Enable job alerts via email!

Security Engineer / Cloud / DSOMM / OWASP / Salesforce

FPSG

Leeds

Hybrid

GBP 50,000 - 70,000

Full time

3 days ago
Be an early applicant

Generate a tailored resume in minutes

Land an interview and earn more. Learn more

Start fresh or import an existing resume

Job summary

FPSG is seeking a hands-on Security Engineer to drive security in a major digital transformation program. This hybrid role involves embedding security into development processes and requires expertise in cloud environments, particularly Azure, along with a strong Salesforce background. You'll be crucial in ensuring security standards are met and will manage a secure cloud posture while working collaboratively with development teams.

Benefits

Competitive annual salary
Annual performance-based bonus
Generous pension scheme
Life Assurance
Generous annual leave with buy/sell options
Private healthcare
Extensive Wellbeing services

Qualifications

  • Experience in software security within cloud environments (Azure preferred).
  • Deep understanding of Salesforce with secure integration experience.
  • Familiarity with security frameworks like DSOMM, OWASP, SAMM.

Responsibilities

  • Analyzing new feature code to identify and mitigate security risks.
  • Collaborating with teams to implement secure coding practices.
  • Designing and monitoring secure solutions across complex platforms.

Skills

Software Security
Cloud Security
Networking Protocols
API Security
Automation

Tools

Snyk
Checkmarx
OpenZAP
Qualys

Job description

Security Engineer / Cloud / DSOMM / OWASP / Salesforce

Permanent

Hybrid - 2 or 3 days p/w on-site

Leeds

FPSG have a fantastic opportunity to join a large-scale digital transformation programme aimed at uniting multiple internal business units under a new, secure, cloud digital platform. Ideal for a hands-on Security Engineer who enjoys embedding security into the development lifecycle and working with modern tooling and cloud environments.

The successful Security Engineer's responsibilities will include:

  • Analysing new feature code to identify and mitigate security risks
  • Collaborating with development teams to implement secure coding practices and remediation strategies
  • Driving improvements in security maturity frameworks such as DSOMM, including hands-on delivery (code, configuration, documentation, tooling)
  • Designing, building, operate, monitoring secure solutions across complex platforms
  • Ensuring internal and industry security standards (e.g. OWASP CI/CD, SAMM) are adhered to across systems
  • Managing and improving cloud security posture (Azure Defender, Prisma Cloud etc)
  • Implementing and optimising observability platforms for holistic system monitoring
  • Supporting and securing software delivery lifecycle, from development to deployment and ongoing operations

The successful Security Engineer's essential skills will include:

  • Demonstrated experience in software security within cloud-first or hybrid environments (Azure preferred)
  • A deep understanding of the Salesforce platform and eco-system, with experience supporting secure integration and development
  • Strong knowledge of networking protocols (e.g. TCP/IP, UDP, HTTP/3) and cloud network architecture (VPNs, subnets, zones)
  • Experience with API security and integration-related platforms such as Auth0 or API Gateways
  • Proficiency with security tools including SAST (e.g. Snyk, Checkmarx), SCA, and DAST (e.g. OpenZAP, Qualys DAST)
  • Ability to manage secure operations of large-scale software estates, including deployment pipelines, rollback strategies, and uptime monitoring
  • Practical experience building automated security test suites into CI/CD workflows
  • Familiarity with security frameworks such as DSOMM, OWASP, and SAMM

Suitability: This role is a technical hands-on security engineering role, it is NOT GRC focused. It would be well-suited to experienced Security Engineers or Developers with a strong security focus and interest in building secure, scalable systems in the cloud.

Note: Demonstrable experience of Security Engineering in, on and around the Salesforce platform is critical to this post.

Note: Candidates must be based in the UK and authorised to work.

Note: On-site attendance 3 days a week is required

Location:

Candidates can be based (3 days a week) from multiple UK locations, Leeds, Bristol, Tunbridge Wells, Bournemouth, Manchester, Leicester, Redhill

Reward

This is a great opportunity to work on a high-impact transformation within a dynamic and technology-focused environment. In addition to a hybrid working model, the role offers a competitive benefits package:

Competitive annual salary (based on experience) + Annual performance-based bonus + Generous pension scheme + Life Assurance + Generous annual leave with buy/sell options + Private healthcare + Extensive Wellbeing services and employee discounts

Key Technical Terms

Security Engineering, Cybersecurity Engineer, Information Security Specialist, Salesforce, Azure, OWASP CI/CD, DSOMM, SAMM, Cloud Security Posture Management, Prisma Cloud, Azure Defender, Snyk, Checkmarx, OpenZAP, Qualys, DAST, SAST, CI/CD, Infrastructure Security, Auth0, Secure APIs, Networking Protocols, DevSecOps, Secure Development, CRM Security

Next Steps

Please click "Apply now" and submit your up-to-date CV, including your notice period and salary expectations.

We are Disability Confident and neurodiverse aware. If you have a disability, please tell us if there are any reasonable adjustments we can make to assist you in your application or with your recruitment process

Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
Follow us
JobLeads Youtube ProfileJobLeads Linkedin ProfileJobLeads Instagram ProfileJobLeads Facebook ProfileJobLeads Twitter AccountJobLeads Xing Profile
Company
Services
Free resources
Support

© JobLeads 2007 - 2025 | All rights reserved