Here at VMO2 we are looking for an experienced and dynamic Senior Security Engineer to join our Consumer Security Engineering team!
You need to be a top-tier software application and cloud security professional, who will focus on solving complex security engineering challenges, collaborating with security colleagues, cloud and engineering teams to drive security by design culture!
Key Responsibilities:Leading security efforts in public and hybrid cloud environments, offering expertise on software, API security, and cloud service designs.Performing threat modelling, risk assessments, and web service security validation, with a focus on API security and application vulnerabilities.Researching and implementing cloud security use cases, including IAM, analytics, and network exposure, while driving policies to detect complex misconfigurations using automation tools.Developing tools and methods for secure scaling, partnering with Engineering and Cloud teams to build a secure, cloud-native platform.Automating remediation using serverless technologies and implement test automation to measure security efficacy.Managing enterprise security technologies, such as Web Application Firewalls (WAF), network firewalls, IDS/IPS, and vulnerability management.Enhancing security automation for continuous monitoring and threat detection through systems like SIEM and SOAR.Collaborating with security teams (Red Team, Incident Response, Governance) & application teams to maintain a strong application security posture.The Must HavesIn order to be considered, you must have the following experience:
Experience in security engineering, with a focus on both application and enterprise security within consumer-facing digital environments.Hands-on experience in securing cloud platforms like GCP, API Gateways and microservice-based architectures.Strong exposure to enterprise security technologies such as WAF, network firewalls, IDS/IPS, and SIEM tools.Solid understanding of application security concepts, including secure coding practices, API security, and OWASP Top 10.Experience with threat modelling, vulnerability management, and security testing within CI/CD environments.Proficiency in scripting languages (Python, Bash) and infrastructure as code tools (Terraform, CloudFormation, env0).The Other Stuff We Are Looking ForWe'd also love you to bring:
Experience collaborating with development teams to integrate security into agile/DevOps workflows using Gitlab preferably.Familiarity with security compliance standards and frameworks (e.g., SOX, PCI DSS, ISO27001).What's In It For YouOur goal is to celebrate our people, their lives and everything in-between. We aim to create a culture that empowers everyone to bring the best versions of themselves to work each and every day. We believe the most inclusive and diverse culture makes for a better business and a brighter world.
Next StepsIf we feel like a place where you can belong, we'd love to learn more about you as a person and your experience to date. Once you've submitted an application the next steps of the process, if successful, are likely to include an initial screening call followed by a technical round of interview.
When you apply, you'll be asked about any adjustments you might need to support the recruitment process. Let us know, and we'll be sure to discuss it with you.
Please note: Applications will be reviewed, and interviews conducted throughout the duration of this advert, therefore we may bring the closing date forward. We encourage all interested applicants to apply as soon as possible. If you're offered a job with us, it will be conditional, based on the passing of background checks. All roles require a criminal record check and some roles need a financial probity check. Your recruiter can provide you with more information if needed.
Thanks for your patience and for showing an interest in joining the Virgin Media O2 family.
#J-18808-Ljbffr