Application Security Engineering Lead

Join us at Barclays as an Application Security Engineering Lead, where you'll design and deliver tools that help developers build secure software from the start. Your work will enhance security across the bank, protecting critical systems and sensitive information.

To be successful as an Application Security Engineering Lead, you should have experience with:

• Advanced knowledge of application security testing methodologies (SAST, DAST, IAST, SCA).
• Experience with cloud security architectures, DevSecOps integration, and pipelines.
• Advanced knowledge of security principles and guardrails. Coding proficiency in at least one major language.

Some other highly valued skills may include:

• Proven ability to build and scale application security programs from the ground up.
• Cross-functional collaboration skills with development, operations, and product teams.
• Vendor management and security tool evaluation expertise.

You may be assessed on key skills relevant for success in this role, such as risk and controls, change and transformation, business acumen, strategic thinking, digital and technology skills, as well as job-specific technical skills.

This role is based in Knutsford or Glasgow.

To develop, implement, and maintain solutions that support the safeguarding of the bank's systems and sensitive information.

• Provide subject matter expertise on security systems and engineering patterns.
• Develop and implement protocols, algorithms, and software applications to protect sensitive data and systems.
• Manage and protect secrets, ensuring they are securely generated, stored, and used.
• Conduct audits to monitor, identify, and assess vulnerabilities in the bank's infrastructure/software and support responses to security breaches.
• Identify advancements to support innovation and adoption of new cryptographic technologies and techniques.
• Collaborate across the bank, including with developers and security teams, to ensure cryptographic solutions align with business objectives, security policies, and regulatory requirements.
• Develop, implement, and maintain Identity and Access Management solutions and systems.

• Contribute to strategy, drive requirements, and recommend changes. Plan resources, budgets, and policies; manage and maintain policies/processes; deliver continuous improvements; escalate breaches of policies/procedures.
• If managing a team, define roles and responsibilities, plan for future needs, counsel employees on performance, and contribute to compensation decisions. Lead specialists to influence operations, balance short and long-term goals, and ensure budgets and schedules meet requirements.
• Demonstrate leadership behaviors: Listen and be authentic, Energize and inspire, Align across the enterprise, Develop others.
• For individual contributors, serve as a subject matter expert, guide technical direction, lead multi-year assignments, mentor less experienced staff, and inform strategic decisions.
• Advise stakeholders, including senior management, on functional and cross-functional impacts and alignment.
• Manage and mitigate risks through assessment, supporting control and governance.
• Demonstrate leadership and accountability in managing risks and controls.
• Understand organizational functions to contribute to business goals.
• Collaborate with other areas to stay aligned with business activities and strategies.
• Develop solutions based on complex analysis and research, selecting among sophisticated alternatives.
• Build and maintain trusting relationships with stakeholders to achieve key objectives using influencing and negotiation skills.

All colleagues are expected to embody the Barclays Values of Respect, Integrity, Service, Excellence, and Stewardship, and to demonstrate the Barclays Mindset of Empower, Challenge, and Drive.