Security Software Developer - 6 Month Contract - Inside IR35 - Hybrid in Manchester

Hamilton Barnes
Manchester, United Kingdom
2 days ago

Role details

Contract type
Temporary contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior
Compensation
£ 130K

Job location

Manchester, United Kingdom

Tech stack

Java
Static Program Analysis
Code Review
Hardware Security Module
Key Management
Systems Development Life Cycle
RSA (Cryptosystem)
Secure Coding
Security Software
Software Engineering
Systems Integration
Software Vulnerability Management
Software Security
Devsecops

Job description

A Senior Secure Software Engineer (Java) is responsible for designing, developing, and delivering secure, enterprise-grade applications with Embedded cryptographic controls. They focus on implementing strong encryption, secure key management, and integrating Hardware Security Modules (HSMs) to protect sensitive data and critical systems.

The role combines hands-on software engineering with security and compliance responsibilities, including secure SDLC practices, DevSecOps integration, and adherence to cryptographic standards. Working closely with security, architecture, and engineering teams, they ensure applications are built securely by design, aligned with regulatory requirements, and continuously improved to mitigate evolving threats while maintaining performance and scalability., * Secure Java Application Development

  • Design, develop, and maintain secure Java-based applications with Embedded cryptographic controls and secure coding practices.
  • Cryptographic Implementation & Key Management
  • Implement encryption and cryptographic functions, ensuring secure key management and protection of sensitive data.
  • HSM Integration (PKCS#11)
  • Integrate Hardware Security Modules (HSMs) using PKCS#11 to enable secure cryptographic operations and key storage.
  • Secure SDLC Implementation
  • Embed security across the Software Development Lifecycle (SDLC), including code reviews, threat modelling, and security testing.
  • DevSecOps & Compliance Alignment
  • Build and maintain DevSecOps pipelines with automated security checks, ensuring compliance with cryptographic standards and governance requirements.

Requirements

  • Java Secure Development
  • Strong experience in Java development with a focus on secure coding standards and application security.
  • Applied Cryptography Expertise
  • Solid understanding of encryption algorithms (eg AES, RSA), cryptographic libraries, and secure implementation practices.
  • HSM & PKCS#11 Integration
  • Hands-on experience integrating HSMs using PKCS#11 and managing cryptographic operations in enterprise environments.
  • Secure SDLC Knowledge
  • Experience implementing secure SDLC practices, including threat modelling, code analysis, and vulnerability management.
  • DevSecOps & Automation
  • Proficiency in building secure CI/CD pipelines with integrated security tooling and compliance enforcement.

Apply for this position