22 jobs found

Security Architect (Infrastructure & Network Security) - freelance - hybrid, London, UK Contract Comgent United Kingdom Posted On 03/09/2026 Job Information Standard Business working Hours Yes Work Experience 8-10 City London State/Province City of London N/A Special Considerations We are committed to building an inclusive workplace and encourage applications from women and other under-represented groups in tech. All qualified candidates are welcome. Start date: Apr/ May 2026 Location: London, UK (Hybrid - minimum 2 days per week in office) Job Description The organisation currently lacks formal security architecture governance at the infrastructure level - there are no documented security standards guiding network or infrastructure design. This role will establish that function, ensuring all new infrastructure designs conform to defined security standards and that the organisation's security posture improves in step with the broader transformation programme. Key responsibilities Define and document infrastructure security architecture standards and principles aligned to industry frameworks Review and provide security sign-off on network and infrastructure designs as part of the transformation programme. Key responsibilities Define and document infrastructure security architecture standards and principles aligned to industry frameworks. Review and provide security sign-off on network and infrastructure designs as part of the transformation programme. Identify security gaps across the current environment (network, server, voice, hosting) and produce a prioritised remediation roadmap. Work with the CISO function to establish technical security policies where none currently exist. Evaluate and rationalise the existing security tooling estate (firewalls, network security tools, monitoring). Provide guidance on firewall architecture (Palo Alto migration from ASA, segmentation strategy). Advise on secure cloud architecture and landing zone design for hybrid/multi-cloud environments. Support procurement and vendor selection with security assessment criteria. Requirements Technical Requirements Strong network security architecture skills: firewall design, micro-segmentation, DMZ architecture, east-west traffic control Palo Alto Networks (PA-40 series): policy design, migration from legacy ASA Understanding of regulatory requirements applicable to financial services (FCA, PRA, JFSA reporting obligations) Knowledge of security frameworks: NIST, ISO 27001, CIS Controls Cloud security: Azure, AWS security architecture, secure landing zones Vulnerability management, threat modelling, and security risk assessment Experience defining and implementing security policies for hybrid environments Advantageous CISSP, CISM, or equivalent professional qualification Experience with network automation and security orchestration Familiarity with SIEM, NDR, or network observability tooling Understanding of trading floor and financial services technology risk Able to operate without pre-existing governance frameworks and build structure from scratch Pragmatic risk-based approach to security - able to prioritise and communicate trade-offs Strong stakeholder management skills, including engagement with C-suite and regulatory audiences Commercial awareness - able to assess security tooling value and total cost of ownership

SenseOn is looking for a Forward Deployed Engineer to sit at the intersection of security engineering, software development, and customer success. This is one of the broadest and most impactful technical roles in the business, you will be the person who makes SenseOn work, in the real world, for real customers. As a Forward Deployed Engineer, you will embed directly with customers to deploy and configure the SenseOn platform, develop custom integrations, and ensure that every customer derives measurable security value as quickly as possible. You will own the technical outcome, supporting technical sales and working on technical delivery to enable SenseOn to be effective. This is not a pre-sales or demo role. You support both new business engagements and existing customer renewals, providing the technical depth to prove and quantify the value SenseOn delivers and ensuring that as deployments grow more complex with expanded log ingestion, customers always feel in safe hands. You will report to the VP of Technology and work closely with the Security Operations, Customer Success, Sales Engineering, and Product teams. Location: UK Travel: Approx 25% to customer sites Experience: 3 to 6 years+ The Role in Detail You will own the full technical lifecycle of a customer deployment, from initial architecture review through to live production, ongoing integration development, and long term platform health. You will build cloud integrations. You will write and tune detection rules in SIEMs. You will debug customer environments. And you will ensure that every customer you touch becomes a SenseOn advocate. Your impact does not stop at deployment. As SenseOn's log ingestion capability grows and deployments become more complex and wide ranging, you will work with the Customer Success team to build the technical business cases that win renewals and drive expansion bringing the same engineering rigour to proving value as you do to deploying it. Responsibilities Customer Deployment & Technical Success Lead end-to-end SenseOn platform deployments and complex log ingestion rollouts without customer disruption. Conduct architectural reviews to define deployment strategies and identify integration opportunities. Own the post sale technical relationship into steady state operations, delivering against technical success criteria tied to quantifiable security outcomes. Travel to UK and international customer sites approximately 25% of the time. Renewal Support & Customer Value Quantification Provide the technical evidence base and build business cases for renewals and expansions, translating platform telemetry and incident response data into clear customer outcomes. Proactively health check environments, close technical gaps, and resolve visibility issues ahead of renewal conversations. Collaborate with Sales Engineering to ensure continuity from pre sale technical validation through to post sale deployment. Software Development & Integration Engineering Write production quality software to build and maintain integrations across third party security tools, SIEMs, identity platforms, and AWS, Azure, and GCP environments. Contribute reusable connectors to the SenseOn integration library and create custom automation to optimise security operations workflows. Work confidently across backend languages (Python preferred; Go, JavaScript, and Bash valued) utilising RESTful APIs, webhooks, and data pipeline patterns. Detection Engineering & SIEM Development Write, tune, and maintain high fidelity, low noise SIEM detection rules by translating threat intelligence and attacker behaviour. Map coverage to the MITRE ATT&CK framework to address visibility gaps, and develop new detection logic with Security Operations. Iterate on rules post deployment to reduce false positives, and provide expert guidance to customers regarding their detection strategy and risk posture. Customer Success & Relationship Management Develop deep relationships with customer security leadership, acting as a trusted adviser across their security architecture. Proactively mitigate adoption risks, resolve deployment blockers, and conduct structured onboarding from platform fundamentals to advanced threat hunting. Monitor deployed environment health, address technical drift, and translate field experience into actionable product feedback internally. Pre Sales & Proof of Value Support Partner with Sales Engineering on Proof of Value (POV) engagements, providing technical credibility to differentiate SenseOn. Contribute to bespoke technical demonstrations, architecture proposals, and solution designs for complex prospects transitioning from legacy platforms or traditional SIEM solutions. Product & Analytics Feedback Act as a direct conduit between the field and product teams, raising well evidenced bugs, feature requests, and detection improvements. Participate in User Acceptance Testing (UAT) for new platform releases to provide field informed quality assurance. Identify cross environment patterns to highlight new detection opportunities or platform capability gaps for the analytics backlog. Essential 3-6 years of experience in a technical cybersecurity role, ideally spanning Security Operations and an engineering or customer facing function. Demonstrable software development capability, you must be able to write, review, and deploy code in a production context. Python is strongly preferred. Proven ability to write and tune detection rules in one or more SIEM platforms (e.g. Splunk, Microsoft Sentinel, Elastic, QRadar). You are comfortable translating threat scenarios into detection logic and iterating on rule quality based on operational feedback. Hands on experience building and troubleshooting integrations with cloud platforms (AWS, Azure, or GCP), REST APIs, and common security tooling including SIEMs, EDRs, XDRs, and NDRs. Strong understanding of networking fundamentals, operating systems (Windows and Linux), and identity and access management concepts. Experience deploying or operating software in containerised environments (Docker, Kubernetes). Excellent written and verbal communication skills, with the ability to engage credibly with both technical engineers and non technical stakeholders up to C-level. Based in the United Kingdom with the right to work in the UK. Highly Desirable Prior experience in a Forward Deployed Engineer, Customer Success Engineer, or Technical Account Manager role at a security or SaaS company. Experience supporting customer renewal engagements from a technical perspective - building business cases, evidencing value, and closing coverage gaps ahead of renewal conversations. Familiarity with log ingestion at scale, including the operational and architectural challenges of onboarding diverse log sources across complex enterprise environments. Experience with CI/CD pipelines, Infrastructure as Code (Terraform, Ansible), and modern DevSecOps practices. Exposure to machine learning or AI driven security analytics platforms. Relevant industry certifications such as CISSP, AWS Solutions Architect, GCIH, or equivalent. Experience supporting or replacing incumbent security platforms (e.g. Darktrace, CrowdStrike, Splunk) within enterprise customer transitions. What Success Looks Like Within your first 90 days, you will have completed at least one end to end customer deployment, established yourself as the technical lead for a portfolio of accounts, and shipped at least one integration adopted by a customer in production. Within 6 months, you will be leading complex multi environment deployments independently, supporting renewal engagements with clear technical business cases, and have contributed meaningful detection rules and integrations to SenseOn's shared library. Within 12 months, you will be shaping how SenseOn approaches deployment and customer value quantification at scale, informing product roadmap decisions, mentoring more junior team members, and owning the technical success of some of SenseOn's most strategic accounts. What We Offer Competitive salary commensurate with experience Unlimited holiday allowance Hybrid working model with flexibility around customer commitments Bi annual career progression review Personal learning and development budget MacBook and all necessary tooling provided Enhanced pension scheme Private healthcare through Vitality, with rewards and discounts Belong at SenseOn At SenseOn, we define Talent as employees who are customer obsessed and pursuing excellence. They are courageous, good people, doing good things, powering our mission. If this resonates with you, then you will always belong. Nothing else matters. We are an Equal Opportunity Employer We are an Equal Opportunity Employer and do not discriminate against any qualified employee or applicant. Difference is what makes us stronger.

Our Mission At Palo Alto Networks , we're united by a shared mission-to protect our digital way of life. We thrive at the intersection of innovation and impact, solving real-world problems with cutting edge technology and bold thinking. Here, everyone has a voice, and every idea counts. If you're ready to do the most meaningful work of your career alongside people who are just as passionate as you are, you're in the right place. Who We Are In order to be the cybersecurity partner of choice, we must trailblaze the path and shape the future of our industry. This is something our employees work at each day and is defined by our values: Disruption, Collaboration, Execution, Integrity, and Inclusion. We weave AI into the fabric of everything we do and use it to augment the impact every individual can have. If you are passionate about solving real world problems and ideating beside the best and the brightest, we invite you to join us! This role is remote, but distance is no barrier to impact. Our hybrid teams collaborate across geographies to solve big problems, stay close to our customers, and grow together. You will be part of a culture that values trust, accountability, and shared success where your work truly matters. Job Summary Your Impact Recruit and hire new Domain Consultants into the team, hiring the best talent in the industry Work with your peers to develop a Domain Consultant training curriculum Mentor, train, and review Domain Consultants on your team, keeping them engaged and successful in their careers Develop relationships with the Solutions Consultant Managers and their teams to ensure full technology coverage in key opportunities Lead your team to innovate and iterate to drive high technical validation and PoC win rates for Cortex solutions, while reducing technical validation and PoC timelines Provide effective technical leadership in customer interactions to include sharing security operations trends and standard methodologies employed by other customers to actively be part of the selling process Provide Domain Consultant expertise and fill in for existing team members if there is a resource conflict or vacation coverage challenge Present to customers as our expert in your area at all levels in the customer hierarchy from technician to CIO Lead conversations focused on industry trends and emerging changes to the security landscape Discuss competitor offerings in the marketplace and positions ours as the best solution Support your team in documenting HLD (High Level Design) and key use cases to ensure proper implementation and value realization of Palo Alto Networks solutions Review and guide your team's technical validation plans including POV (proof of value) test plans and customer readiness/requirements Build and maintain relationships with key customers to solidify reference accounts and to assist the account teams with defining plans to drive more business Act as an escalation point for pre sales and collaborate with post sales teams for issues that arise Work with product teams to build requirements and roadmap development plans for our Cortex customers Maintain an understanding of competitor selling strategies and technologies Up to 50% travel within assigned region Qualifications Your Experience Experience leading customer facing pre sales engineering or solutions architect teams 5+ years experience in sales engineering within SIEM, SOAR, SOC, and/or endpoint environments Industry knowledge of security operations market trends and awareness of our roadmap and technology development efforts Experience delivering comprehensive security solutions Strong communication (written and verbal) and presentation skills Experience in leading large teams, allocating resources, managing engagements and resource efficiency Proficient in English Our Commitment We're trailblazers that dream big, take risks, and challenge cybersecurity's status quo. It's simple: we can't accomplish our mission without diverse teams innovating, together. We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at . Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics. All your information will be kept confidential according to EEO guidelines. Is role eligible for Immigration Sponsorship? No. Please note that we will not sponsor applicants for work visas for this position.