Security Engineer

Red - Specialist Recruitment
Charing Cross, United Kingdom
14 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English

Job location

Charing Cross, United Kingdom

Tech stack

API
Advanced Message Queuing Protocol
Azure
Cloud Computing
Cloud Computing Security
Communications Protocols
Computer Security
Continuous Integration
Subnetting
Virtual Private Networks (VPN)
Network Planning and Design
Open Web Application Security
Salesforce
Software Engineering
TCP/IP
Data Logging
System Availability
Software Security
Live Streaming
Checkmarx
Api Design
Qualys
Static Application Security Testing
Dynamic Application Security Testing

Job description

We have an exciting opportunity for a Software Security Engineer to join our Global Healthcare client. As a Security Engineer, you ll provide hands-on technical expertise to guide software development, delivery and continuous improvement focusing on risk and security. You ll help evolve our client s new Digital Platform so that it s secure and compliant with both internal and industry regulations. You ll analyse new feature code to identify security risks and work with engineers to mitigate them, working and applying modern security standards such as OWASP CI/CD, DSOMM, SAMM and Cloud Security Posture management systems such as Azure Defender and Prisma Cloud. Our client empowers their people to balance their time between home and the office in a way that works best for them, their team and our customers. You'll work at least 40% of your week away from home, moving to 60% of your working week from September 2025. Away from home means either attendance at one of our office locations, visiting clients or attending industry events. Our client s working locations include Tunbridge Wells, Leeds, Bristol and Bournemouth., * Analysing new feature code to identify security risks and working with engineers to mitigate

  • Delivering improvements to our DSOMM score, either working with teams or directly taking responsibility for tasks (writing code, configuration, tooling, documentation)
  • Working with our Information Security teams to ensure security policies are implemented in the most efficient and flexible manner
  • Designing, building, operating and monitoring technology for large, complex multi-site b2c and b2b applications
  • Contributing to the definition of, adhering to and upholding coding standards and our software delivery lifecycle to ensure the delivery of secure, quality systems
  • Designing, building, operating and optimising logging technology to allow more data to be gathered about sites holistic performance and reliability

Requirements

  • Willingness to learn and apply engineering and security expertise to projects built on multiple platforms, such as Salesforce and Azure
  • Exposure to Cloud Native software development, including cloud infrastructure and API design (Azure preferred)
  • Proven experience applying modern standards such as OWASP CI/CD, DSOMM, SAMM etc
  • Strong networking protocol knowledge (TCP/IP, UDP, HTTP/3, AMQP, streaming protocols etc), cloud network design (VPNs, subnets, regions/zones etc), and integration related technologies (Auth0, APIM)
  • Expertise with SAST & SCA systems such as Snyk, Checkmarx
  • Experience with DAST systems such as OpenZAP, Qualys DAST (preferred) ideally with HTTP APIs
  • Ability to manage large scale software estates from a operational perspective (build, release, monitoring, rollbacks, high availability, etc)
  • Hands on experience building automated security test suites

Benefits & conditions

REMUNERATION PACKAGE ON OFFER

  • Annual company & performance-based bonus
  • Contributory pension scheme (up to 12% employer contributions)
  • Life Assurance (up to 10 x annual salary)
  • Good holiday allowance and the opportunity to buy and sell annual leave
  • Employee discounts and gym benefits

Apply for this position