3 of 3 Security Posture Jobs in Somerset

As a Product Security Specialist (PSS) at HL, you will be a key member of a collaborative team of security professionals dedicated to safeguarding HL's products and services. In this role, you will serve as the primary security contact for assigned product teams/squads, providing expert guidance on security issues and requirements. You will … champion secure development practices throughout the software development lifecycle, with a strong emphasis on 'shift-left' principles to embed security early in the process. You will facilitate threat modelling workshops to help product teams identify, assess, and mitigate potential threats. You will also collaborate closely with other functions within the CISO organisation, including Application Security, Offensive Security, and others to continuously improve HL's overall security posture. This position offers the opportunity to work with modern technologies and influence the security of innovative products, while fostering a culture of security awareness and resilience across the organisation. What you will be doing Oversee security related issues across multiple product teams/squads. Working More ❯

passionate about our shared passion for delivering new features for customers across our brands in the mobile space. This role will be pivotal in building, delivering, and driving the security of our mobile platform. The key aspect of this role is the design and delivery of a world-class security framework, including associated services (penetration testing, research, consultancy … etc.). What we need from you/essential skills & experience: Experience of Mobile platform security, threat modelling and mitigation techniques Capable of conducting regular reviews of our mobile application security posture using your hands-on experience. Develop and maintain pen-testing security tools, scripts, policies and procedures In depth knowledge of mobile app security standards (Android/iOS) Desirable knowledge & experience Familiarity with mobile development, DevSecOps tooling, testing and automation frameworks. Have deep knowledge and experience using the mobile security tools. Good understanding of authentication, authorisation, encryption, and cryptography patterns. Experience in proactive researching of new technologies emerging in the security landscape. More ❯

Key JWT (with client-credentials fallback where needed), and automating customer onboarding (keys/JWKs and SSO enablement). It's a hands-on opportunity to ship high-impact security work that directly unblocks delivery. The DevSecOps team partners across the business to make secure-by-default the easiest path - through guardrails, self-service tooling, and CI/CD … rollout, deprecate legacy auth safely, and introduce scope-based, fine-grained access controls across our API and UI. You'll help us deliver these programmes while strengthening our platform security posture and accelerating product teams. On a typical day you will be: Designing, building, and maintaining production-grade Node.js integrations, CLIs, and automation surrounding our Auth0 identity platform. More ❯