Added
14 days ago
Location
Type
Full time
Salary
Salary not provided
Save job

Related skills

devops ci/cd secure coding penetration testing sdlc

πŸ“‹ Description

  • Provide security advisory and hands-on guidance to DevOps teams across development and operations
  • Translate IT risk and security needs into actionable specs for testing and remediation
  • Advise engineers on secure coding practices and assist with secure code reviews
  • Collaborate with teams to prepare for and respond to penetration testing; support issue remediation
  • Guide teams in static and dynamic code analysis (SDLC) and improve secure development workflows
  • Support the secure design, configuration, and hardening of CI/CD pipelines and tooling

What we’re looking for

Knowledge & Experience

  • 3–4+ years in an IT security role, preferably within software development or financial services

  • Hands-on experience with coding, or at minimum secure code review and remediation

  • Strong understanding of network and web protocols (TCP/IP, UDP, IPSEC, HTTP/HTTPS, etc.)

  • Solid knowledge of common vulnerabilities and mitigation strategies (e.g., OWASP Top 10)

  • Familiarity with security frameworks such as ISO2700x, NIST, ISF, CIS

  • Nice to have: experience with Checkmarx or similar secure code analysis tools

  • Nice to have: certifications such as SSCP, CISSP, Security+, CEH

Competencies

  • hands-on mentality; you adopt problems and actively work towards solutions

  • Excellent communication skills, comfortable explaining technical issues to all audiences

  • High sense of ownership, urgency, and drive

  • Customer-focused, collaborative, and team-minded

  • Ability to build confidence and trust in an environment of constant change

  • Strong analytical and problem-solving abilities, especially in ambiguous situations

  • Resilient, structured, and constructive in stressful or complex environments

  • Willingness to continuously learn and improve

What we are not looking for

  • A lead or a manager

  • An architect

  • A pure GRC specialist

  • A full-time penetration tester (though pen testing experience is a strong plus)

hands-on advisory, secure engineering enablement, and day-to-day collaboration with DevOps teams.

Why this role is unique

  • You work in an organisation that supports a global Fortune 500 client base

  • You operate in a DevOps-driven model, with squads owning their applications end-to-end

  • The culture strongly values customer orientation, craftsmanship, and continuous feedback

  • You collaborate closely with IT delivery and business stakeholders while shaping secure, scalable solutions

Apply on employer's website
This employer gathers applications via their own applicant tracking system.
You will be redirected to an external application form.
Share job

Meet JobCopilot: Your Personal AI Job Hunter

Automatically Apply to Engineering Jobs. Just set your preferences and Job Copilot will do the rest β€” finding, filtering, and applying while you focus on what matters.
Activate JobCopilot

Related Engineering Jobs

See more Engineering jobs β†’