Key skills
AWSAzureCloudDockerGoogle Cloud PlatformJavaJavaScriptKubernetesNode.jsPythonGoC#CGCPGoogle CloudIAMJWTCI/CDLeadershipStakeholder ManagementMentoringCommunicationCollaborationCloud Security
About this role
Role Overview
- Own the design, development, and operational security of critical applications and services.
- Lead a small team of developers and security engineers, partner with product and infrastructure teams.
- Ensure secure architecture and coding practices are embedded in our delivery lifecycle.
- Lead incident response for application-level security issues, conduct post-incident reviews, and implement corrective measures.
- Mentor and coach developers on secure development practices, vulnerability remediation, and security-aware engineering culture.
- Collaborate with product owners, DevOps, QA, and compliance teams to ensure traceability of security requirements and alignment with regulatory or client obligations.
- Design and deliver security training, run workshops, and contribute to continuous improvement of the security engineering function.
Requirements
- 12+ years of professional software development experience with at least 3 years leading or mentoring engineering teams in production environments.
- Bachelor’s degree in Computer Science, Software Engineering, or a related discipline, or equivalent practical experience.
- Strong software development background in one or more modern languages (e.g., Java, C#, Python, Go, or Node.js) and familiarity with cloud platforms (AWS, Azure, or GCP).
- Proven application security experience, including secure coding practices, secure design, vulnerability remediation, and threat modelling.
- Hands-on experience with security tooling and automation: SAST, DAST, SCA, interactive scanning, and secrets detection integrated into CI/CD.
- Knowledge of authentication and authorization technologies (OAuth2, OpenID Connect, JWT, IAM), encryption, key management, and secure deployment patterns.
- Experience with containerisation and orchestration security (Docker, Kubernetes) and cloud-native security controls.
- Excellent communication and stakeholder management skills with the ability to translate security risk into business terms.
- Relevant certifications (e.g., CISSP, CSSLP, OSCP, CEH, or cloud security certs) are desirable but not mandatory.
Tech Stack
- AWS
- Azure
- Cloud
- Docker
- Google Cloud Platform
- Java
- JavaScript
- Kubernetes
- Node.js
- Python
- Go
Benefits
- Competitive salary and comprehensive benefits to support personal and career development.
- Flexible, hybrid and remote working options to support work–life balance and wellbeing.
- Opportunities for technical leadership, mentoring, and access to security training and certification support.
- An inclusive, innovative company culture that values diversity, collaboration, and continuous learning.
- Clear career pathways into senior security engineering, architecture, or leadership roles as your skills and interests evolve.