Security Engineer (Mobile Application)

Security Engineer (Mobile Application)
  • £50,000 - £73,000 per Annum
    ANNUM
  • Permanent
  • London, England, UK London London GBR EC3A 4AF
Job Ref: 50207792
Sectors: Software Development Audit, Risk & Security Cloud & DevOps Web, Digital & Mobile
Date Added: 07 July 2020

Security Engineer (Mobile Application)

Lorien are working with a Financial Services company who are looking to grow their new delivery team supporting Financial Crime and Risk applications.

The role is to work from home 5 days a week, however in the future will require a few days a week in their London office. We are looking for a Security Engineer with experience in designing for security and secure programming, specially from mobile security perspective - working as a mobile security engineering subject matter expert across our variety of systems portfolio.

You should have demonstrable experience in aspects of...

  • Full appreciation of Software Development Lifecycles and knowledge of Agile and DevSecOps
  • Programming languages (.Net, Java, Swift, JavaScript (preferably familiar with React JS)), and their strengths and weaknesses in regard to security and their application (Software development background is beneficial)
  • General mobile security concepts (i.e. Secure enclaves, mobile IPC, Sandboxing, Code signing ...)
  • Web application vulnerabilities and security concepts (session management, XSS, CSRF, ...)
  • Application perimeter defence (i.e. Web Application Firewalls)
  • API gateway and Service Mesh and their security implications (i.e. APIGEE, ISTIO...)
  • Design for security, threat modelling and application security methodologies and frameworks (i.e. Microsoft SDL,OWASP ASVS...)
  • Distributed systems security architectures (Microservices, containerisation, container orchestration systems [i.e. K8s], cloud application security concepts...)
  • Security tokens, their design (i.e. SAML, JWT, Kerberos tickets) and application and limitations
  • AWS cloud and AWS security models
  • Cryptographic primitives and protocols and their applications and limitations

What you'll be doing

You will be involved in all phases of the Software Development Lifecycle, thinking end to end. You will be the security engineering subject matter expert and will work alongside other engineers to deliver both technical and design outcomes as well as collaborating across other technical delivery and support areas, providing advice and consultancy. It is worth mentioning that security engineers are mainly accountable for the Protect function of our enterprise cybersecurity framework.

  • Engagement with programmes & projects to provide expert input from early life through to production support
  • Accountable for Detailed Design for Security and Secure Programming
  • Engineering of Secure Software solutions, including design & code reviews from security perspective
  • Threat modelling
  • Understanding the business impact of technical problems and be comfortable making risk assessments

Benefits:

  • Ongoing training and development
  • Annual Bonus scheme
  • Excellent Pension scheme
  • Life assurance worth 8x your salary
  • 25 days' holiday plus bank holidays and the ability to top up an extra 10 days more holiday
  • And more Flexible benefits schemes

If you are interested or would like additional information please apply within or contact Ryan Hutton directly.

Security Engineer (Mobile Application)

Lorien Plc is acting as an Employment Agency in relation to this vacancy.

Lorien
06/08/2020 11:08:45
GBP 50000 50000
Contact Consultant:
Ryan Hutton

Submitting application, please wait..