Manager of Security Engineering leading teams focused on SIEM solutions for cybersecurity. Overseeing data pipelines and fostering an inclusive engineering culture at Vanguard.
About the role
- Application Security Engineer embedding secure development practices across the software delivery lifecycle at IFX Payments. Ensuring integration of security into CI/CD pipelines and driving improvement in application security posture.
Responsibilities
- Embed security controls into CI/CD pipelines and development workflows.
- Implement and manage SAST, DAST, and SCA tools to detect vulnerabilities early in the lifecycle.
- Conduct secure code reviews and support developers in remediating findings.
- Lead threat modelling sessions using standard methodologies to identify design flaws.
- Review application architectures to ensure alignment with security objectives and mitigation of common threats.
- Maintain and update reference architectures based on threat modelling insights.
- Deploy and manage application security tools and integrate them with existing platforms.
- Automate security tasks using scripting (e.g., Python, PowerShell) or SOAR platforms.
- Ensure alignment with ISO 27001, FCA, and NIST standards.
- Contribute to audit readiness and support compliance automation platforms such as Drata.
- Work with engineering teams to promote secure coding practices.
- Support the rollout of role-based security training and awareness initiatives.
- Act as a security champion within development squads and mentor junior engineers.
Requirements
- Broad experience in application security or secure software development.
- Strong understanding of OWASP Top 10, secure coding techniques, and threat modelling.
- Experience with security tools such as SAST, DAST, SCA, and vulnerability scanners.
- Familiarity with cloud platforms (Azure or AWS), CI/CD pipelines, and DevOps practices.
- Knowledge of regulatory frameworks (ISO 27001, FCA, NIST).
- Excellent communication skills and ability to work cross-functionally.
- Experience in fintech or regulated environments.
- Certifications such as OSCP, CSSLP, or CISSP.
- Familiarity with compliance automation platforms (e.g., Drata).
- Exposure to legacy system security challenges and modernisation strategies.
- A true team player with a winning mentality and strong work ethic committed to continuous improvement and high performance.
- Adaptable, tenacious and flexible who is able to perform under pressure.
Benefits
- 25 days’ annual leave, plus bank holidays and an extra day off for your birthday!
- Life Insurance.
- Holiday loyalty scheme.
- Work abroad scheme.
- Enrolment into our pension scheme, which we offer via a salary exchange scheme.
- Access to a financial education, planning and coaching platform.
- Membership with Healthcare platform, which offers cash back on healthcare focused on dental, optical & physio, plus access to stress helplines, a virtual GP and more.
- Salary exchange nursery fees.
- Enhanced parental leave.
- Cycle to work.
- Career development and progression tools.
- Company events – Sporting events, pub nights, seasonal parties, socials.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Application Security Specialist at Vanguard plays a pivotal role in securing software development lifecycle. Develop strategies for technology security, ensure compliance, and maintain security tools in CI/CD pipeline.
Sales Manager for IT Security Solutions & Managed Services in B2B sector. Responsible for customer acquisition and relationship management.
Cybersecurity Program Manager driving enterprise - wide security programs for healthcare payments company. Collaborating with cross - functional teams to execute cybersecurity strategy and mitigate risk.
Training for security personnel with IHK certification in Köln. Online courses available, and immediate start possible.
Technical Security Coordinator at Vivicta overseeing and optimizing Unified Management Network platform. Collaborating with teams across Finland, Sweden, Norway, and Czech Republic.
Customer Security Engineer delivering end - to - end pentesting services for Aikido’s developer - first security products. Collaborating with customers and the AI pentesting team to enhance security solutions.
HSE Coordinator responsible for implementing health and safety policies for Veepee. Supporting workplace safety, fostering safety culture, and ensuring compliance in diverse sectors.
Information Systems Security Manager for Empower AI working on AROWS compliance and security inspection. Develops policies and procedures for information security and risk management.
Customer Support Engineer providing technical support for mobile device security solutions. Responsible for ensuring customer satisfaction through collaboration with product and engineering teams.