Back to search
Lead Software Security Engineer - £86k - London (Twice Monthly)
Fancy being the go-to person for all things software security? We're on the hunt for a Lead Software Security Engineer to join a growing team, helping to shape and embed security into products from day one. If you've got a strong development background and have shifted into security, this could be the perfect fit.
This isn't just a tick-box security role - we need someone who gets modern development, understands security inside out, and can bring a forward-thinking, developer-friendly approach to keeping things secure. Working closely with product teams, you'll be responsible for wrapping security around their goals rather than blocking them. The emphasis is on shifting security left, automating wherever possible, and making security a seamless part of the development lifecycle.
The role is hands-on, requiring a deep understanding of security tooling, risk assessments, and secure coding practices. You'll be involved in a variety of products, both internal and customer-facing, many of which are increasingly AI-driven. From property management systems to tax tools and heavily regulated audit products, there is a broad range of challenges to tackle. A key aspect of the role will be automating pen testing and establishing security processes that scale effectively.
You'll be working with development teams to build security into the software development lifecycle and championing the cultural shift towards DevSecOps. Managing security controls, implementing best practices, and staying ahead of modern security trends will be integral to the role. You'll also be expected to provide expert support in risk assessments, vulnerability management, and penetration testing. Working closely with an enterprise security architect, you'll ensure alignment with overall security strategies and report on compliance and risks to senior stakeholders.
A strong development background with a transition into security is essential. You should have a solid grasp of the OWASP Top 10, risk assessments, and secure development lifecycle methodologies. Experience with Azure, particularly its PaaS, DevOps, and CI/CD capabilities, will be valuable. Hands-on knowledge of security tools like Wiz and Trivy is highly desirable. More importantly, you need to be a confident communicator who can present well and engage with teams effectively. While there are no direct reports at the moment, leadership skills are crucial as the role is likely to evolve into managing a team in the future.
This is an excellent opportunity for someone with consulting experience or a background in working across multiple products. Azure security certifications would be a bonus, but they're not essential. The role is London-based, but with only one or two days in the office each month, providing plenty of flexibility.
The hiring process consists of two interview stages, with an expectation to be in the office a bit more frequently during the first six weeks. After that, it's hybrid working with significant flexibility. If this sounds like the kind of challenge you're after, let's chat!
Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law.
Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers.
By applying for this role your details will be submitted to Modis International Ltd and/ or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.
