Cyber Security – Specialist Platform Security Engineer
Location: London - Office-based (4 days per week)
Duration: 6 months
Additional Requirements:
Travel to sites may be required for workshops
Role Overview
We are seeking a Specialist Platform Security Engineer to play a key role in strengthening the security and integrity of enterprise platforms. This position will focus on implementing robust security practices across a range of modern SaaS and PaaS environments.
You will work closely with cross-functional teams to identify risks, improve platform security posture and support the secure design and integration of critical systems. This is an excellent opportunity to contribute to a forward-thinking organisation with a strong focus on modern platform security and automation.
Key Responsibilities
* Provide strategic guidance on the secure adoption and use of SaaS and PaaS platforms, including Microsoft, Google and Atlassian ecosystems, MongoDB Atlas and internally developed platforms
* Deliver technical consulting to identify misconfigurations, reduce platform risk and promote security best practice across teams
* Support secure design and integration of tools across business programmes, including access reviews and configuration assessments
* Contribute to the development and implementation of platform security standards, policies and baseline controls
* Promote a culture of security through automation, repeatable patterns and consistent practices across engineering teams
* Assist in identifying and remediating platform-specific vulnerabilities
* Support the automation of security checks, configuration reviews and access hygiene processes
* Contribute to integrating security into CI/CD pipelines, including automated checks to detect misconfigurations, vulnerabilities and policy breaches
Candidate Profile
* Strong understanding of Identity and Access Management principles, including least privilege, zero trust, authentication, authorisation, SSO, JWT and RBAC/ABAC/PBAC models
* Solid understanding of security architecture, particularly relating to databases and APIs
* Knowledge of platform security, configuration management, monitoring, response and governance
* Experience with scripting (Python or Bash) for automationWorking knowledge of Terraform
* Understanding of common security threats such as DDoS, brute force attacks, data exfiltration and spoofing
* Minimum of 3 years’ hands‑on experience in platform or infrastructure security
* Demonstrated interest in developing expertise in platform security and modern security practices
#J-18808-Ljbffr