Application Security Engineer - £85,000-£95,000 + 20% Bonus, Extensive Benefits Package & Remote Flex
Role Overview: As a Security Engineer at our confidential company, you will play a pivotal role in safeguarding our organization against security threats. You will have the autonomy to implement innovative solutions that minimize risks and vulnerabilities. Whether you're engineering systems to overcome technical security challenges, protecting sensitive data, or consulting on a broad range of security topics, you will have the opportunity to lead and influence cross-functional teams.
About You: You have a background in systems engineering or administration with a strong passion for security and a desire to transition into a more security-focused role. In this position, you'll collaborate with experienced application security engineers to identify and address gaps in software engineering practices, recommending and implementing streamlined security solutions that align with existing workflows.
Key Responsibilities:
- Identify and address gaps in software engineering practices, selecting appropriate application security tools that integrate seamlessly with development processes.
- Work within agile methodologies, such as Scrum, to deliver security solutions.
- Provide training on core application security products to both security and engineering teams.
- Develop and deliver easily digestible wiki content on application security products for internal use.
- Advocate for and promote security best practices across the organization.
- Assist in building automation and monitoring systems to enforce security policies and detect potential threats.
- Contribute to the development of secure-by-default guardrails for engineers to use in their work.
Core Technical Skills:
- Proficiency in at least one scripting or programming language: Python, JavaScript, or Java.
- Experience in supporting, administering, and building cloud infrastructure, preferably in Azure.
- Familiarity with configuring continuous integration tools, such as Jenkins, GitHub Actions, or Azure DevOps.
- Proven experience in operating and administering Linux distributions, including RHEL, Ubuntu, and CentOS.
- Understanding of containerization and container orchestration technologies like Docker and Kubernetes.
- Strong operational and technical troubleshooting skills.
Preferred Skills:
- Understanding of the Software Development Life Cycle (SDLC) and tools such as JIRA, Git, GitHub, and Nexus.
- Good grasp of architecture and design principles.
- Familiarity with common Application Security Tooling (SCA/SAST/DAST/IaC Security).
- Knowledge of security frameworks like OWASP Top 10, Mitre Top 25, and CVSS, with the ability to map them to business risks.
Join our team and be at the forefront of security innovation, helping to protect our company’s most valuable assets.
Locke & McCloud are the UK’s leading cyber security & information security staffing company – through having a sole focus on the cyber & information security space we have been able to foster solid relationships with some of the UK’s most exciting cyber security consultancies & end users. Our focus on the information security space allows us to be able to help you find the most exciting.