Offer summary

Qualifications:

Experience in Application Security Engineering or DevSecOps., Knowledge of security testing tools like Burp Suite, Nessus, ZAP., Understanding of cloud security and CI/CD environments., SC security clearance is required..

Key responsibilities:

Integrate security into the software development lifecycle.

Develop security dashboards in Splunk for monitoring risk exposure.

Perform security assessments and vulnerability testing on digital services.

Conduct threat modeling and support knowledge transfer.

Job description

The Role in a Nutshell:

You will be responsible for Integrating security into SDLC during the design and development of digital services to ensure a holistic shiftleft approach to secure by design.

The Impact You’ll Make

Integrating AppSec security controls in a central security platform (Splunk) with service and SROlevel dashboards.

Delivering servicelevel and SRO dashboards in Splunk to see security posture and risk exposure for all implemented technologies and security controls.

Performing deep security assessments against digital services using manual methods and tools such as Burp Suite, Metasploit, Nikto, Nessus, and ZAP.

Security testing and remediating issues in APIs and infrastructure.

Conducting threat modeling to identify threats and define tangible security controls and mitigations.

Supporting skills and knowledge transfer of contracted work and technical expertise.

What You’ll Bring to the Team and the Tools you’ll need:
You’ll bring a comprehensive background in AppSec Engineering DevSecOps with experience across testing, threat modeling, application development and possess a solid understanding of cyber attack methodologies.

Security engineering, cloud security, and posture management in CICD environments

Network technologies, cloud providers (AWSAzure), Windows and UNIX operating systems

Cyberattack methodologies and deep security assessments

Application security and full software development lifecycle

Security testing for APIs and infrastructure

Threat modeling and mitigation

Skills and knowledge transfer

Handson experience in the above essential skills

SC clearance required

Burp Suite, Metasploit, Nikto, Nessus, ZAP, GitHub, Python (or similar), Splunk

What’s in it for You?
You’ll enjoy:

Competitive Salary and Benefits

Flexibility First: Worklife balance through hybridremote working options.

Your Growth Journey: Continuous learning opportunities and professional development.

Perks with a Purpose: Comprehensive benefits package to support your wellbeing, health, family and future, from Private Health Care, Cash Back Plan, Buy and Sell Holiday Options, Life Assurance….

Additional Information!
Location: Remote based role with option to work in Newbury or Kent Offices + Occasional Travel
Clearance: Current and transferable SC security clearance required
Hours: Full time Permanent 37.5 hours per week