Security Engineer

We have an exciting opportunity for a Software Security Engineer to join our Global Healthcare client.

As a Security Engineer, you'll provide hands-on technical expertise to guide software development, delivery and continuous improvement focusing on risk and security. You'll help evolve our client's new Digital Platform so that it's secure and compliant with both internal and industry regulations. You'll analyse new feature code to identify security risks and work with engineers to mitigate them, working and applying modern security standards such as OWASP CI/CD, DSOMM, SAMM and Cloud Security Posture management systems such as Azure Defender and Prisma Cloud.

Our client empowers their people to balance their time between home and the office in a way that works best for them, their team and our customers. You'll work at least 40% of your week away from home, moving to 60% of your working week from September 2025. Away from home means either attendance at one of our office locations, visiting clients or attending industry events. Our client\'s working locations include Tunbridge Wells, Leeds, Bristol and Bournemouth.

• Engineering expertise in complicated Salesforce environments
• Exposure to Cloud Native software development, including cloud infrastructure and API design (Azure preferred)
• Proven experience applying modern standards such as OWASP CI/CD, DSOMM, SAMM etc
• Strong networking protocol knowledge (TCP/IP, UDP, HTTP/3, AMQP, streaming protocols etc), cloud network design (VPNs, subnets, regions/zones etc), and integration related technologies (Auth0, APIM)
• Expertise with SAST & SCA systems such as Snyk, Checkmarx
• Experience with DAST systems such as OpenZAP, Qualys DAST (preferred) ideally with HTTP APIs
• Ability to manage large scale software estates from a operational perspective (build, release, monitoring, rollbacks, high availability, etc)
• Hands on experience building automated security test suites

• Analysing new feature code to identify security risks and working with engineers to mitigate
• Delivering improvements to our DSOMM score, either working with teams or directly taking responsibility for tasks (writing code, configuration, tooling, documentation)
• Working with our Information Security teams to ensure security policies are implemented in the most efficient and flexible manner
• Designing, building, operating and monitoring technology for large, complex multi-site b2c and b2b applications
• Contributing to the definition of, adhering to and upholding coding standards and our software delivery lifecycle to ensure the delivery of secure, quality systems
• Designing, building, operating and optimising logging technology to allow more data to be gathered about sites holistic performance and reliability

• Annual company & performance-based bonus
• Contributory pension scheme (up to 12% employer contributions)
• Life Assurance (up to 10 x annual salary)
• Good holiday allowance and the opportunity to buy and sell annual leave
• Employee discounts and gym benefits