Cloud Native Security Consultant
Remote Worldwide
Applications have closed
Control Plane
Delivering world-leading consulting solutions for Cloud, Kubernetes, and supply chain security. Secure-by-design and secure-by-default are in our DNA.Job Title: Cloud Native Security Consultant
Report To: Security Engineering Manager
Job Location: Remote and / or London (Right to work in UK or EU required)
Employment Status: Full Time
Salary: Competitive
We are a London based cloud technology company, helping to keep people safe online. We work with cloud providers and their customers to secure the building blocks of the internet, by offering consulting, training and products related to cloud native development, security and operations.
ControlPlane’s priority is to continue to be a leader in the Kubernetes and Cloud DevSecOps space. We secure the next generation of software systems and provide a clear, risk-based adoption guide for organisations looking to implement best practices.
Trusted by Google Cloud, UK Home Office, JPMC, among many others, our clients are world leading organisations.
What We’re Looking For in a Security ConsultantWe are looking for security consultants to represent the technical and cultural values of ControlPlane, leading our customers by example in the complex and fast-changing world of cloud native technology. You will perform a mix of client consulting, working on internal labs projects, and contributing to Open Source projects on ControlPlane’s behalf.
There is no perfect candidate for this role. As we look to extend our cloud native security team we welcome engineers and architects with a diverse range of capabilities, experiences and backgrounds.
We are SANS authors (SEC584) and believe strongly in team learning and collaboration. Candidates with an aptitude to learn are preferred, and we provide full training for the newest cloud technologies that our customers rely on.
This is a unique job role within a successful start-up company where you will have the chance to make a positive impact, learn, grow and work with great colleagues who consistently challenge the status quo.
This is a remote position, but we invite you to spend time in person at our London office: this is optional and we aim to be entirely flexible to your needs. You may be expected to work on a client site for a few days a month. As a leader in the cloud native community there are opportunities for international travel.
Roles, Responsibilities and Requirements of our Cloud Native Security Consultant
Experience or knowledge of some of the below:
- Experience of Threat Modelling and Cloud Native Security architectures (AWS, GCP, Azure)
- Kubernetes and container experience (some of EKS, GKE, EKS, OpenShift and container runtimes)
- DevSecOps principles and Engineering practices
- Any Vault, service mesh, in-toto, Tekton Chains, SPIFFE, and/or Sigstore experience is a plus
- CI/CD experience, automating security tests, and hardening pipelines
- Knowledge of security tooling
- from enterprise tools such as Aqua, Prisma, Sysdig, Lacework, etc
- to Open Source tools such as falco, kube-hunter, and kube-bench
- Knowledge and experience using hardening guides, compliance and risk management standards
- Security-related qualifications such as OSCP, Cloud Provider Security certifications, or CISSP
- A desire to learn, or experience with:
- CLI tooling in any of the above technologies
- Golang or Python
- Terraform and cloud infrastructure best practices (IaC, regulated systems)
ControlPlane is a dynamic, cutting edge and passionate business for which to work. Our employees are the heart of our business, which means we care about our company culture and our employees’ wellbeing and progression. Alongside this, as our colleague you will have the following benefits:
- Generous and competitive salary
- Discretionary team bonus
- 33 days of paid holiday, including paid leave for the standard 8 UK Bank Holidays
- Statutory pension contribution
- An individual training budget for personal development, including but not limited to:
- Conferences
- Training (books, courses, coaching, as well as internal training which is of course included beyond budget)
- Qualifications
- Individual development time:
- 10 days for training
- 7.5 days to attend and present at conferences
- 10 days company research and development time
We are looking for technical practitioners who can work with our clients and the team to deliver these projects and help establish ControlPlane as a world-class technical thought leader.
We believe our peers are equally as important as the technology we use. We’re looking for people of the highest personal calibre, quietly confident, with a good work ethic, keenness to learn, emotional maturity and respect, who know that “we” is more than “me”, and who embrace human diversity of all kinds. As we grow you will help us to build a company culture of which we can all be proud. If you espouse these values, we want you!
NOTE FOR RECRUITMENT AGENCIES: Please do not call or email our team speculatively; we do not accept unsolicited CVs. If you wish to partner with us please contact jobs at control-plane.io
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: AWS Azure CI/CD CISSP Cloud Compliance DevSecOps GCP Golang Kubernetes Open Source OSCP Python Risk management SANS Terraform
Perks/benefits: Career development Competitive pay Conferences Flex hours Flex vacation Travel
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open ISO 27001-related jobs
- Open Clearance-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open CI/CD-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs