ASOS Discover the latest fashion trends with ASOS. Shop the new collection of clothing, footwear, accessories, beauty products and more. Order today from ASOS. We’re ASOS, the online retailer for fashion lovers all around the world.

Is your CV ready If so, and you are confident this is the role for you, make sure to apply asap.We exist to give our customers the confidence to be whoever they want to be, and that goes for our people too. At ASOS, you’re free to be your true self without judgement, and channel your creativity into a platform used by millions.But how are we showing up? We’re proud members of Inclusive Companies, are Disability Confident Committed and have signed the Business in the Community Race at Work Charter and we placed 8th in the Inclusive Top 50 Companies Employer list.Everyone needs some help showing up as their best self. Let our Talent team know if you need any adjustments throughout the process in whatever way works best for you.Job Description As one of our Security Engineers, you will join a multidisciplinary team, working together with other Security Engineers, Product Managers and Security teams. You will design, build and deliver secure, high-quality enterprise solutions across numerous initiatives within the organisation, spreading your security knowledge to an ever-expanding engineering community, increasing our security posture and helping identify and reduce our risk exposure when building applications.Your primary focus is to safeguard software applications from potential threats and breaches. You work as a bridge between security and engineering, ensuring that applications are designed, developed, and deployed in a secure manner. Your impact will be felt within Cyber Security and wider by our tech communities, engineers and operations teams.ResponsibilitiesDrive security efforts across ASOS Engineering (SecDevOps, Secure SDLC)Drive security risk decisions and influence technical architecture.Drive Application Security Assessments (incl. Threat Modelling, Attack Surface Analysis, Application Security Architecture Reviews and Security Code Reviews)Play a role in proactively identifying potential security risks, developing mitigation strategies, and ensuring that security measures are incorporated right from the beginning of the application development process.Produce and Deliver Security Training around Security Best Practices.Develop security tooling with business objectives, industry best practices, and regulatory requirements.Understand and support teams with adherence to regulations (e.g. GDPR, PCI-DSI)Helping teams implement Cryptography correctly, in line with ASOS and industry standards.Ability to articulate mitigation and development techniques around emerging threats to technical and non-technical stakeholdersCollaborate with the incident response team in investigating and responding to security incidents.Support with risk assessments and vulnerability assessments to identify potential security gaps or weaknesses in existing technologiesQualifications

About you:Solid understanding of typical threats, risks and remediations around software and architecture including OWASP Top 10Familiarity with security frameworks such as MITRE Attack Framework, NIST, ISO 27001Experience writing applications using an object-oriented language (e.g. C#, Java, Python) and/or scripting languages (e.g. Powershell)Experienced in agile software delivery, Software Development Lifecycle and Secure SDLCExperience with/understanding of DevOps/DevSecOps, Security best practices and driving cultural change.Experience with implementing and using Application Security ToolingExperience with securing cloud environmentsKnowledge of Docker/KubernetesAdditional Information

ASOS Develops (personal development opportunities across the business)Employee sample salesAccess to a huge range of LinkedIn learning materials25 days paid annual leave + an extra celebration day for a special momentDiscretionary bonus schemePrivate medical care schemeFlexible benefits allowance - which you can choose to take as extra cash, or use towards other benefitsWhy take our word for it? Search #InsideASOS on our socials to see what life at ASOS is like.Want to find out how we’re tech powered? Check out the ASOS Tech Podcast here ASOS Tech Podcast. Prefer reading? Check out our ASOS Tech Blog here ASOS Tech Blog.

#J-18808-Ljbffr