Summary 

As Software Security Engineer you will ensure that our applications are designed and implemented to the highest standards thus maintaining and enhancing customer trust. You’ll do this through analysing system services, operating systems, networks and applications from a security perspective, discovering security issues that appear under new threat scenarios. You will participate in security audits, risk analysis, vulnerability testing and security reviews. 

Main responsibilities: 

  • Identify security issues and risks, and develop mitigation plans 
  • Architect, design, implement, support, and evaluate security-focused tools and services including project leadership roles 
  • Develop and interpret security policies and procedures 
  • Develop and deliver training materials and perform general security awareness and specific security technology training 
  • Evaluate and recommend new and emerging security products and technologies ● Participate in 2nd and 3rd level security operations support 
  • Participate in incident handling 
  • Work with colleagues to deliver innovative and scalable solutions to security issues ● Support the software engineers within Technology on security best practices
  • Work with the wider engineering team to bring ‘secure-by-design’ thinking to new technology, methods and frameworks. 
  • Identifying and owning opportunities to upskill security practices and quality 
  • Introduce new security technology, methods and frameworks to the software development organisation 
  • Encourage a culture of continuous improvement on security through mentoring, feedback, and metrics

 

What will you have/Who are you? 

Essential: 

  • Degree in Computer Science or equivalent combination of technical education and work experience 
  • Circa 7+ years of experience in application-level vulnerability testing and auditing
  • Circa 7+ years of application security experience 
  • 3+ years of experience and involvement with development team(s) that delivered commercial software or software-based services (development, QA testing, or security role) 
  • Exceptional problem-solving skills 
  • Experience influencing security best practices 
  • Highly flexible thinker and enjoys working in rapidly changing environment 

Desirable: 

  • Master’s Degree in Computer Science or related field 
  • Experience with service-oriented architecture and web services security 
  • Experience with security engineering, system and network security, authentication and security protocols, cryptography, and application security 
  • Experience with the application of threat modelling or other risk identification techniques
  • Development experience in C, C++ and/or Java 
  • Experience with scripting (e.g. python, ruby, bash) 
  • Detailed knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits 
  • Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols) 
  • Excellent written and verbal communication skills 
  • Excellent leadership skills and teamwork skills 
  • Solid software development background including design patterns, data structures, test driven development 

What will we offer? 

  • Competitive market rate salary 
  • The opportunity to create and design as well as maintain 
  • 25 days’ holiday 
  • Floating bank holiday 
  • Enhanced Maternity 
  • Pension Scheme 
  • The usual sociable stuff (when restrictions allow) 
  • Season Ticket Loan

Ready to apply? Send your CV to [email protected]