Lead Software Security Engineer

Ideas | People | Trust

We're BDO, an accountancy and business advisory firm providing the advice and solutions entrepreneurial organizations need to navigate today's changing world.

We work with Britain's economic engine—ambitious, entrepreneurially spirited, high-growth businesses—and directly advise their owners and management teams.

We'll broaden your horizons

Our IT team collaborates with every department to develop, explore, and implement new ideas that help us shape the future of accounting, tax, and business consulting. They maintain the technology that keeps us advancing, testing, and adopting innovative financial technical solutions. As part of our IT team, you'll be the backbone of our business, receiving the training and support to achieve your goals.

We'll help you succeed

Our reputation for quality advice stems from a deep understanding of our clients' businesses, built through close collaboration and long-lasting relationships.

You will be proactive, capable of managing your tasks independently, and confident in communicating with senior managers, directors, and partners. You'll also identify opportunities to enhance our services and delivery.

We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations, supporting the Digital Product Management team by embedding security requirements into new digital products and services. You will work closely with the Digital Product Management and IT Security teams to establish security controls and quality gates across the product lifecycle, including security tooling management.

In this role, you will:

1. Collaborate with development teams to integrate security into the development lifecycle
2. Promote a Security DevSecOps mindset
3. Manage and implement security controls, tools, and processes
4. Monitor and respond to security incidents
5. Stay current with security trends and improve our security posture
6. Automate security testing and deployment
7. Develop security documentation and training materials
8. Define and implement the product security strategy
9. Integrate security tools within development processes
10. Assist with penetration testing planning and execution
11. Serve as a Subject Matter Expert in Application Security
12. Ensure security NFRs are met and report on compliance

You'll be someone with:

• Strong experience in software development and security
• Proficiency in scripting languages such as PowerShell, YAML, JSON, etc.
• Experience integrating security into SDLC and secure software development practices
• Experience managing vulnerabilities and security assessments
• Knowledge of risk assessments and threat modeling
• Experience in security design reviews
• Knowledge of Agile, DevSecOps, and related methodologies
• Familiarity with security standards like NCSC, OWASP, NIST, ISO27001, and Azure security practices
• Experience with Azure cloud infrastructure and DevOps tools
• Ability to prepare and present security reports to senior management
• Expertise with security tools and DevSecOps processes
• Degree in Computer Science, Cybersecurity, or related field (preferred)

We value authenticity and support agile working arrangements, offering flexibility to suit individual and team needs.

At BDO, we are committed to your personal and professional development through various programs, resources, and frameworks.

We're in it together

Mutual support and respect are core to our culture. We provide mentoring, coaching, and a collaborative environment with state-of-the-art facilities. We encourage networking, sharing skills, and continuous learning.

We're looking forward to the future

Our success is driven by our people. We are dedicated to investing in your growth as we help entrepreneurial businesses succeed, fueling the UK economy. We embrace openness, clarity, and innovation to build a better future together.

#TJ-JB1

#LI-JB1