Here at esure, we re no strangers to change. As one of the industry leaders in the insurance business, striving to become a world class digital insurer, we re getting ready for more. It s creating great new opportunities for innovative and talented industry professionals to join us at a pivotal point in our development.

4 - 6 months | Inside IR35 

We have an outstanding contract opportunity for someone to join our team as a Cloud Security Architect, where you'll play a crucial role in crafting our security landscape.

Join forces with diverse teams, including security, architecture, engineering, and DevOps, to champion best security practices. You'll be the go-to person for Information Security Architecture, actively contributing to the development of innovative cloud security best practices.

• Contribute to strategic development of Cloud security practices for both Run and Change.
• Collaborate with Architecture, Engineering, DevOps colleagues and squads to review design documents and advocate security best practice.
• Build and maintain Cloud security architecture patterns and reference architecture patterns. Where applicable; map to MITRE ATT&CK and MS Kubernetes threat matrix.
• Continually review and extend Cloud Security Playbooks and preventative controls
• Collaborate with internal DevSecOps and DevOps squads and help provide guidance around adopting security by design
• Support the development of our security operations for monitoring, testing and, where vital, conduct Cloud implementation review audits.
• Where appropriate, you may be required to support the Incident Response team.

What we d love to see:

• A continual passion to learn and inspire, setting a good example across the business
• You will need to have a good background in Cloud Security Architecture and DevOps practices
• Experience working with cloud platforms, particularly AWS services (EC2, EKS(K8), VPC, ELB, S3, RDS, WAF,
• Lambda, SNS, ELK, etc.)
• Thread modelling techniques and aware of common threats and
• implementation failings
• Experience of API integration and Security techniques
• Knowledge of AuthN/AuthZ protocols, such as OpenID Connect, OAuth, SAML and AD
• CISSP or equivalent qualification

Bonus points if you have any of the below:

• Kubernetes(K8) / Microservices experience
• Experience of risk modelling concepts (e.g. STRIDE/DREAD)
• Awaremess of threat matrix for Kubernetes and of MITRE ATT&CK
• Knowledge of security automation tooling to facilitate CI/CD
• Application(L7) Security knowledge
• You may have experience with application security tooling (SAST, DAST)
• Ability to read and understand code/scripts (e.g. Python, Terraform)
• Awareness of vulnerability management and penetration testing tools

We are committed to continual learning; at esure you will be supported to grow in missing disciplines:

• AWS Architect / AWS Security Specialist
• (ISC) CCSP or (SANS) Cloud Security Architect SEC545
• Privacy by design CIPP/E or CIPT

This is your opportunity to shape our game-changing journey and be part of something truly special! And to top it off, here are some perks to life at esure

We understand some people may not apply for jobs unless they tick every box. If you are excited about joining us and think you have some of what we are looking for, even if you re not 100% sure we would love to hear from you.

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, colour, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.