Rodeo
ResourcesPartnersSign in

hackajob

Security Consultant / Cyber Security Consultant / Cloud Security Architect / Security Architect

United Kingdom
Posted 22 days ago
Sign up to applySee more jobs like this

How your CV stacks up

1Upload CV
2Analyse CV
3Improve CV

Upload your CV to see how well it fits this job role

?%

hackajob is collaborating with Version 1 to connect them with exceptional professionals for this role.

Role Summary

We are seeking a hands-on Security Consultant who can combine deep technical delivery capability with strong client-facing consulting skills. The ideal candidate will be comfortable assessing, designing, improving and governing security controls across cloud environments, applications, APIs, infrastructure and enterprise security domains. This role requires someone who can challenge customer security assumptions, influence stakeholders, and lead difficult but constructive conversations to drive secure outcomes.

Key Responsibilities

  • Assess current-state security maturity, identify control gaps, and define pragmatic remediation roadmaps aligned to business priorities.
  • Lead and support security architecture reviews across cloud, applications, infrastructure, IAM, data protection and detection/response domains.
  • Provide expert consulting to customers on security strategy, risk reduction, control design, and security operating model improvements.
  • Challenge weak security assumptions with confidence, using evidence-based recommendations and clear communication with technical and non-technical stakeholders.
  • Design and review secure cloud landing zones, network segmentation, identity models, logging/monitoring patterns, and guardrails.
  • Partner with engineering, platform, DevOps and operations teams to embed security into delivery pipelines and infrastructure as code practices.
  • Support threat detection, incident response readiness, use-case tuning, and post-incident improvement activities.
  • Contribute to security standards, policies, patterns, reusable accelerators, and client-facing deliverables including assessments, risk registers and executive summaries.

Required Hands-On Experience

Cloud Security (preferably AWS or GCP)

  • Hands-on experience securing cloud environments, preferably AWS or GCP, including core services, networking, identity, logging, encryption and security monitoring.
  • Experience reviewing or implementing secure cloud architectures, landing zones, account/project structures, and preventative/detective controls.
  • Knowledge of cloud-native security services and best practices for workload, storage, network and platform protection.

Reasons to use Rodeo

I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?

Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.

Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.

Start with a chat, not a search bar

Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.

P

Graduate Consultant — 2026 Scheme

PwC·London, UK
£35,000/yr

Why you're a good match

Strong

Your economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.

See breakdown
Save jobNot relevant
View details

It searches the market for you

Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.

Why you're a good match

You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.

See breakdown
Strong

Experience fit

Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.

See breakdown
Strong

Only hits

No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.

Application / API Security

  • Experience identifying and mitigating application and API security risks across the software delivery lifecycle.
  • Understanding of secure design principles, common web/API vulnerabilities, authentication/authorization models, secrets management and secure SDLC practices.
  • Ability to work with development teams to improve application security posture and shift security left.

SIEM Experience

  • Hands-on experience with SIEM platforms for log onboarding, correlation rule creation, alert triage, dashboarding and use-case tuning.
  • Ability to improve visibility, reduce noise, and align SIEM content to relevant threats and business risks.

Organisation / General Security

  • Broad understanding of enterprise security domains including policy, governance, risk, compliance, awareness, third-party risk and operational security.
  • Experience translating business and regulatory requirements into practical security controls and improvement plans.

Identity & Access Management (IAM)

  • Hands-on experience with identity and access management principles including RBAC, least privilege, privileged access, federation/SSO, MFA and access governance.
  • Experience reviewing entitlement models, service identities and access control weaknesses across enterprise and cloud platforms.

Data Protection

  • Experience implementing or advising on data classification, encryption, key management, secrets handling, tokenisation/masking, backup security and data lifecycle protection.
  • Understanding of how to secure sensitive data in transit, at rest and in use across modern platforms.

Infrastructure Security

  • Experience securing operating systems, virtual machines, containers/Kubernetes, networks and platform services using hardening, segmentation, vulnerability management and secure configuration practices.
  • Ability to assess infrastructure risks and recommend practical remediation approaches.

Get help with your application

Your very own career expert that helps elevate your application to the next level.

Get help applying for this job

Threat Detection & Incident Response

  • Experience in threat detection engineering, incident triage, investigation support, response coordination and lessons-learned improvement activities.
  • Ability to map telemetry and controls to attack paths, detection scenarios and response playbooks.

Infrastructure as Code (IaC)

  • Hands-on experience with infrastructure as code and automation, including reviewing templates/modules for security risks and embedding policy/compliance checks into delivery pipelines.
  • Ability to apply security guardrails to repeatable platform provisioning and change delivery.

Strong Consulting Skills

  • Strong consulting and stakeholder management skills, with the confidence to challenge customer assumptions and lead difficult security conversations when needed.
  • Ability to balance risk, delivery timelines, business context and technical constraints to provide credible, pragmatic recommendations.
  • Strong written and verbal communication skills, including workshops, assessments, reports and executive-level briefings.

Core Skills & Competencies

  • Cloud security architecture and control design
  • Security assessments, gap analysis and remediation planning
  • Stakeholder engagement and client advisory
  • Security architecture documentation and reporting
  • Risk-based decision making and prioritisation
  • Cross-functional collaboration with engineering, operations and leadership teams
  • Strong analytical, investigative and problem-solving capability

Preferred Qualifications

  • Experience working in consulting, professional services, or customer-facing transformation programmes.
  • Relevant certifications in cloud, security, architecture or incident response are advantageous.
  • Exposure to regulated environments and security frameworks is beneficial.
  • Experience with DevSecOps, CI/CD security integration and security automation is desirable.
Trusted by 25,000+ job seekers

“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”

Jessica, London

Get help applying for this job

Skills

Cloud Security
Application Security
API Security
SIEM
Identity Management
Data Protection
Infrastructure Security
Threat Detection
Incident Response
Infrastructure as Code
Consulting Skills
Stakeholder Management
Security Architecture
Risk Management
Problem Solving
Analytical Skills

Location

United Kingdom

Sign up to applySee more jobs like this