Security Engineer

Harvey Nash Plc
£350 - £450 per day
13 Nov 2017
15 Nov 2017
Contract Type
Full Time
Security Engineer

Our client, a leading Financial Services firm are looking to hire a Security Engineer.


  • Seeking candidates to join their Security Engineering team in the UK.
  • Whether through traditional retail, mobile, or e-commerce, innovation is leading the digital convergence of traditional and emerging payments technologies across a wide variety of new devices and services
  • Can you demonstrate a high level of expertise in information security and secure development disciplines?
  • Can you advise development teams on how to securely design applications and services following industry best practices and enhance existing approaches to security engineering?
  • Have you performed security analysis of mobile applications, web applications and web services and understand the threats, attacks and risks to payment applications?
  • Can you analyse an application architecture to reduce the security risk to an acceptable level, while still providing beneficial functionality for the end user?Role
  • Provide technical design and architecture advice to internal teams on how to securely develop and build applications and supporting systems
  • Work closely with developers and evaluate business requests and proposed designs to determine feasibility; work with software development teams to define alternatives and recommend optimal solutions to meet security and regulatory requirements in the design of new/enhanced systems
  • Leverage security experience and knowledge within the mobile and digital commerce arena to cultivate and maintain effective working relationships with a variety of internal stakeholders, including business owners, end-users, customers, project managers, engineers, and senior management
  • Define security requirements and guidelines to ensure repeatable processes are followed by worldwide teams
  • Assists in the strategy, standards, and architecture for the security aspects of the SDLC including application, mobile, web service, DevOps, cloud, and CI/CD efforts

All About You
  • Strong understanding of information security, risk and data privacy within the domain of digital commerce including relevant practical experience
  • Demonstrate a broad awareness of security engineering concepts and practices across all phases of the software development lifecycle
  • Experienced in mobile security architecture concepts, design and implementation for Android and IOS
  • Technical experience with Java or similar enterprise programming language, especially related to secure coding best practices
  • Experience providing security architecture advice for web based network environments and secure communication, including mobile applications, web applications and web services
  • Demonstrated experience designing secure multi-domain Internet-facing applications
  • Demonstrate technical competency in security engineering based on hands-on experience or relevant qualifications
  • Knowledge and technical security experience in cryptography, including several of the following: encryption, hashing, key management, digital certificates, TLS
  • Working knowledge and technical security experience with UNIX, Linux, Solaris, or AIX
  • Demonstrate the ability to articulate and communicate effectively to diverse audiences and properly translates security and risk management terminology into business terms, and recommends alternative solutions to these stakeholders.
  • Knowledge of IaaS and virtualization platforms such as Amazon Web Services (AWS) EC2, VMware vCloud Director, VMware vSphere and Google AppEngine, OpenStack or Azure
  • Experience of continuous delivery/continuous integration processes and procedures including critical security considerations in automated workflows

This job was originally posted as