Software Security Engineer - Finance - 6 month contract

Gravitas Recruitment Group Ltd
United Kingdom
£500 - £800 p day
05 Oct 2017
07 Nov 2017
Contract Type
Full Time
Software Security Engineer - Market Rate - Asset Management - 6 Month Contract

Our client is a leading asset management firm based in the city, they have over £500Bn assets under management and are looking for a software security engineer to join them on a 6 month rolling contract paying market rate.

The key purpose of the role is to work with the Head of IT Security to establish and maintain secure software development practices as the firm progresses towards a cloud platform.

Role responsibilities:
*To work with development teams to deliver a secure software development lifecycle, a key component of which will be establishing a secure and auditable route to production using continuous delivery techniques.
*Raise the level of knowledge of secure coding practises within development teams through pair programming and other forms of developer education. This is a hands-on role which will involve significant time spent pair programming as part of development teams.
*Implement secure development standards as automated checks integrated into a continuous delivery build pipeline using TeamCity.
*Define and conduct regular application security reviews, for both internally and externally exposed applications, to ensure compliance with agreed standards. This includes vulnerability testing, risk analyses and security assessments.
*Provide advice on best practises for secure development, taking account of the applications usage, sensitivity and data requirements.

Skills and Experience Required:
*Proven experience as a software security development engineer, ideally in the Financial Services industry.
*Experience of agile methodologies and DevOps processes.
*Extensive experience in software development, scripting and project management.
*Detailed technical knowledge of techniques, standards and state-of-the art capabilities for authentication and authorisation, applied cryptography, security vulnerabilities and remediation.
*Excellent software development experience in the following core languages: .NET.and Java
*Working knowledge of designing, securing and integrating applications/systems within cloud environments.
*Experience using system monitoring tools (i.e. LogRhythm) and automated testing frameworks.
*Experience in leading security incident response including identification, preservation and interpretation of computer evidence.
*Working knowledge of web related technologies (Web applications, Web Services and REST-based Service Architectures) and of network/web related protocols.
*Experience of relational databases (i.e. MSSQL, MySQL).
*Familiarity with various operating systems (Windows. Linux)

If you are interested to learn more, please send your CV for immediate consideration.

This job was originally posted as