customers to secure the building blocks of the internet, by offering consulting, training and products related to cloud native development, security and operations.
ControlPlane's priority is to continue to be a leader in the Kubernetes and Cloud DevSecOps space. We secure the next generation of software systems and provide a clear, risk-based adoption guide for organisations looking to implement best practices.
Trusted by Google Cloud, UK Home Office, JPMC, among many others, our clients are world leading organisations.
What We're Looking For in a Principal Cloud Native Security Consultant
As a Principal level consultant you will represent the technical and cultural values of ControlPlane, leading our customers by example in the complex and fast-changing world of cloud native technology. You will assume end to end responsibilities across a mix of client consulting and internal projects.
You will be comfortable leading engagements and defining end-to-end security architectures for cloud infrastructure, through a mixture of threat modelling and proof of concepts. You will also have insight into security operations and incident response for cloud environments, with experience of defining events, SOC integration & engineering and running table top exercises for incident response.
We're looking for principal level skill sets. You should have strong knowledge of container and cloud security architecture principles, and you enjoy getting hands-on, experimenting with cloud infrastructure, and want to expand your horizons in this area. You value transparency and candid feedback, and are driven by a strong desire to become the best you can be.
ControlPlane thrives on community participation and collaboration through meetups and conferences, working groups, and training. We encourage our employees to be passionate about sharing information with friends and colleagues.
Roles, Responsibilities and Requirements of Our Principal Consultant
Experience or knowledge of some of the below:
- Experience of leading Threat Modelling engagements or designing Cloud Native security architectures (AWS, GCP, Azure)
- Security Operations and Incident Response experience within a cloud environment, including defining events, SOC engineering and running table top exercises
- Consulting experience including managing engagements, running workshops and presenting to project security authorities.
- Kubernetes and container experience (some of EKS, GKE, AKS, OpenShift, and container runtimes)
- DevSecOps principles and Engineering practices
- CI/CD experience, automating security tests and hardening pipelines
- Knowledge of security tooling
- from enterprise tools such as Aqua, Prisma Cloud, Sysdig, Splunk and Logrythm.
- to Open Source tools such as falco, kube-hunter, and kube-bench
- Knowledge and experience of hardening guides, compliance standards and MITRE ATT&CK and Adversary Tools, Techniques and Procedures.
- Security related qualifications such as OSCP, Cloud Provider Security certifications, or CISSP
- A desire to learn, or experience with:
- CLI tooling in any of the above technologies
- Golang or Python
- Vault, service mesh, in-toto, Tekton Chains, SPIFFE, and/or Sigstore
- Terraform and cloud infrastructure best practices (IaC, regulated systems)
Benefits
ControlPlane is a dynamic, cutting edge and passionate business for which to work. Our employees are the heart of our business, which means we care about our company culture and our employees' wellbeing and progression. Alongside this, as our colleague you will have the following benefits:
- Generous and competitive salary
- On target performance-based bonus
- 33 days of paid holiday, including paid leave for the standard 8 UK Bank Holidays
- Enrolment in the company's private medical insurance scheme
- £50 per month to spend on health and wellbeing
- Enhanced parental leave
An individual training budget for personal development, including but not limited to:
- Conferences
- Training (books, courses, coaching, as well as internal training which is of course included beyond budget)
- Qualifications
Individual development time:
- 10 days for training
- 7.5 days to attend and present at conferences
- 10 days company research and development time
We are looking for technical practitioners who can work with our clients and the team to deliver these projects and help establish ControlPlane as a world-class technical thought leader.
We believe our peers are equally as important as the technology we use. We're looking for people of the highest personal calibre, quietly confident, with a good work ethic, keenness to learn, emotional maturity and respect, who know that "we" is more than "me", and who embrace human diversity of all kinds. As we grow you will help us to build a company culture of which we can all be proud. If you espouse these values, we want you!
NOTE FOR RECRUITMENT AGENCIES: Please do not call or email our team speculatively; we do not accept unsolicited CVs. If you wish to partner with us please contact jobs at control-plane.io
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
