API Security Architect

looking for a senior (GCB3-equivalent) Security Solution Designer / Enterprise Architect with deep network & segmentation expertise, specifically aligned to WAAP / API security in large, regulated environments.

1. Core Mandatory Technical Skills (Non-negotiable)

Network Security & Segmentation (Primary Focus)

  • Deep, hands-on design experience with:
  • Network security architectures
  • Network segmentation (macro & micro)
  • Network Access Control
  • Proven experience across all environments:
  • Traditional data centres (physical & virtual firewalls)
  • Private cloud (SDN-based segmentation)
  • Public cloud (AWS/Azure/GCP native controls)
  • Container & Kubernetes environments
  • Strong understanding of:
  • MPLS / EVPN
  • Zero Trust principles
  • East-west traffic control

WAAP / API / Proxy Technologies

  • Experience designing or securing:
  • Web Application Firewalls (WAF)
  • API gateways & API security controls
  • Reverse proxies / ingress controllers
  • Ability to place WAAP controls correctly within segmented network architectures
  • Understanding how proxies integrate with:
  • Cloud platforms
  • Container platforms
  • Application delivery pipelines
2. Architecture & Design Authority Experience (Critical)
  • End-to-end security solution design ownership
  • Producing:
  • High-level and detailed architecture designs
  • Architecture Decision Records (ADRs)
  • Design deviations & technical debt justifications
  • Risk & issue documentation
  • Comfortable presenting to design authorities, senior stakeholders, and leadership
  • Experience aligning solutions to:
  • Enterprise reference architectures
  • Security principles, standards, and patterns
3. Governance, Risk & Regulatory Alignment
  • Strong experience in:
  • Threat modelling
  • Security assessments feeding into design
  • Ability to map:
  • Policy control implementation evidence
  • Experience designing solutions aligned to regulatory frameworks (explicitly mentions DORA)
  • Comfortable evidencing control effectiveness for audits
4. Enterprise & Transformation Experience
  • Experience working in large-scale IT transformation programmes
  • Able to work across:
  • Security
  • Infrastructure
  • Platforms
  • Application teams
  • Acts as a security SME and consultant, not just a designer
5. Tooling & Documentation (Mandatory but Supporting)
  • Architecture modelling tools:
  • BizzDesign, Archi, UML (at least one)
  • Delivery tooling:
  • Jira (task & project management)
  • Confluence (formal documentation)
  • Excellent written documentation skills (this is strongly emphasised)
6. Certifications & Background (Expected)
  • Degree in:
  • Cybersecurity, Computer Science, Software Engineering (or equivalent experience)
  • CISSP or CISM (or equivalent senior-level certs)
  • Networking/infrastructure certifications are a strong plus
Apply Now
Apply Now

Job Details

Company
KBC Technologies UK LTD
Location
London, South East, England, United Kingdom
Employment Type
Contractor
Salary
Competitive salary
Posted