Technical Security Consultant

We are looking for a Technical Security Consultants to work as part of our Security Consultancy team to support the delivery of business change as we move capabilities to the cloud in a scaled agile environment with a strong and evolving DevSecOps approach. Work to support fast paced change in an exciting and growing business as Admiral continues to develop its offerings placing the customer at the centre of everything we do. 

As a Technical Security Consultant your main duties will be to:

• Understand the Strategic Business Objectives, actively contribute to achieving them. 
• Provide technical security consultancy to the change delivery functions – agile & waterfall.
• Assess security posture in CI/CD pipelines and support improvement.
• Support the Security Champions Programme and DevSecOps.
• Understand and deliver security assessments, threat modelling and security consultancy for Generative AI and Machine Learning.
• Liaise and collaborate with technical stakeholders within Agile Tribes, Projects, and Programmes.
• Assess changes for technical vulnerabilities, threat models, assess security risk exposure, and identify appropriate controls to bring the risk within tolerance.
• Engage effectively with specialists in Security Architecture, Security Operations, Security Culture, Security Delivery, and Security Risk and Governance teams to ensure completeness and consistency of the advice provided to delivery functions.
• Perform design reviews to ensure security principles and controls are included from design phase.
• Ensure advice provided is of a high standard and based on best practice, supported by Security Leadership and withing the cost and risk tolerance of the organisation.
• Work closely with specialists in Security Operations to develop operational use cases for detect and respond capabilities by ensuring Logging and Monitoring, Incident Response, and Threat Intelligence are all considered and included in security requirements, are implemented, tested, and validated by the business change delivery owner.
• Collaborate with all areas of Infosec to provide continuous improvement of the advice provided from knowledge gained from analysing and resolving information security incidents that can be used to reduce the likelihood and/or impact of future incidents.
• Apply the information security risk assessment process to identify risks within the scope of the information security management system and identify the risk owners.
• Act as a champion for information security initiatives and maintain high standards of integrity and professionalism.
• Delivering risk assessment reports, threat modelling, and risk treatment recommendations for all technology and business solutions in a timely and repeatable manner.
• Contribute to, and maintain, an effective risk management mechanism to ensure that system owners have accurate and current a view of information risk exposure.
• Meeting the InfoSec strategic objectives.
• Continuously develop technical security skills and capabilities in line with the organisation’s strategic objectives.
• Development of security playbooks and component specifications.

Experience and Qualifications required

Essential skills 

• Technical background, with knowledge of one or more of the following, Development, IT support, Data Science, networking or system administration.
• Experience of conducting risk assessments, threat models or security consulting for Generative AI systems.
• Deep knowledge and understanding of Cloud migration and Application Security development lifecycle and DevSecOps principles, automation, and familiarity with security architecture modelling.
• Knowledge and experience of securing Azure and/or Google Cloud Platforms.
• Knowledge and experience of using at least one risk methodology.
• Security Software as a Service implementations.
• Strong stakeholder management and communication skills and a proven track record of working with businesses to meet strategic objectives.
• Ability to discuss highly complex and technical problems and solutions in business language.
• Experienced in cyber security frameworks such as NIST, CIS20, MITRE Attack and STRIDE.

Desirable 

• Experience of threat modelling, risk/posture assessments, and control implementation.
• Experience of building, configuring and deploying AI solutions (e.g. Claude code, Copilot Studio etc).
• Educated to degree level related to information security risk management.
• Experience of agile and waterfall delivery environments. 
• Recognised security professional qualifications (e.g., CISSP, CCSP, CISMP).
• Cloud specific qualifications (e.g., CSA CCSK, CCSP, AZ-900, GCP fundamentals).

Admiral: Where You Can

We take pride in being a diverse and inclusive business. It's a place where you can Be You, and show up as you are. We’re committed to fostering a people-first culture where everyone is accepted, supported, and empowered to be brilliant. You can, Grow And Progress at a pace and direction that suits you, Make A Difference for our customers and each other, and Share in Our Future with all colleagues eligible for up to £3,600 of free shares each year after one year of service.

Everyone receives 33 days holiday (including bank holidays) when they join us, increasing the longer you stay with us, up to a maximum of 38 days (including bank holidays). You also have the option to buy or sell up to an additional five days of annual leave.

We’re proud of our people-first culture. In fact, we've been recognised as a Great Place to Work for Women, a Great Place to Work for Wellbeing, and an overall Great Place to Work for over 25 years! We’re fully committed to making sure your progression is not slowed or halted by barriers related to race, gender, age, sexuality or any of the protected characteristics.

Our fantastic benefits make sure our colleagues have a great work-life balance; You can view some of our other key benefits here.

Disability Confident Leader

As a Disability Confident Leader, for candidates with a disability or long-term health condition, that opt into the Disability Confident scheme, we’ll invite a fair and proportionate number of applicants that meet the essential requirements of the role to the first stage of our selection process.

If you need any adjustments or support with your application or during the recruitment process, just let us know. Please do email us or contact us on 07425324587. This number is dedicated to supporting candidates that require reasonable adjustments or support during the application process.

#LI-CB1