Security Engineer
Posted a month ago
- Newmarket, Gloucestershire
- Any
- External
- Expires In 2 months
Newmarket, England, United Kingdom - RemoteReports to: Head of Information SecurityLocation: Hybrid (Newmarket) and or RemoteHours: 32 hours across a 4-day week (no salary
sacrifice)Who we are and what is important to us:Beyond unifies three technology-driven brands, Wonde, Evouchers and Secure Schools.Each brand shares a vision to reduce the friction of adapting technology, to help customers navigate an often overwhelming area and provide powerful solutions that make their everyday life easier.The three brands run independently with the autonomy to continue to prosper although as part of the Beyond team, you’ll join a wider, supportive environment where you’ll be able to pull on the expertise and capabilities of the group.We do not limit ourselves to standing still. We look ahead and strive to disrupt the sector we operate in. We believe technology should not be complicated or overwhelming. It should do what it says - quickly, safely and efficiently.Job snapshot:As our Security Engineer, your expertise and insights will ensure that effective security measures are embedded within Beyond’s use of AWS and throughout the DevSecOps
lifecycle. We like to empower teams to deliver security and this role is an enabler in the continuous achievement of this.Security is the fabric of our business and at the heart of everything we do. We're big believers in the idea that security isn't just something we tack on, it's woven into the very core of our technologies, how we operate and our company culture.With this in mind, we’re looking for a new teammate who champions a security-first environment to ensure we continuously improve our security posture.What you’ll be doing:Take ownership of our vulnerability management program, including identifying, prioritising, and mitigating vulnerabilities across our systems and applicationsOffer expert guidance and direction to engineering and product teams on all security-related issues, ensuring that new business features are developed and deployed securelyWork closely with stakeholders to clearly articulate technical and business risks associated with security decisions, ensuring that security measures align with Beyond’s objectivesLead security initiatives such as developing security requirements, conducting threat modelling, and implementing measures to strengthen application security and reduce vulnerabilitiesProactively challenge existing security practices and decisions to drive continuous improvement and ensure that our security posture remains robust and up-to-dateCoordinate assurance activities such as penetration testing, purple team testing, and application assurance to validate the effectiveness of our security controls and identify areas for improvementRequirementsWhat we’re hoping you’ll bring:3yrs+ experience as a security engineer or equivalent roleSecurity certifications such as COMPTIA Security+, CISA, CISSP or relatedKnowledge of security compliance standards including Cyber Essentials, GDPR, ISO 27001 and NISTDemonstrable ability of assessing, planning, and implementing security controls within the cloud , including current experience with AWSKnowledge and expertise with cloud security platforms such as AWS GuardDuty, Inspector, and Control Tower and third-party platforms such as Cloud Security Posture Management and SIEM
systemsProficiency with DevSecOps practices, including embedding security components within build pipelinesSkilled with common scripting languages such as PowerShell, Python, or similarStrong analytical and problem-solving skills paired with an innovative mindsetSelf-starter attitude, taking ownership and driving forward the work from conception to deliveryAbility to work collaboratively and to interact efficiently with othersWhat you’ll get:Beyond is much more than just a place to work. It is a place to grow, innovate, excel and learn. We have tech people, creative people and people people, all focused on providing a superior customer experience.We value, support and champion those we work with - promoting personal growth and happiness. We get that our success is dependent on the collective energy, intelligence and contributions of all our team members and we are committed to ensuring our work environment is the best it can be.We value your commitment and have worked hard to create adaptable and comprehensive benefits packages to suit individual needs, although you can expect the below as standard:4-day working weekOnsite gym and well-being (quiet room) facilitiesBuying and selling holiday schemeAdditional holiday for length of serviceAnnual allowance for volunteering daysOnsite trained mental health and well-being championsMonthly lunch club (on us)Comprehensive wellness programmes (think meditation retreats and continuous access to well-being apps/initiatives)Enhanced maternity, paternity and adoption benefitsElectric car schemeCycle to Work SchemeFinancial contribution to the set up of work-from-home environmentsUse of new and leading technology in the form of apple productsFrequent company-funded social eventsOffice closure between Christmas & New YearAccess to continuous learning and development opportunitiesCasual Dress CodeIn addition to the above, you’ll have access to our ‘take your pick’ benefits scheme which is tailored specifically to you!Beyond is an equal-opportunity employer. We encourage interest from all candidates and do not discriminate against any non-merit factors. If you require any adjustments to the application or selection process please call or email us so we can ensure you have the correct support: #####/ 01638 438094.Explore more InfoSec / Cybersecurity career opportunitiesFind even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
#J-18808-Ljbffr
sacrifice)Who we are and what is important to us:Beyond unifies three technology-driven brands, Wonde, Evouchers and Secure Schools.Each brand shares a vision to reduce the friction of adapting technology, to help customers navigate an often overwhelming area and provide powerful solutions that make their everyday life easier.The three brands run independently with the autonomy to continue to prosper although as part of the Beyond team, you’ll join a wider, supportive environment where you’ll be able to pull on the expertise and capabilities of the group.We do not limit ourselves to standing still. We look ahead and strive to disrupt the sector we operate in. We believe technology should not be complicated or overwhelming. It should do what it says - quickly, safely and efficiently.Job snapshot:As our Security Engineer, your expertise and insights will ensure that effective security measures are embedded within Beyond’s use of AWS and throughout the DevSecOps
lifecycle. We like to empower teams to deliver security and this role is an enabler in the continuous achievement of this.Security is the fabric of our business and at the heart of everything we do. We're big believers in the idea that security isn't just something we tack on, it's woven into the very core of our technologies, how we operate and our company culture.With this in mind, we’re looking for a new teammate who champions a security-first environment to ensure we continuously improve our security posture.What you’ll be doing:Take ownership of our vulnerability management program, including identifying, prioritising, and mitigating vulnerabilities across our systems and applicationsOffer expert guidance and direction to engineering and product teams on all security-related issues, ensuring that new business features are developed and deployed securelyWork closely with stakeholders to clearly articulate technical and business risks associated with security decisions, ensuring that security measures align with Beyond’s objectivesLead security initiatives such as developing security requirements, conducting threat modelling, and implementing measures to strengthen application security and reduce vulnerabilitiesProactively challenge existing security practices and decisions to drive continuous improvement and ensure that our security posture remains robust and up-to-dateCoordinate assurance activities such as penetration testing, purple team testing, and application assurance to validate the effectiveness of our security controls and identify areas for improvementRequirementsWhat we’re hoping you’ll bring:3yrs+ experience as a security engineer or equivalent roleSecurity certifications such as COMPTIA Security+, CISA, CISSP or relatedKnowledge of security compliance standards including Cyber Essentials, GDPR, ISO 27001 and NISTDemonstrable ability of assessing, planning, and implementing security controls within the cloud , including current experience with AWSKnowledge and expertise with cloud security platforms such as AWS GuardDuty, Inspector, and Control Tower and third-party platforms such as Cloud Security Posture Management and SIEM
systemsProficiency with DevSecOps practices, including embedding security components within build pipelinesSkilled with common scripting languages such as PowerShell, Python, or similarStrong analytical and problem-solving skills paired with an innovative mindsetSelf-starter attitude, taking ownership and driving forward the work from conception to deliveryAbility to work collaboratively and to interact efficiently with othersWhat you’ll get:Beyond is much more than just a place to work. It is a place to grow, innovate, excel and learn. We have tech people, creative people and people people, all focused on providing a superior customer experience.We value, support and champion those we work with - promoting personal growth and happiness. We get that our success is dependent on the collective energy, intelligence and contributions of all our team members and we are committed to ensuring our work environment is the best it can be.We value your commitment and have worked hard to create adaptable and comprehensive benefits packages to suit individual needs, although you can expect the below as standard:4-day working weekOnsite gym and well-being (quiet room) facilitiesBuying and selling holiday schemeAdditional holiday for length of serviceAnnual allowance for volunteering daysOnsite trained mental health and well-being championsMonthly lunch club (on us)Comprehensive wellness programmes (think meditation retreats and continuous access to well-being apps/initiatives)Enhanced maternity, paternity and adoption benefitsElectric car schemeCycle to Work SchemeFinancial contribution to the set up of work-from-home environmentsUse of new and leading technology in the form of apple productsFrequent company-funded social eventsOffice closure between Christmas & New YearAccess to continuous learning and development opportunitiesCasual Dress CodeIn addition to the above, you’ll have access to our ‘take your pick’ benefits scheme which is tailored specifically to you!Beyond is an equal-opportunity employer. We encourage interest from all candidates and do not discriminate against any non-merit factors. If you require any adjustments to the application or selection process please call or email us so we can ensure you have the correct support: #####/ 01638 438094.Explore more InfoSec / Cybersecurity career opportunitiesFind even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
#J-18808-Ljbffr
.webp "Apply4U | Sign Up")
.webp "Apply4U | Contact Us")
.webp "Apply4U | Sign up")
