National AI Awards 2025Discover AI's trailblazers! Join us to celebrate innovation and nominate industry leaders.

Nominate & Attend

Senior Security Engineer - Secure Development & DevSecOps | Pension De-risking Market Leader

ZipRecruiter
London
1 week ago
Create job alert

Job Description

[Up to c. £225k Comp Package | Hybrid Working - 3 Days in Office]

We’re partnering with a leading pensions investment firm undergoing a major cloud- technology transformation, embedding security into every layer of software delivery. This is a rare opportunity to join a highly technical security engineering team with full leadership backing, directly shaping secure-by-design systems that safeguard billions in assets and over a million pension holders. If you’re passionate about automation, developer enablement, and driving security culture within engineering-led teams, this role offers real influence and impact at scale...

Key Responsibilities

  • Integrate security controls across the full software development lifecycle - from threat modelling and design to secure coding and CI/CD pipeline enforcement
  • Build and automate security tooling into developer workflows, including SAST, DAST, secrets management, dependency scanning and policy-as-code guardrails
  • Create reusable infrastructure-as-code modules and templates to enable consistent security patterns across cloud- deployments (AWS focus)
  • Collaborate closely with developers and platform engineers to embed security seamlessly into engineering processes without blocking delivery velocity
  • Translate emerging threats into actionable design guidance, continuously refining security architecture and developer enablement
  • Support incident response and remediation efforts where necessary, ensuring resilience across cloud and hybrid environments
  • Contribute to broader security engineering capabilities, including & Access Management and Security Architecture functions

What You’ll Bring...

  • 4-10 years’ hands-on experience in Security Engineering, DevSecOps, or Software Engineering roles with a strong SDLC focus
  • Proven track record embedding security controls into CI/CD pipelines and developer tooling
  • Hands-on expertise with Terraform, GitLab CI, AWS Security Hub, Wiz (or similar tooling)
  • Deep understanding of cloud- architectures including serverless, containers, and API-driven infrastructure (AWS)
  • Strong scripting and automation skills to develop policy-as-code and security guardrails
  • Confident communicator who can influence engineering teams and champion security culture across technical stakeholders
  • Familiarity with security frameworks such as NIST, OWASP ASVS, and CIS Benchmarks
  • () Experience driving security maturity within regulated industries such as financial services
  • () Certifications such as AWS Security Specialty, CSSLP, or GIAC DevSecOps

...


#J-18808-Ljbffr

Related Jobs

View all jobs

Senior Security Engineer

Senior Security Engineer

Senior Security Engineer

Senior Security Engineer

Senior Security Engineer

Senior Security Engineer

National AI Awards 2025

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs Careers

Cyber Security Jobs Skills Radar 2026: Emerging Frameworks, Tools & Certifications to Learn Now

Cyber threats are evolving—and so must the people defending against them. As ransomware, AI-enhanced phishing, and supply chain attacks grow more advanced, UK employers are urgently hiring cyber security professionals with the right mix of strategic and hands-on skills. Welcome to the Cyber Security Jobs Skills Radar 2026, your go-to guide for the most in-demand tools, frameworks, certifications, and technologies shaping the UK's cyber workforce. Whether you're a SOC analyst, penetration tester, or cloud security architect, this annual radar is designed to help you stay ahead of the market.

Jobs

How to Find Hidden Cyber Security Jobs in the UK Using Professional Bodies like BCS, CIISec & More

The demand for skilled cyber security professionals in the UK has never been higher. With threats increasing in sophistication and frequency, organisations are urgently hiring ethical hackers, threat analysts, GRC specialists, and security architects. But many of the most valuable roles—particularly in government, defence, and critical infrastructure—are never publicly advertised. Instead, these jobs are shared behind the scenes through trusted networks, private communities, and professional bodies. In this article, we explore how to uncover hidden cyber security jobs in the UK using organisations like the BCS (The Chartered Institute for IT), CIISec (The Chartered Institute of Information Security), ISACA, and ISC² UK Chapter. We’ll show you how to use membership directories, special interest groups, CPD events and informal networks to gain early access to roles most people never see.

Jobs

How to Get a Better Cyber Security Job After a Lay-Off or Redundancy

Redundancy is never easy—especially in a fast-moving field like cyber security, where your skills and experience are constantly evolving. But if you’ve recently been made redundant from a cyber security role, know this: the UK cyber workforce remains in high demand, and your expertise is more valuable than ever. Whether you’re a SOC analyst, penetration tester, incident responder, security architect or GRC specialist, there are still thousands of opportunities across sectors including finance, defence, government, retail, and critical infrastructure. This guide will help you turn redundancy into a career relaunch, with a clear action plan tailored to the UK cyber security job market.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.