Architect - Platform; Security Specialist

Position: Architect - Platform (Security Specialist)
Location: Greater London

While technology is the heart of our business, a global and diverse culture is the heart of our success. We love our people and we take pride in catering them to a culture built on transparency, diversity, integrity, learning and growth.
If working in an environment that encourages you to innovate and excel, not just in professional but personal life, interests you- you would enjoy your career with Quantiphi!
** About Quantiphi:
** Quantiphi is an award-winning Applied AI and Big Data software and services company, driven by a deep desire to solve transformational problems at the heart of businesses. Our signature approach combines groundbreaking machine-learning research with disciplined cloud and data-engineering practices to create breakthrough impact at unprecedented speed.

Quantiphi has seen 2.5x growth YoY since its inception in 2013, we don’t just innovate - we lead.

Headquartered in Boston, with 4,000+ professionals across the globe. Quantiphi leverages Applied AI technologies across multiple a. Industry Verticals (Telco, BFSI, HCLS etc.) and is an established Elite/Premier Partner of NVIDIA, Google Cloud, AWS, Snowflake, and others.
** We have been recognized with:
** Be part of a trailblazing team that’s shaping the future of AI, ML, and cloud innovation. Your next big opportunity starts here!

For more details, visit:
Website or Linked In Page.
** Experience level:
** 7+
*
* Employment type:

** Full Time
*
* Location:

** Remote (Netherlands/UK)
*
* Key Responsibilities:

*** Design, build, and secure AWS platform infrastructure using IaC (Cloud Formation / Terraform).
* Implement and manage security controls across AWS environments (IAM, KMS, Secrets Manager, Network Firewall).
* Build automated security guardrails and compliance checks using AWS Security Hub, Config, and IAM Access Analyzer.
* Develop secure CI/CD pipelines, including automated policy checks, vulnerability scans, and artifact integrity validation.
* Implement centralized logging and monitoring using Cloud Watch, SIEM tools, Guard Duty, and VPC Flow Logs.
* Collaborate with application and Dev Ops teams to define secure architecture patterns, network segmentation, and zero-trust controls.
* Conduct regular security assessments, risk reviews, and threat modelling for workloads hosted on AWS.
* Enforce tagging standards, data-classification controls, and lifecycle policies across AWS resources.
* Support incident response activities, root-cause analysis, remediation planning, and post-incident improvements.
* Document platform security design, runbooks, best practices, and alignment with enterprise security standards.
* Manage and integrate security tools such as SIEM, DLP, Cloud Proxy, CASB, or Isolation systems when relevant to AWS workloads.
* Provide training and guidance to engineering teams on secure AWS usage, identity governance, and least-privilege access.
* Travelling to client location as needed.
* Experience integrating AWS environments with Security Operations Centers (SOC) for real-time alerting, threat detection, and incident escalation workflows.
** Must Have

Skills:

*** Overall 7+ years of Experience in AWS Cloud platform/security engineering and 3-5 years of experience in cloud security/cybersecurity.
* Deep knowledge of AWS security services: IAM, KMS, Security Hub, Guard Duty, AWS Config, VPC Security, WAF, Network Firewall.
* Strong understanding of cloud security models, zero-trust principles, least privilege, encryption, data protection, and network security fundamentals.
* Hands-on experience with either of IaC tools:
Cloud Formation, Terraform, CDK.
* Proficiency in scripting languages such as Python or Bash for automation.
* Experience setting up centralized logging, SIEM integrations, and security event monitoring.
* Strong understanding of CI/CD security, artifact scanning, secrets management, and pipeline hardening.
* Knowledge of network security tools and concepts: firewalls, proxies, routing, segmentation, DLP, isolation appliances.
* Familiarity with compliance frameworks (GDPR, HIPAA, PCI, SOC2) and ability to enforce security baseline standards.
* Strong analytical and troubleshooting skills to resolve platform and security…