Senior Security Consultant

“What if you could embed security into a platform before it goes live—not fix it after?”

Coba IT are hiring on behalf of a client for a Senior Security Consultant to lead security across a brand-new, cloud-native platform being built from the ground up.

This is not a box-ticking role. It’s a chance to operate at the intersection of fast-paced engineering and rigorous governance—shaping security strategy while enabling delivery at speed.

The Role

As a Senior Security Consultant, you’ll act as the technical security lead within a high-velocity engineering environment.

You’ll work closely with engineering teams and senior stakeholders, ensuring a secure-by-design approach is embedded throughout the entire development lifecycle—from architecture through to deployment.

Key Responsibilities

Security Architecture & “Shift-Left”

• Lead security design across platform and product engineering
• Conduct architecture reviews and threat modelling early in the lifecycle
• Provide pragmatic guidance that enables delivery, not blocks it
• Design and secure AWS-based environments using modern cloud-native approaches
• Secure CI/CD pipelines and containerised environments (Docker/Kubernetes)
• Drive adoption of “controls-as-code” and automated security practices
• Act as a key link between engineering teams and senior security leadership
• Translate technical risks into clear business impacts
• Influence governance forums and ensure alignment to risk appetite

Modern Workspace Security

• Lead security hardening across collaboration and endpoint environments
• Support secure configuration of modern workplace tooling and infrastructure

What We’re Looking For

• Strong background in Security Architecture or Consultancy
• Experience operating within financial services, fintech, or regulated environments
• Deep expertise in AWS security and cloud architecture patterns
• Hands‑on experience securing CI/CD, IaC, and containerised environments
• Strong understanding of AppSec, IAM, cryptography, and network security
• Experience applying frameworks such as NIST, ISO 27001, or PCI DSS
• Ability to engage both engineers and senior stakeholders confidently
• Exposure to payments or merchant platforms
• Experience with endpoint and workspace security (e.g. JAMF, modern device estates)
• Knowledge of Google Workspace security
• Experience supporting red team readiness or pre-go-live security assurance

What’s on Offer

• Hybrid working based in London
• Opportunity to work on a truly greenfield, cloud-native platform
• High-impact role with direct exposure to senior security leadership
• Fast-paced, engineering-driven environment with real influence on outcomes