Job Description

Posted 2 weeks ago

Are you an Application Security Engineer or a Software Engineer specialising in product who wants to move into an Application Security role?  We’re helping to scale up the Cyber Security team within one of Cardiff most esteemed tech companies.

About the Company:

They have a hybrid set up with one day per month in the Cardiff office.

There are no core hours, you have the flexibility to work the hours you want.

They are renowned for having the best culture, but don’t take our word for it; the reviews and awards speak for themselves.

About you:

Coming from an Agile background, you will have worked with development teams.

Although you won’t need to be able to code, an understanding of coding is essential.

You will have seen things fail or break and have experience of resolving the issue by fixing it.

Communication is key for this role so you will have experience of liaising with stakeholders of all levels.  You will directly manage third parties that might be involved in the delivery of security services to the business.

About the role:

Joining a team of 9 Security Engineers, this role will be one of the more senior positions in the company, so a minimum of 3-4 years’ experience is required.

You will be improving the development processes and embedding a Secure by Design and DevSecOps culture.

This will require identifying security requirements and risks in the development activities, supporting delivery of those improvements, and helping to provide assurance back to the business.

The company are shifting left, so a big part of the role will be making sure all risk is managed and embedding security earlier into the agile development lifecycle; driving forward improvements to the CI/CD pipeline.

Next steps:

Easy – apply for the role and we’ll be in touch