Security Engineer (Cloud & Salesforce)

Security Engineer

Permanent

Hybrid - 2 or 3 days p/w on-site

Tunbridge Wells area

FPSG have a fantastic opportunity to join a large-scale digital transformation programme aimed at uniting multiple internal business units under a new, secure, cloud-native digital platform. Ideal for a hands-on Security Engineer who enjoys embedding security into the development life cycle and working with modern tooling and cloud environments.

The successful Security Engineer's responsibilities will include:

• Analysing new feature code to identify and mitigate security risks
• Collaborating with development teams to implement secure coding practices and remediation strategies
• Driving improvements in security maturity frameworks such as DSOMM, including hands-on delivery (code, configuration, documentation, tooling)
• Designing, building, operate, monitoring secure solutions across complex platforms
• Ensuring internal and industry security standards (eg OWASP CI/CD, SAMM) are adhered to across systems
• Managing and improving cloud security posture (Azure Defender, Prisma Cloud etc)
• Implementing and optimising observability platforms for holistic system monitoring
• Supporting and securing software delivery life cycle, from development to deployment and ongoing operations

The successful Security Engineer's essential skills will include:

• Demonstrated experience in software security within cloud-first or hybrid environments (Azure preferred)
• A deep understanding of the Salesforce platforms, with experience supporting secure integration and development
• Strong knowledge of networking protocols (eg TCP/IP, UDP, HTTP/3) and cloud network architecture (VPNs, subnets, zones)
• Experience with API security and integration-related platforms such as Auth0 or API Gateways
• Proficiency with security tools including SAST (eg Snyk, Checkmarx), SCA, and DAST (eg OpenZAP, Qualys DAST)
• Ability to manage secure operations of large-scale software estates, including deployment pipelines, rollback strategies, and uptime monitoring
• Practical experience building automated security test suites into CI/CD workflows
• Familiarity with security frameworks such as DSOMM, OWASP, and SAMM

Suitability: This role is a technical hands-on security engineering role, it is NOT GRC focused. It would be well-suited to experienced Security Engineers or Developers with a strong security focus and interest in building secure, scalable systems in the cloud.

Note: Demonstrable experience of Security Engineering in, on and around the Salesforce platform is critical.

Note: Candidates must be based in the UK and authorised to work.

Note: On-site attendance 3 days a week is required

Location:

Candidates can be based (3 days a week) from multiple UK locations, Leeds, Bristol, Tunbridge Wells, Manchester, Leicester, Redhill

Reward

This is a great opportunity to work on a high-impact transformation within a dynamic and technology-focused environment. In addition to a hybrid working model, the role offers a competitive benefits package:

Competitive annual salary (based on experience) + Annual performance-based bonus + Generous pension scheme + Life Assurance + Generous annual leave with buy/sell options + Private healthcare + Extensive Wellbeing services and employee discounts

Key Technical Terms

Security Engineering, Cybersecurity Engineer, Information Security Specialist, Salesforce, Azure, OWASP CI/CD, DSOMM, SAMM, Cloud Security Posture Management, Prisma Cloud, Azure Defender, Snyk, Checkmarx, OpenZAP, Qualys, DAST, SAST, CI/CD, Infrastructure Security, Auth0, Secure APIs, Networking Protocols, DevSecOps, Secure Development, CRM Security

Next Steps

Please click "Apply now" and submit your up-to-date CV, including your notice period and salary expectations.

We are Disability Confident and neurodiverse aware. If you have a disability, please tell us if there are any reasonable adjustments we can make to assist you in your application or with your recruitment process