£70,000 GBP

Hybrid WORKING

Location: Central London, Greater London - United Kingdom Type: Permanent

Security Engineer

Our client's Audit Technology team is focused on developing innovative solutions in close collaboration with the Audit function. By combining audit expertise with the latest technology, the team tackles the challenges faced daily by users and delivers products that enhance efficiency while promoting audit quality.

The engineering team is committed to building advanced Analytics and AI solutions using modern cloud technologies, supporting colleagues across the audit business.

As a key member of the team, you will collaborate with Product Owners/Managers, Solution, Cloud and Enterprise Architects, Experience Designers, Business Analysts, and Testing specialists to design, deliver, and manage a diverse portfolio of products.

With significant growth in recent years, the technology function continues to expand rapidly. This is an exciting time to join, with ambitious plans ahead and opportunities for professional development.

Why join our client's Audit Technology Team?

This role focuses on secure application development within the CI/CD pipeline, particularly utilising Azure technologies. You will oversee the daily operation of platform security controls and processes within the Audit Data Solutions team, with a dotted-line relationship to the Security Architecture & Advisory team. You will ensure that security processes align with the organisation's frameworks, policies, and standards, while collaborating with other security teams in areas such as vulnerability management and incident response.

In this delivery-focused Security Engineer role, you will manage multiple workstreams, support the secure development and deployment of Azure-based solutions, participate in security audits, and continuously improve security measures. As a vital part of the security strategy, you will help protect systems against potential threats, strengthen security infrastructure, and promote security awareness across the organisation.

Key Responsibilities

• Develop, document, and maintain platform security processes and plans.
• Support the design and management of security processes and automated tooling that prevent security issues.
• Assist with threat modelling exercises.
• Perform security-focused code reviews.
• Support penetration testing activities.
• Prioritise and oversee vulnerability remediation.
• Manage logging implementation and integration with corporate SIEM for SOC monitoring.
• Lead responses to incidents and risks raised by the SOC.
• Promote and coach cloud security principles across the engineering team.
• Manage escalations of security-related issues, risks, or exceptions, including audit actions.
• Build strong relationships with central security teams (Architecture, Testing, Operations) and contribute to communities of practice.

Skills & Experience Required

• Strong knowledge of security controls within Azure environments.
• Experience developing cloud-native applications using infrastructure-as-code best practices.
• Skilled in securing containerised applications (Docker and Kubernetes).
• Proficient in securing APIs and web applications.
• Hands-on experience with infrastructure as code (ideally Terraform) and CI/CD pipelines.
• Experience implementing automated compliance and security checks (e.g., Azure Policies).
• Familiarity with Git-based source control.
• Comfortable with modern programming languages (Java, Python, Go, JavaScript, etc.).
• Up-to-date knowledge of security weaknesses and mitigations within cloud environments.
• Ability to pragmatically apply security controls.
• Strong communication and stakeholder engagement skills.
• Proactive, with autonomy and initiative in identifying and resolving issues.

Desirable Certifications

• Azure Security Engineer Associate (AZ-500)
• Cybersecurity Architect Expert (SC-100)
• Security Operations Analyst Associate (SC-200)
• Microsoft Identity and Access Administrator (SC-300)
• CISSP

Apply Now!!!