Thinking Beyond Limitations
Lead Security Engineer
Location
United Kingdom
Posted
36 days ago
Salary
0
Seniority
Senior
Job Description
Lead Security Engineer
Kainos
• Responsible for leading security engineering and security testing efforts across Kainos Platforms and Services • Set direction on security testing methodology, engagement scoping, outputs and tool/technology selections • Develop junior security engineers • Work with agile delivery teams to develop good security practices • Share knowledge and help educate customers and Kainos team members on good security practices • Manage, coach and develop staff, focusing on employee performance and career development • Provide direction and leadership for the team when solving challenging problems
Job Requirements
- Expertise in securing Web Applications and Cloud Platforms (e.g. AWS/Azure)
- Expertise of testing software and infrastructure security using existing manual or automated security tools
- Expertise in assessing software and infrastructure source code from a security standpoint
- Expertise in Continuous Security, Continuous Integration and Continuous Delivery techniques
- Knowledge of international security standards and regulations such as NCSC, NIST, CIS, PCI, GDPR, OWASP ASVS, HIPAA, SOC2
- Knowledge of typical cyber security attack vectors (e.g. OWASP Top 10, SQL, XSS, XXE, MITM)
- Excellent communication skills
- Demonstrated ability in managing, mentoring and coaching members of your team
- Good programming or scripting experience across Windows/Linux/MacOS
- Stays up to date with new threats and attack types
Benefits
- Flexible working arrangements
- Professional development opportunities
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Personal Assistant – IT Security Coordinator
Raiffeisen Bank UkraineРайффайзен Банк – надійний та відповідальний банк із іноземним капіталом.
• Персональне асистентство для CISO та менеджменту Департаменту IT Безпеки • Виконання завдань та доручень керівника, у тому числі поза стандартним робочим часом за потреби • Ведення та координація календаря, організація офлайн/онлайн зустрічей, нарад, дзвінків • Організаційна підтримка офісу керівника (закупівля необхідного для ефективної роботи) • Підготовка документів та презентацій за запитом • Планування та організація відряджень (індивідуальних та групових), компенсація витрат • Координація та моніторинг статусів виконання задач, контроль дедлайнів
• You will take on a hunter role with a lot of autonomy: you will advise C‑level decision-makers strategically, expand existing account business and proactively drive new business. • As an Enterprise Account Manager you are responsible for the entire sales cycle – from lead generation and pipeline development to successful closing in the enterprise segment. • You will advise C‑level executives (CISO, CIO) as an equal on holistic cyber security strategies and modern cloud security architectures. You are familiar with the key content and requirements of regulations such as NIS2 and DORA. • You will work closely with our technology partners (SecOps, Wiz, Trend AI) and security consultants to tailor appropriate solutions for complex customer requirements. • You keep up to date with current cyber threats, trends and new security technologies and actively use this knowledge in your sales conversations. Firewalls and perimeter security are old hat for you. Your focus and expertise are on Zero‑Trust, highly automated SIEM/SOAR solutions and the demands of AI security.
• Implement, configure, upgrade, document, and troubleshoot security platforms, including: Microsoft Sentinel (SIEM/SOAR), Microsoft Defender (XDR/DLP), Microsoft Purview, Entra ID, and Microsoft 365 Security, Tenable (including Cloud TVM), Tanium, Delinea (PAM), GitHub Security, Google Security Command Center (SCC), and Palo Alto Firewalls. • Lead enterprise-wide logging implementation and SIEM data onboarding. • Implement vulnerability and cloud TVM solutions and integrate with asset/CMDB data. • Develop cyber security health monitoring and detection quality improvements. • Perform firewall rule reviews, cleanup, and tightening. • Act as L3 SOC support for advanced investigations and incident response. • Partner with IT and infrastructure teams; participate in change control processes. • Apply AI-assisted approaches to investigation and security operations. • Participate in a rotating L3 off-hours on-call schedule.
• Build and lead a comprehensive security program from the ground up, covering Product, Manufacturing (OT), and Corporate (IT) security. • Partner with Engineering to integrate security into the product lifecycle, focusing on Battery Management Systems (BMS), firmware integrity, and hardware-level protections. • Implement rigorous data loss prevention (DLP) and access controls to safeguard proprietary battery chemistry, R&D data, and manufacturing processes. • Secure our automated production lines and factory floor environments to ensure operational uptime and prevent industrial sabotage. • Establish a robust vendor risk program and Software Bill of Materials (SBOM) to ensure the integrity of global components and sub-systems. • Drive the business toward achieving critical product and industrial certifications (e.g., IEC 62443, ISO 27001, UL 2900).
