Senior Developer Experience Security Engineer
United Kingdom
Full Time
3 hours ago
No H1B
Key skills
AWSCloudGoogle Cloud PlatformGCPGoogle CloudServerlessIAMCI/CDCommunicationCollaborationCloud SecurityWAF
About this role
Role Overview
- Design, implement, and maintain secure-by-default platform capabilities (e.g. IAM patterns, network primitives, secrets management, runtime protections, encryption) that are easy for product teams to adopt.
- Build automated security checks, guardrails, and visibility that continuously assess risk and reduce the need for manual security audits.
- Collaborate with engineering to embed secure software development practices into CI/CD pipelines, templates, and shared tooling (Shift left and Secure by design principles).
- Reduce manual work (toil) for the technology and Security Operations Team using automation (e.g. scripting, workflows, tooling).
- Ensure platform-level security telemetry, logging, and monitoring are consistent, high-quality, and provided as a standard capability for all teams.
- Define and implement platform-wide security use cases (e.g. SIEM detections, alerts, and signals) that scale across teams without bespoke configuration.
- Work as part of a virtual SOC with the Security Operations Team to support in security incident response.
- Stay up-to-date with the latest security trends and best practices.
- Enable secure engineering practices through documentation, examples, platform defaults, and targeted training where appropriate.
- Help translate security policies and standards into practical, enforceable platform patterns and guardrails.
Requirements
- Proven experience as a Platform engineer, Developer Experience engineer, or similar role focused on enabling other engineers.
- Proven experience working with Containers and serverless with Infrastructure as code.
- Good knowledge of AWS cloud security best practices and tooling
- Technical knowledge of best practice security for networks, systems, web applications, APIs and databases.
- Good understanding of secure software development practices.
- Familiarity with security tools and technologies, such as SIEM, IDS/IPS, WAF and vulnerability scanners.
- Knowledge of common adversarial Tactics, Techniques and Procedures (Mitre Att&ck TTPs).
- Knowledge of security standards and frameworks (e.g. ISO27001, NIST CSF) is beneficial.
- Relevant security certifications (e.g. GCLD, Security+, AWS/GCP Security Certifications) are a plus.
- Excellent problem-solving and analytical skills.
- Strong communication and collaboration abilities
Tech Stack
- AWS
- Cloud
- Google Cloud Platform
Benefits
- A competitive salary
- BUPA health insurance
- Discounted gym membership through BUPA
- OnHand volunteering membership and one paid volunteering day per year
- Hybrid working
- Pension scheme
- Motorway car leasing scheme
- lease a zero-emissions electric vehicle at a significant discount
- Enhanced parental leave
- We offer enhanced maternity pay (26 weeks of full pay) and enhanced paternity pay (4 weeks of full pay) to eligible employees.
- Workplace nursery scheme
- Regular social events
- Cycle to work scheme