Cyber Security Engineer - Hertfordshire, United Kingdom - Via Resource

Description

Job Description

We are collaborating with a global client seeking to onboard a few Cyber Security Engineers to their expanding in-house Information Security team.

This is a senior technical security role focused on transforming the way security is delivered within their engineering teams. Past experience in payment security is preferred. Responsibilities include navigating the unique security challenges as their software and enterprise APIs transition to the cloud, supporting the entire SDLC, from the idea phase to production and ops.

Key Requirements:

• Lead security initiatives, threat modelling, enhancing application security and reducing vulnerabilities.
• Hands-on experience in software supply chain security or robust knowledge of DevSecOps.
• Comprehensive understanding of containerization and container security.
• Review critical code, build pipelines and deployment methods.
• A solid grasp of public cloud services and various architectural patterns.
• Proficiency in application security and a strong grasp of DevSecOps (the shift-left culture).
• Familiarity with security principles and standards such as NIST and CIS and good understanding of OWASP Top-10, Top 25 CWEs, open source security and data security.
• Develop quarterly/monthly roadmaps for security tasks and collaborate with stakeholders.
• Certifications in Azure and AWS cloud Security is a plus.

This position entails working on-site at their Hertfordshire office for 1-2 days a week.

It offers a base salary of up to £95k with 20% bonus and additional benefits.

Please get in touch if interested