Job Description
Job Title
Security Architect
Advert
People make Sage great. From our colleagues delivering ground-breaking solutions to the customers who use them: people have helped us grow for more than thirty years, and people are driving our future as a great SaaS company. We're writing our next chapter. Be part of it!
At Sage, we recognize that the world of work has rapidly shifted over the last few years, particularly how we work. That is why we have committed to working in a hybrid way going forward. Human connection is an essential ingredient of the 4 principles that make up our Flexible Human Work hybrid framework and we want to be transparent in what that looks like when you join our Sage family. On one hand, our offices will continue to play an important role in our future and serve as a place for spontaneous conversations, connection, collaboration as well as focused time. On the other hand, we have learned to reimagine where and when we work and to unlock that flexibility and innovation for our colleagues offering them the opportunity to work flex across their home, Sage offices or customer sites.
We invite you to join us and help us write our next chapter. Follow us on our social media sites to join in conversations about open positions and company news! . If you would like support with your application (or require any adjustments) please contact us at for assistance. All qualified applicants will be thoughtfully considered and never discriminated against based on their race, color, age, religion, sexual orientation, gender identity, national origin, disability or veteran status.
Job Description
About Sage
Sage is the proud market leader in cloud business management solutions supporting millions of small and medium size businesses globally. Sage is the market leader for integrated accounting, payroll, and payment systems, supporting the ambition of the world's entrepreneurs.
At Sage, we're focused on giving businesses of all sizes the technology to better manage everything from money to people. You'll be part of a global market leader but with a very local heart. We're a FTSE 100 company with £60m of new investment into the business, over 13,000 colleagues globally, and we continually give back.
Sec authority
Leading projects / SAIL specifics & technologies
Ability to understand or some coding background.
ISO27k - different ways of achieving it
• Experience with gitops
Iso compliance ------
Job description
•You will be part of our Cloud Native DevSecOps security engineering team and will be primarily working on building enterprise containers solutions that involve Kubernetes, OpenShift, Docker and the surrounding K8s ecosystem.
•In this role, you will be responsible for providing design and implementation expertise on Kubernetes for the DevSecOps solutions that are being built in the cloud. As a Kubernetes Subject Matter Expert, you will be providing guidance for design and architecture of Kubernetes clusters at a massive scale for the client organization (an innovative and progressive organization that operates at scale).
•You will be implementing rapid POCs and Pilots of new capabilities to demonstrate feasibility of new solutions.
•You will understand the developments in the CNCF community and have a great understanding of the overall CNCF ecosystem. You will present solutions to stakeholders to better educate them and help in the decision-making process for using the right technologies for solving the right problems.
Core activities:
•Have in-depth, hands-on experience building platforms at scale for containerized workloads, particularly leveraging Kubernetes, including cluster provisioning, operations, workload optimization, custom controllers/operators, workflow orchestration, logging monitoring, security, and troubleshooting.
•Detailed understanding of core concepts for Kubernetes APIs and cluster architecture, as well as services and networking.
•Hands on experience with Ingress of Nginx DevOps tools: Jenkins, Ansible, CI/CD, Docker Network and security management for hybrid environment
•Evaluate, select, design and configure security infrastructure systems in a global environment.
•Build, deploy and operate a wide range of robust and fit-for-purpose security tools and services, in a Cloud-first cullture
•Ensure strong and effective security controls are in place to detect and mitigate risks across all on-prem and Cloud environments to meet business and regulatory requirements
•Work closely and collaboratively with a large number of distributed Product teams and operational teams across UK and US and Europe, working in an AGILE delivery model.
•Promote DevSecOps, leading by example to change existing systems and practices for the better, allowing all functions to do more with existing resources
•Support and conduct internal audits, help mitigate findings and implement improvement measures.
•Identify, integrate, monitor and improve infosec controls by understanding business processes.
•Work in support of the Senior Information Security Engineer enhancing the security direction for the organisation including systems, networks, user services and vendor development efforts.
•Troubleshoot security system and related issues. Assist with complex projects and ongoing support of security operations.
•Assist in defining security requirements and review of system to determine if they have been designed to comply with established security standards. Develop new standards as necessary.
•Assist other Information Security teams with evaluating technology to ensure adherence to developing standards and technical integration with current capabilities
Skills required:
•Have in-depth, hands-on experience building platforms at scale for containerized workloads, particularly leveraging Kubernetes, including cluster provisioning, operations, workload optimization, custom controllers/operators, workflow orchestration, logging monitoring, security, and troubleshooting.
•Detailed understanding of core concepts for Kubernetes APIs and cluster architecture, as well as services and networking.
•Hands on experience with Ingress of Nginx DevOps tools: Jenkins, Azure Devops,Ansible, CI/CD, Docker Network and security management for hybrid environment
•Familiarity with Deploying Kubernetes
•Proven experience in DevOps, Nginx and Kubernetes (Pod, Cluster, etc.)
•Ability to push a point/right solution to different stakeholders (both technical and non-technical).
•Proven experience of delivering Kubernetes project engagements.
•Ability to troubleshoot issues faced in the working Kubernetes environment and CI/CD pipeline.
•Design, implement, support and evaluate security-focused tools, vulnerably management tools and services.
•Conduct periodic Vulnerability assessment.
•Participate in incident handling and other related duties to support the information security function.
•Cloud DevOps/Security Certifications in AWS/Azure is preferred.
Key Responsibilities
Infrastructure and automation as code.
Building and api management.
Why Join Sage?
People make Sage great. From our colleagues delivering ground-breaking solutions to the customers who use them: people have helped us grow for more than thirty years, and people are driving our future as a great SaaS company. We're writing our next chapter. Be part of it!
Experience has taught us that when our customers thrive, we thrive. As a team, we always start with what customers need. Through the good... and more challenging times. Innovating at pace so customers can manage their finances, operations and people. Every one of us shapes our culture at Sage - doing what's right and succeeding together, united by our commitment to each other. We encourage each other to grow in our roles, in our careers and as individuals.
In addition, we offer competitive salary and bonus potential combined with benefits package. The benefits include generous pension scheme, cycle to work scheme, 25 days annual leave and holiday buy/sell, five volunteering days, career progression, access to 24/7 mental-health support, flexible work, inclusiveness and more!
Function
Global Information Security
Country
United Kingdom
Office Location
London;Newcastle
Work Place type
Hybrid