Product Security Specialist (Cybersecurity)

TL;DR

Product Security Specialist (Cybersecurity): Safeguarding HL's products and services, providing expert security guidance to product teams and championing secure development practices throughout the software development lifecycle. Focus on facilitating threat modelling, improving overall security posture, and working with modern cloud technologies.

Location: This role is based in Bristol head office, BS1 5HL, and offers a hybrid flexible working pattern. We are unable to provide employment sponsorship.

Company

hirify.global is the UK’s number 1 investment platform for private investors, helping them save and invest for a better future.

What you will do

• Oversee security issues across multiple product teams/squads.
• Serve as the single point of contact for security-related matters within product teams.
• Lead/facilitate threat modelling workshops and engage stakeholders to identify threats.
• Participate in architectural reviews of Product cloud implementations against security best practices.
• Support the creation and implementation of architecture blueprints and proof of concepts on Cloud platforms.

Requirements

• Demonstrable experience in a Security related role.
• Proven track record with one or more main cloud vendor platforms, specifically AWS.
• Technical background across multiple security domains and familiarity with cloud security standards.
• Experience with Agile ways of working and DevSecOps context.
• Knowledge of security principles, practices, and frameworks (OWASP, NIST, ISO).
• Experience in conducting threat modelling and risk assessments.
• English: B2 required
• Work authorization: Sponsorship is not available.

Nice to have

• Certifications such as AWS Solutions/Security Engineer, Azure Solutions/Security Engineer.
• Certifications such as CISSP, CEH, OSCP, or GSEC.
• Awareness of security tools and technologies (SAST, DAST, IAST, SCA, WAF, IDS, IPS).

Culture & Benefits

• Discretionary annual bonus and annual pay review.
• 25 days holiday plus bank holidays and additional Christmas closure.
• Flexible working options including hybrid working.
• Enhanced parental leave and pension scheme up to 11% employer contribution.
• Private medical insurance, health care cash plans, and health screening programme.
• Unlimited access to fitness providers and wellness coach sessions (Wellhub).
• Two paid volunteering days per year.

Hiring process

• Two stages, including a technical competency-based question and a task.