Senior Security Engineer
Manchester, United Kingdom
Are you ready for a life and career defining personal & professional challenge?
‘Empowering people to live their passions’
Aaqua is a refreshingly new social experience built around people, purpose and passions.
We bring like-minded people, fans, icons, creators and brands together in communities - blending epic original ~content, ~initiatives and epic physical events - centred around M.A.G.I.C.
(M.usic, A.rts & Entertainment, G.ames, I.nterests and C.ommunity).
Our philosophy is to empower people to live their passions in a safe place, with relevant engagement, genuine transparency and a democratised value system.
Your purpose
----------------------------------------------------------------------------------------------------------------------------------------
Your passion and enthusiasm about building secure software and infrastructure will guide us to become a team where delivering a secure solution is a given, while keeping an eye on minimal overhead. You provide transparency in the way we handle security to provide trust to our members and partners.
Your community
----------------------------------------------------------------------------------------------------------------------------------------
You will be a member of the Aaqua Tech team, working closely with the product owner and your engineering colleagues in your cross-functional squad to deliver the next great thing.
Meet the team
----------------------------------------------------------------------------------------------------------------------------------------
Connect with our team members via our LinkedIn page!
Your focus
----------------------------------------------------------------------------------------------------------------------------------------
Your contribution will include:
- Work closely with the engineering, SRE and infrastructure teams to build a highly secure service, by mentoring the engineers, providing education, supporting them during implementations and issue resolution, defining security standards, introducing the necessary tooling
- Help further grow a DevSecOps culture embed Security into our Development process (automation and CI/CD).
- Mature our cloud security and SAST/DAST offering.
- Provide threat modelling support.
- Improve how we deal with vulnerabilities across our codebase and applications.
- Put the necessary security controls (like code scanning, dynamic security testing, infrastructure tooling, …) in place to ensure standards are followed and potential issues are found on time
- Put the necessary monitoring and tracing in place to detect, identify and track attacks against our system
- Respond quickly and effectively to security incidents and potential breaches as well as providing post-event analysis
- Be the security voice in risk management activities, facilitate internal audits and provide evidence during external security audits
- Identify security design gaps in existing and upcoming features and designs
- Execute security assessments and design controls used for the technologies used by the team-members
- Overall, you will have an enormous influence on the way we approach security, which will be a crucial aspect of our service.
- You’ll be part of an international team brought together by a culture of technical excellence, grit, integrity and open communication.
Requirements
Tech stack you could be working with
----------------------------------------------------------------------------------------------------------------------------------------
Your journey
----------------------------------------------------------------------------------------------------------------------------------------
- You have a minimum of 5 years’ experience in the software development industry as a security engineer
- You have experience securing cloud environments, including hands-on experience with Amazon Web Services and a very good understanding of AWS security tooling (IAM, Cognito, GuardDuty, WAF)
- You have clear knowledge and hands-on experience in cloud infrastructure (e.g. Docker, Kubernetes, Terraform, ) and the security challenges they come with.
- You have solid expertise across modern application security best practice and OWASP top 10
- You have a strong background in backend engineering (e.g. Java, Python, event-driven Microservices,...)
- You have a good understanding of modern web and mobile technologies (e.g. React Native, OAuth, OpenID, GraphQL)
- You have a good understanding of application security testing tools (SAST, DAST, SCA, etc.)
- You have deep knowledge of Linux, shell scripting and automation
- You value privacy and have a high ethical standard
- You have an open and entrepreneurial mindset
- You maintain a high-quality standard, but can strike a balance between quality, flexibility and timely delivery, without compromising on security.
What you'll get
----------------------------------------------------------------------------------------------------------------------------------------
Why work with us?
----------------------------------------------------------------------------------------------------------------------------------------
At AAQUA, we are committed to real economic value distribution and this extends to our people. AAQUA is creating a work culture that caters to all your YOU's. Our total rewards package is highly attractive, with generous compensation, options programmes, comprehensive medical coverage and workplace flexibility.
Developing our people is a given and the exposure your will get at AAQUA will see you always evolving, creating opportunities for rapid career advancement. By putting our 'members first' (that includes YOU), you will deliver the unexpected every day. AAQUA's agile focus drives collaboration, ideation and allows you to be your true self, empowers our people and delivers a passionate and fun team.
AAQUA is a diverse and inclusive culture. We want our people to be reflective of our members and commit to a non- discriminatory culture that does not judge by; age, gender, sexual orientation and gender reassignment, race and colour, disability, religion and beliefs, pregnancy and family responsibilities, education level and all of your YOU's.
Humans of AAQUA
----------------------------------------------------------------------------------------------------------------------------------------
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Application security Audits Automation AWS C CI/CD Cloud DAST DevSecOps Docker IAM Java Kubernetes Linux Microservices Monitoring OpenID OWASP Privacy Python Risk management SAST Scripting Security assessment Terraform Vulnerabilities
Perks/benefits: Career development Health care Team events Transparency
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs