Principal Security Engineer - Platform

SoftwareONE
London
1 year ago
Applications closed

Related Jobs

View all jobs

Principal Engineer

Operational Telecoms Project Engineer

Security Resilience Manager

MRICS Principal Asset Surveyor -Local Authority

Senior Fraud Investigator - SEO

Penetration Tester

Why SoftwareOne?

Strip away everything. Strip away our brand, strip away our buildings, strip away our offices. What are we left with? Our people. This is what makes SoftwareOne successful.

Passionate people who live and breathe our values every day, who delight our customers, every day, and who go above and beyond, every day. Our culture is unique, and I believe that having the right people, and empowering them to succeed, is the absolute key to our success.

Patrick Winter, Founder.

“SoftwareOne is an equal opportunity employer. With employee satisfaction as one of our core values, we are passionate about diversity and are committed to creating an inclusive environment for all of our employees. We want every employee to have the greatest experience of their career.”


The role

SoftwareOne is looking for an experienced Principal Security Engineer who possesses a blend of technical expertise, strong communication skills, and knowledge of the compliance process.

SoftwareOne's Marketplace Platform is a digital two-sided business automation platform for client engagement and vendor interaction. It provides a streamlined experience for clients to access, purchase, and manage various software products and services. As we continue to expand and enhance our offerings, we are committed to ensuring the highest level of security for our users.

The Principal Security Engineer will be leading our efforts in establishing a robust security framework.

Responsibilities

This role is critical in introducing security best practices and setting a security standard that all teams will strive to meet. You will work closely with our development, product and operations team to ensure our platform is secure and resilient against threats.

Develop and implement a comprehensive security strategy for our marketplace platform Introduce and apply security best practices across the development lifecycle Work closely with development teams to integrate security into the design and development of new features and functionalities. Creating fun ways to spread technical security awareness throughout the engineering department Provide training and guidance to development and product teams on secure coding practices and threat modeling. Consider how malicious parties may compromise our systems, and advise developers and product managers on what defenses are needed Penetration testing – identify security vulnerabilities on our production or staged applications during internal pen test or help coordinate with external resources Taking ownership and responsibility of security audits, remediations and compensating controls Collaboration with the compliance and privacy teams – help ensure that our company complies with industry best practices and standards Playing a leadership role during any security events by evangelizing and conducting the right behaviors to achieve best outcomes


What we need to see from you

Proven in-depth experience of cyber security in a SaaS product environment. A hands-on engineer, who can implement security solutions and identify risks Experience of working with engineering teams to evangelize and improve security practices Implemented security policies and solutions via code Cloud experience - Azure is preferred, although a very strong candidate with significant AWS experience will be considered An effective and patient communicator, willing to devote extensive time towards teaching and advocacy in an engineering organization Able to navigate compliance processes, interfacing with the SoftwareOne CISO office, working with external consultants, and communicating with customers Able to intuitively solve highly complex problems Able to pragmatically prioritize and work calmly and effectively under pressure Recent experience of working on a green or blue team is an advantage Fluent English language capability

#LI-SE1


Job Function

Marketplace Platform
Accommodations

SoftwareOne welcomes applicants from all backgrounds and abilities to apply. If you require reasonable adjustments at any point during the recruitment process, email us at.

Please include the role for which you are applying and your country location. Someone from our organization that is not part of the decision-making process will be in touch to discuss your specific needs and we will make every effort to accommodate you. Any information shared will be stored securely and treated in the strictest of confidence in line with GDPR. 

At SoftwareOne, we are committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and teammates without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws. Additionally, we encourage experienced individuals that have taken an intentional career break and are now prepared to return to work to explore our SOAR program.

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs Careers

Cyber Security Jobs for Career Switchers in Their 30s, 40s & 50s (UK Reality Check)

If you’re thinking about switching into cyber security in your 30s, 40s or 50s, you’re in good company. Across the UK, organisations of all sizes are hiring people from diverse backgrounds to protect systems, data & customers. But with hype around “hackers” & quick-win courses, it’s hard to separate reality from fiction. This guide gives you a UK reality check: which roles genuinely exist, what employers actually want, how training really works, what to expect on salary & progression & whether age matters. Whether you come from finance, project management, operations, law, HR or customer service, there is a credible route into cyber security if you approach it strategically.

Jobs

How to Write a Cyber Security Job Ad That Attracts the Right People

Cyber security is now a board-level priority for organisations across the UK. From financial services and healthcare to critical infrastructure, SaaS platforms and the public sector, demand for skilled cyber security professionals continues to grow. Yet despite this demand, many employers struggle to attract the right candidates. Cyber security job adverts often generate large volumes of applications, but few are a genuine match. Meanwhile, experienced security engineers, analysts and architects quietly ignore adverts that feel vague, unrealistic or disconnected from real security work. In most cases, the problem is not a lack of talent — it is the quality of the job advert. Cyber security professionals are trained to assess risk, spot weaknesses and question assumptions. A poorly written job ad signals organisational immaturity and weak security culture. A well-written one signals seriousness, competence and trust. This guide explains how to write a cyber security job ad that attracts the right people, improves applicant quality and positions your organisation as a credible security employer.

Education Jobs

Maths for Cyber Security Jobs: The Only Topics You Actually Need (& How to Learn Them)

If you are applying for cyber security jobs in the UK it can feel like “real security people” must be brilliant at maths. The reality is simpler: most roles do not need degree-level pure maths. What they do need is confidence with a small set of practical topics that show up repeatedly in day-to-day work across SOC, incident response, cloud security, AppSec, threat detection, IAM & security engineering. This guide strips the maths down to what actually helps you get hired. It includes a 6-week learning plan plus portfolio projects you can publish to prove the skills. You will focus on: Number systems & bitwise thinking (binary, hex, bytes, XOR) Modular arithmetic basics (enough to understand how modern crypto “works”) Probability & statistics for detection, triage & risk Discrete maths for logic, sets, graphs & complexity Security maths habits: estimation, false positive control & evidence-led reporting You will not waste time on heavy theory that rarely appears in junior or mid-level cyber security roles.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.