Security Engineer - London, United Kingdom - GCS IT Recruitment Specialists

    GCS IT Recruitment Specialists
    GCS IT Recruitment Specialists London, United Kingdom

    2 weeks ago

    Default job background
    Description
    Security Engineer - DevSec

    Ops Location:
    West London (Hybrid)


    Salary: 90-110kWhat will you be doing?Your role will work within the DevSecOps areas of Vulnerability Management, Product & Platform Security Engineering.

    You will be expected to work closely with the Engineering team in helping our developers write secure applications, and our Platform Engineering Team to embed security into DevOps practices.

    You will need to have a security mindset - an understanding of system vulnerabilities and how software can be built to fail; ability to think like a bad actor.

    Secure the cloud and Kubernetes infrastructure while mitigating security and operational risks and aligning to relevant compliance frameworks.
    Embed security best practices throughout the Software Development Lifecycle.
    Support the development of security champion and threat modeling programs.
    Develop and integrate custom security testing into our delivery process with our QA team.
    Create and deliver security training and awareness programs across engineering teams.
    Essential RequirementsExperience with security automation in CI/CD pipelines.
    Experience writing and securing IaC such as Dockerfile, Kubernetes, Terraform.
    Experience of threat modelling and using frameworks such as STRIDE.Familiarity with Web/API Security (e.g. OWASP Top 10), Container/Kubernetes Security, AWS Cloud Security, Securing LLM's.
    Expertise with monitoring and alerting platforms, such as ELK, DataDog, Grafana, Loki, etc.
    Some development background and knowledge of a programming language (E.g.

    Go, Python, Java).Knowledge of cloud security principles and best practices, particularly in environments such as AWS, Azure or GCPFamiliarity with Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platform (CWPP).


    Please apply by sending your CV to:
    call for more infoAPPLY NOWGCS is acting as an Employment Agency in relation to this vacancy.
    Security engineer_ Any, LondonPermanent per annum