Minimum (essential) requirements:
Experience in the secure design and delivery of new cloud services and solutions.
Experience in identifying security issues in existing system designs or products, including recommending sensible mitigations that balance cost, risk and usability.
Knowledge of security standards and regulations (e.g. NCSC, ISO, SoC, NIST, PCI, GDPR).
Experience in application architecture, software development and/or infrastructure architecture.
Experience testing the security of software and infrastructure using appropriate security tools.
Experience with Continuous Security, Continuous Integration and Continuous Delivery techniques.
Experience of network security (e.g. OSI, TCP/IP), web application security (e.g OWASP) and cryptographic controls (e.g. PKI, TLS).
Experience of mentoring and coaching members of your team and wider community.
Excellent communication skills, with the ability to convey security complexities to audiences of various technical abilities (e.g. senior stakeholders, development teams).
Desirable: Experience, skills, knowledge & ability
Experience of Identity management and authentication/authorisation products and patterns.
End-to-end security involvement, including governance, risk and compliance, operational security, supply chain security and secure user management.
Penetration testing qualifications (e.g. OSCP, CREST, TIGER or equivalent
Experience leading security engineers and other junior members of staff
Who you are:
Our vision is to enable outstanding people to create digital solutions that have a positive impact on people’s lives. Our values aren't abstract; they are the behaviours we expect from each other every day, and underpin everything that we do. We expect everyone to display our values by being determined in how obstacles are overcome; honest when dealing with others; respectful of how you treat others; creative to find solutions to complex problems and cooperative by sharing information, knowledge and experience.
These values, applied collectively, help to produce an outstanding Kainos person, team and culture.
Kainos is a high-growth IT services company providing digital technology solutions and agile software development to enterprise customers. Across our 30-year history, we have worked on transformational projects across government, NHS and a myriad of private sector clients.
We’re an inclusive bunch at Kainos and we believe in equal opportunity. We welcome applications from all walks
of life, including those with criminal records. Everyone who is offered a position here undergoes a background
check, however no one is treated differently due to their background where it isn’t relevant to the role. It’s
important to note – failure to reveal information which is relevant to the position sought, could result in us
having to withdraw the conditional offer of employment.
In short: Having a criminal record will not exclude you from a career with Kainos. This depends entirely on the nature and requirements of the position, together with the circumstances and background of offences.