Application Security Engineer

Increase your chances of reaching the interview stage by reading the complete job description and applying promptly.
Rate: £550-£700 per day (Outside IR35)
Location: Bristol (Remote, with occasional office presence once a month)
Job Type: 6-month contract

We are an innovative financial services organisation seeking a highly skilled Application Security Engineer. to join our dynamic team. In this role, you will play a pivotal part in shaping our security strategy, driving the development of secure solutions, and addressing both internal and external threats. You will collaborate with cross-functional teams to design security architectures that protect our infrastructure, applications, and data, ensuring they align with business objectives.

Key Responsibilities:

• Security Strategy Leadership: Lead the development and implementation of security plans and roadmaps, ensuring adherence to best practices in security architecture and aligning with business goals.
• Comprehensive Security Design: Develop, implement, and manage secure solutions as part of enterprise-wide projects, protecting infrastructure, applications, and data.
• Risk Management: Identify vulnerabilities, assess risks, and implement mitigative strategies to safeguard assets.
• Collaboration: Partner with stakeholders and cross-functional teams to design security solutions that meet both business and security requirements.
• Incident Monitoring and Response: Analyse security incidents and design proactive solutions to mitigate emerging threats.
• Security Awareness: Establish and lead security training programs, upskilling IT and development teams on best practices and emerging trends.
• Mentorship and Leadership: Serve as a subject matter expert, mentoring team members and boosting the organisation's security capabilities through knowledge-sharing and training initiatives.
• Community Engagement: Actively participate in the organisation's architecture community, offering insights and best practices to improve overall security outcomes.

Skills and Qualifications:

• Security Architecture Expertise: Proven experience in Security Architecture and Application Security, with a deep understanding of cybersecurity frameworks and security standards (e.g., NIST, ISO 27001).
• Technical Proficiency: Strong hands-on experience with network security, identity and access management, data encryption, incident response, and security in cloud environments (AWS, Azure, GCP). Familiarity with SIEM tools and threat intelligence is essential.
• Agile/DevSecOps: Experience working within Agile and DevSecOps frameworks, integrating security into the development lifecycle.
• Cloud Security: Familiarity with cloud security standards and securing cloud-based applications, especially in a DevSecOps environment.
• Salesforce Experience (Desirable): Knowledge of Salesforce Financial Services Cloud and Salesforce OmniStudio is a strong plus.
• Certifications: Industry certifications such as CISSP, CISM, or equivalent are preferred.
• Communication and Collaboration: Strong collaboration and stakeholder management skills, with the ability to align security solutions with business objectives.

JBRP1_UKTJ