Specialist Security Platform Engineer

The Specialist Platform Security Engineer will play a pivotal role in ensuring the integrity and security of our platforms. You will lead the charge in implementing robust security measures, collaborating closely with cross-functional teams to fortify our defences against cyber threats.

Responsibilities

• Strategic guidance for secure adoption and use of SaaS & PaaS platforms and services in the Microsoft, Google & Atlassian ecosystem, MongoDB Atlas, and other first-party platforms developed in house. The services include databases, API gateways, code repositories, integration services and others
• Technical consulting to identify misconfigurations and reduce platform risk , helping raise organizational awareness of risks and best practices by participating in workshops, documentation efforts, and knowledge sharing
• Support for secure design and integration of tools across business programs , providing access & configuration reviews for the various platforms; contributing to the implementation of platform security standards, policies, and baselines under guidance from senior team members; building a culture of security by promoting automation, repeatable patterns, and consistent practices across teams
• Assistance in identifying and remediating platform-specific vulnerabilities
• Automation of security checks, configuration reviews, and access hygiene , including assistance in security integration into CI/CD pipelines, contributing to automated checks (e.g., GitHub Actions) that identify misconfigurations, vulnerabilities, and policy violations
• Collaboration with platform teams and vendors to help evaluate and integrate security tools, ensuring smooth adoption across new and existing services.

ESSENTIAL

• Solid understanding of Identity and Access security, including but not limited to least privilege, zero trust, authentication, authorisation, SSO, JWT, RBAC/ABAC/PBAC
• Solid understanding of security principles and architecture, particularly for databases and APIs
• Understanding of Platform & Configuration Security, and Platform Monitoring, Response and Governance
• Scripting (Python, Bash) for task automation
• Terraform
• Understanding of security threats like DDoS, brute force, exfiltration, spoofing, and other relevant threats
• 3 years of hands-on experience in platform or infrastructure security, with a strong interest in building skills in this area.
• Exposure to or interest in integrating security into CI/CD pipelines and platform workflows (experience with GitHub Actions or similar tools is a plus).
• Strong analytical and problem-solving skills, with a curiosity to learn and grow in complex technology environments.
• Good communication and teamwork skills, with the ability to collaborate with platform, DevOps, and security teams.
• Enthusiasm for working in a fast-paced, dynamic environment, with support and mentorship from senior team members.

Unfortunately for this role we are unable to offer any form sponsorship.