Job Details
JOB BAND: D. CONTRACT TYPE: Permanent, Full‑time. DEPARTMENT: Engineering Enablement. LOCATION: Cardiff, Salford, London, Glasgow – Hybrid. PROPOSED SALARY RANGE: up to £82,500 depending on relevant skills, knowledge and experience. We’re happy to discuss flexible working. Flexible working will be part of the discussion at offer stage.
Purpose of the Role
Join the BBC’s Engineering Enablement team to shape secure digital delivery at scale. As a Principal Software Engineer – Security Engineer, you’ll embed secure‑by‑design practices across cloud platforms and applications, translating InfoSec strategy into real‑world impact that protects trusted services reaching millions globally.
Why Join the Team
Join a high‑trust role with real impact, working hands‑on with engineering teams to deliver safely at scale. Be part of Engineering Enablement—a team that makes secure, high‑velocity delivery possible through shared cloud platforms, developer tooling and guardrails. Enjoy excellent career progression, unrivalled training and development opportunities, and a culture that values openness, collaboration and learning. Help shape secure systems behind trusted BBC services reaching over 500 million people every week.
Your Key Responsibilities and Impact
* Drive secure‑by‑design implementation across infrastructure and applications, ensuring delivery aligns with BBC security policy and architectural guidance.
* Promote secure SDLC practices across engineering teams, collaborating with InfoSec on shared tooling, templates and enablement.
* Help teams adopt secure coding standards and integrate automated security checks (SAST, DAST, dependency scanning) into CI/CD pipelines.
* Act as a bridge between InfoSec and delivery teams – supporting direct collaboration, not acting as a gatekeeper.
* Champion secure development and operations practices, coaching teams and scaling adoption through reusable patterns and guidance.
Essential Criteria & Skills and Experience
* You have a strong track record in software engineering with a focus on application and infrastructure security, ideally in agile or DevOps environments.
* You’re fluent in secure development concepts – comfortable with OWASP Top 10, CWE and common secure design patterns.
* You’ve helped teams adopt secure SDLC practices, working closely with central security or architecture groups.
* You’ve worked with complex, multi‑tenant cloud platforms – ideally on AWS – and understand shared services, infra‑as‑code and central governance models.
* You collaborate naturally, earning trust from delivery teams and central stakeholders alike.
Desired but Not Required
* Facilitated or contributed to threat modelling sessions using frameworks like STRIDE or DFDs.
* Reviewed designs and code with a security lens and an eye for policy alignment.
* Navigated delivery in regulated, public service or high‑trust environments.
* Been involved in incident response or risk assessment processes.
If you can bring some of these skills and experience, along with transferable strengths, we’d love to hear from you and encourage you to apply.
Before your start date, you may need to disclose any unspent convictions or police charges, in line with our Contracts of Employment policy. Failure to disclose may result in the withdrawal of your offer.
Disclaimer: This job description is a written statement of the essential characteristics of the job, with its principal accountabilities, incorporating a note of the skills, knowledge and experience required for a satisfactory level of performance. This is not intended to be a complete, detailed account of all aspects of the duties involved.
Please note: If you were to be offered this role, the BBC will conduct Employment screening checks which include reference checks; eligibility to work checks; and if applicable to the role, safeguarding and adverse media/social media checks. Any offer made is conditional on these checks being satisfactory.
For any general queries, please contact: bbchr@bbc.co.uk.
Redeployment: The BBC is committed to redeploying employees seeking suitable alternative employment within the BBC and they will be given priority consideration ahead of other applicants.
#J-18808-Ljbffr