Enable job alerts via email!

Product Security Engineer

Pertemps

Bristol

Hybrid

GBP 60,000

Full time

29 days ago

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

An exciting opportunity awaits as a Product Security Engineer with a global defence tech organisation. In this role, you will ensure that software, hardware, and service products are designed with robust security features. Your expertise will be crucial in identifying and mitigating security risks throughout the product lifecycle. Collaborating with development teams, you will integrate secure coding practices, conduct risk assessments, and ensure compliance with various security regulations. This position offers hybrid working, allowing for flexibility while contributing to vital security measures in a high-stakes environment. If you're passionate about cybersecurity and eager to make a difference, this role is perfect for you.

Qualifications

Strong knowledge of risk management frameworks and methodologies.
Experience with defence and government security standards.

Responsibilities

Conduct risk assessments and implement mitigation measures.
Integrate secure coding practices into the software development lifecycle.
Conduct penetration testing and vulnerability assessments.

Skills

Risk Management Frameworks

Security Testing Tools

Problem-Solving Skills

Communication Skills

Decision-Making Skills

Education

Degree in Cybersecurity

Degree in Computer Science

Industry Certifications (CISSP, OSCP, CEH, GIAC)

Tools

Security Testing Tools

Product Security Engineer
Salary £60k + Benefits
Based Bristol with Hybrid Working

We are taking applications for this exclusive vacancy to work for our client, a global defence tech organisation as Product Security Engineer. In this exciting role the successful candidate will be responsible for ensuring that software, hardware, and service products are designed, developed, and maintained with strong security features. The role involves identifying and mitigating security risks throughout the product lifecycle, conducting risk assessments, and collaborating with development teams to integrate secure coding practices.

The Role Key Responsibilities:

Conduct risk assessments, identify vulnerabilities, and implement mitigation measures.
Integrate secure coding practices into the software development lifecycle.
Perform security code reviews and ensure secure-by-design principles.
Conduct threat modelling exercises to identify and mitigate potential risks.
Ensure compliance with security regulations such as ISO27001, NIST 800-30/37/53, JSP 440, 604, and Defence Standards.
Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents, Security Management Plans).
Conduct penetration testing, vulnerability assessments, and remediation activities.

The Person Key Skills & Experience:

Strong knowledge of risk management frameworks and methodologies (ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53).
Experience with defence and government security standards (JSPs, Def Stan 05-138/139).
Proficiency in security testing tools, technologies, and techniques.
Ability to analyze and mitigate security vulnerabilities effectively.
Strong problem-solving, decision-making, and communication skills.

Qualifications & Requirements:

Degree in Cybersecurity, Computer Science, or a related field (or equivalent experience).
Industry certifications such as CISSP, OSCP, CEH, or GIAC (preferred but not mandatory).
Must be eligible for SC security clearance.
Experience working in defence, government, or high-security environments is a plus.

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.

Similar jobs