Security Design Engineer (Software & App Design)

Superb opportunity to join a leading financial services client with offices in Edinburgh.

This is an initial 6-month contract inside IR35. There will be a requirement to be in the office up to 3-days per week.

We are looking for a Security Design Engineer to lead secure software and application design across a critical in-house platform. You will own end-to-end solution design, produce high-quality architecture artefacts, and provide technical leadership across delivery and transformation programmes.

You will support and evolve an internally developed Unified Policy Portal (UPP) - a web application with an Azure-hosted data lake Back End used for Firewall rule recertification (Check Point, Illumio, Fortinet). The role includes designing new features to support WAF, network segmentation, and Proxy capabilities, as well as contributing to the re-platforming of the service onto new infrastructure.

• Own and deliver secure solution designs aligned to architecture standards and reference models
• Define architecture patterns, design decisions, risks, and deviations
• Collaborate with enterprise and solution architects to ensure strategic alignment
• Provide technical assurance and consultancy to engineering teams
• Present designs and recommendations to design authorities and senior stakeholders
• Ensure compliance with security controls and manage risk remediation
• Promote strong documentation, governance, and peer review practices

• Strong experience in software and solution architecture, including:
  • System design and architecture patterns
  • Data modelling and entity relationship design
  • API design and system integration
• Broad IT background with the ability to engage confidently with non-security SMEs
• Experience across both operational and transformational security environments
• Proven delivery within large-scale IT transformation programmes
• Ability to represent security at technical and design authorities

• Experience with Check Point, Illumio, Fortinet, or similar Firewall technologies
• Architecture modelling tools (BizzDesign, Archi, UML or equivalent)
• Jira for delivery tracking and Confluence for documentation

• Degree in cybersecurity, computer science, software engineering, or related field
• CISSP, CISM, or equivalent security certification
• SABSA or TOGAF certification

This is a high-impact role offering the opportunity to shape secure application architecture, influence senior stakeholders, and drive meaningful improvements across a critical enterprise security platform.

More details available on successful application.