Software Security Engineer
Defence
Bristol, United Kingdom
2 days ago
Role details
Contract type
Permanent contract Employment type
Full-time (> 32 hours) Working hours
Regular working hours Languages
EnglishJob location
Bristol, United Kingdom
Tech stack
Software Design Patterns
Embedded Software
Firmware
Software Architecture
Software Engineering
Software Systems
Software Security
Job description
- Lead and guide the security aspects of product development across the full lifecycle: concept/design ? delivery ? in-service support.
- Provide hands-on technical guidance to software development and wider project teams, including:
- security requirements and techniques
- software architecture and design patterns
- coding standards, trade-offs, and best practice
- Support technology/framework evaluation and selection for software projects.
- Conduct security assessments and risk analysis for technologies and software systems:
- identify vulnerabilities and threats
- define mitigation strategies
- Drive continuous improvement:
- identify process improvements
- contribute to development/implementation of engineering methodologies, tools, and frameworks
- Maintain clear, current security documentation (processes, procedures, guidelines).
- Produce security reporting/metrics to track activities, vulnerabilities, and remediation.
What you can expect in the team
- Engineering is central to the business, with scope to grow technical leadership and deepen understanding of complex software systems.
- Work alongside a multi-disciplinary engineering environment within a supportive and expanding software engineering team.
Requirements
- Experience developing complex software products in regulated/safety-/security-conscious sectors such as defence, automotive, aerospace, telecoms (or similar).
- Practical software security experience, with knowledge of relevant standards and best practices.
- Strong collaborator and technical leader with good communication/influencing skills; enjoys problem solving and technical challenge.
- Interest in emerging technologies and current security challenges.
- Embedded software and/or firmware experience is beneficial but not essential.
- STEM degree (or equivalent experience) and comfortable working cross-discipline.
Dynamic (hybrid) working: 3 to 5 days per week on-site, due to workload classification