Application Security Engineer - Product security | Technology Risk & Cybersecurity |S3 | Milton Keynes- Unity Place Country: United Kingdom Interested in part-time, job-share or flexible working? We want to talk to you Join our community. Come and help us manage security at a holistic, product level and enable our teams to know they've built secure products from the outset We're building strong guardrails, making significant use of automation and data to ensure that millions of customers are protected. Beyond guardrails though, there are countless individual decisions that software engineers make that can impact the security of our customer applications. This role will support our Digital CoE by driving good practice throughout software engineering and ensuring the adoption of the right controls throughout the SDLC. This is multi-team effort, so you will be working closely with our SRE team who provide the service wrap around Github, our architecture teams who are designing new solutions and several other CISO teams. The BISO team own the overall security relationship with our business domains but expect to work closely with Security Architecture & Engineering, Vulnerability Management and our CERT teams too. The difference you'll make. Advising engineering teams and collaborating to solve application security issues Guiding on secure coding practices and assisting with code-reviews Embedding threat modelling into product delivery processes Using your expertise to support our bug bounty programme Developing security automation tools Analysing security data to influence and shape product security strategy What you'll bring. Demonstrable security experience with Java applications Proficient in scripting or automation development. Python, bash, Golang or C# Mentor and support other CISO functions, and product and platform developers Expert understanding of CI/CD (Github Actions as we migrate from Jenkins) Experience securing containerised workloads Application security as it overlaps with AWS services (e.g. Lambda, IAM) It would also be nice for you to have. Kubernetes experience Tooling exposure: Sysdig Enterprise, HP Fortify, Sonarqube. A flair for visual storytelling to bring people along on the security journey What else you need to know. We want our people to thrive at work and home, and we recognise that many people benefit from flexible arrangements. To enable us to deliver the best outcomes for our customers and to help each other develop we understand the importance of having the right balance of spending time together in an office while maintaining flexibility. By working this way we can continue to create moments that matter for everyone. To support this, we offer site-based contracts with a hybrid working pattern and we're happy to discuss specific requirements throughout the recruitment process. This role is based in Milton Keynes and our current expectation is at least 2 days in an office every week. If you're interested in this role but with part time hours or a job-share we would still love to hear from you and discuss these. Application process If your application is successful a member of our recruitment team will be in touch. We will arrange a short call with you to learn more about you and what you are looking for from your next career move, as well as answer any questions you have about working in the Santander tech team. If both sides agree we will send your CV to the hiring manager to review. For this position, the interview process will be :- 1st Stage - Technical Interview - this will a 30min technical interview with one of the team 2nd Stage - A one-hour formal interview where we will ask both technical and competency-based questions. This can be done virtually or face to face depending on your situation. If there's anything we can do in the recruitment process to help you achieve your best, please let us know. Inclusion At Santander we're creating a thriving workplace where all colleagues feel they belong and are supported to succeed. We all help to make Santander a workplace that celebrates diversity and attracts, retains and develops the most talented and committed people through living our values of Simple, Personal, and Fair. How we'll reward you. As well as a salary, we offer a wide range of benefits that you can choose from and tailor to your needs. Competitive salary Eligible for a discretionary performance-related annual bonus We put 8% of salary into your pension, even if you don't contribute yourself. We'll pay in up to 12.5% of salary, if you contribute as well, and you can take some of our contribution in cash if you prefer 30 days' holiday plus bank holidays, which increases to 31 days after 5yrs service, with the option to purchase up to 5 contractual days per year £6,000 car allowance per year Company funded individual private medical insurance Voluntary healthcare benefits at discounted rates such as private medical insurance for your family, dental insurance, healthcare cash plan and health assessments Benefits supporting you and your family, such as death-in-service benefit, income protection, and voluntary life assurance and critical illness cover Share in Santander's success by investing in our share plans Learn more about our benefits and family friendly policies What to do next:- If this sounds like a role you're interested in, then please apply. If there's anything we can do in the recruitment process to help you achieve your best, get in touch. Whether it's a copy of our application form in another format or additional assistance, we're available through telephone, email, or face to face. You can contact us at resourcingsantander.co.uk or call 0870 414 9080.