Application Security Engineering Lead

Join us at Barclays as an Application Security Engineering Lead, where you'll design and deliver tools that help developers build secure software from the start. Your work will enhance security across the bank, protecting critical systems and sensitive information.

To be successful as an Application Security Engineering Lead, you should have experience with:

• Advanced knowledge of application security testing methodologies (SAST, DAST, IAST, SCA).
• Experience with cloud security architectures, DevSecOps integration, and pipelines.
• Advanced knowledge of security principles and guardrails. Coding proficiency in at least one major language.

Some other highly valued skills may include:

• Proven ability to build and scale application security programs from the ground up.
• Cross-functional collaboration skills with development, operations, and product teams.
• Vendor management and security tool evaluation expertise.

You may be assessed on key critical skills relevant for success in the role, such as risk and controls, change and transformation, business acumen, strategic thinking, digital and technology skills, as well as job-specific technical skills.

This role is based in Knutsford/Glasgow.

Purpose of the role

To develop, implement, and maintain solutions that support the safeguarding of the bank's systems and sensitive information.

Accountabilities

• Provision of subject matter expertise on security systems and engineering patterns.
• Development and implementation of protocols, algorithms, and software applications to protect sensitive data and systems.
• Management and protection of secrets, ensuring they are securely generated, stored, and used.
• Execution of audits to monitor, identify, and assess vulnerabilities in the bank's infrastructure/software and support the response to potential security breaches.
• Identification of advancements to support innovation and adoption of new cryptographic technologies and techniques.
• Collaboration across the bank, including developers and security teams, to ensure cryptographic solutions align with business objectives, security policies, and regulatory requirements.
• Development, implementation, and maintenance of Identity and Access Management solutions and systems.

Vice President Expectations

• Contribute to or set strategy, drive requirements, and make recommendations for change. Plan resources, budgets, and policies; manage and maintain policies/processes; deliver continuous improvements; and escalate breaches of policies/procedures.
• If managing a team, define roles and responsibilities, plan for future needs, counsel employees on performance, and contribute to pay decisions. Lead specialists to influence operations, balance short and long-term goals, and ensure budgets and schedules meet requirements.
• Demonstrate leadership behaviors to create a thriving environment, including listening, inspiring, aligning, and developing others.
• For individual contributors, act as subject matter experts, guide technical direction, lead multi-year assignments, and mentor less experienced staff.
• Advise stakeholders, including leadership, on impact and alignment of functional and cross-functional areas.
• Manage and mitigate risks, demonstrate leadership in risk management, and strengthen controls.
• Understand organizational functions to contribute to business goals.
• Collaborate with support areas to stay aligned with business strategies.
• Create solutions through sophisticated analysis and research, comparing complex alternatives.
• Build and maintain trusting relationships with stakeholders to achieve business objectives through influencing and negotiating skills.

All colleagues are expected to demonstrate Barclays Values—Respect, Integrity, Service, Excellence, and Stewardship—and embody the Barclays Mindset—Empower, Challenge, and Drive.