Security Engineer Cloud & Salesforce

Permanent hybrid role - 2 or 3 days per week on-site in the Tunbridge Wells area.

FPSG have a fantastic opportunity to join a large-scale digital transformation programme aimed at uniting multiple internal business units under a new, secure, cloud-native digital platform. Ideal for a hands-on Security Engineer who enjoys embedding security into the development lifecycle and working with modern tooling and cloud environments.

The successful Security Engineer's responsibilities will include:

• Analysing new feature code to identify and mitigate security risks
• Collaborating with development teams to implement secure coding practices and remediation strategies
• Driving improvements in security maturity frameworks such as DSOMM, including hands-on delivery (code, configuration, documentation, tooling)
• Designing, building, operating, and monitoring secure solutions across complex platforms
• Ensuring internal and industry security standards (e.g. OWASP CI/CD, SAMM) are adhered to across systems
• Managing and improving cloud security posture (Azure Defender, Prisma Cloud etc)
• Implementing and optimising observability platforms for holistic system monitoring
• Supporting and securing software delivery lifecycle, from development to deployment and ongoing operations

The successful Security Engineer's essential skills will include:

• Demonstrated experience in software security within cloud-first or hybrid environments (Azure preferred)
• A deep understanding of the Salesforce platforms, with experience supporting secure integration and development
• Strong knowledge of networking protocols (e.g. TCP/IP, UDP, HTTP/3) and cloud network architecture (VPNs, subnets, zones)
• Experience with API security and integration-related platforms such as Auth0 or API Gateways
• Proficiency with security tools including SAST (e.g. Snyk, Checkmarx), SCA, and DAST (e.g. OpenZAP, Qualys DAST)
• Ability to manage secure operations of large-scale software estates, including deployment pipelines, rollback strategies, and uptime monitoring
• Practical experience building automated security test suites into CI/CD workflows
• Familiarity with security frameworks such as DSOMM, OWASP, and SAMM

This role is a technical hands-on security engineering role, it is NOT GRC focused. It would be well-suited to experienced Security Engineers or Developers with a strong security focus and interest in building secure, scalable systems in the cloud.

Note: Demonstrable experience of Security Engineering in, on and around the Salesforce platform is critical.

Note: Candidates must be based in the UK and authorised to work.

Note: On-site attendance 3 days a week is required.

Location: Candidates can be based (3 days a week) from multiple UK locations, including Leeds, Bristol, Tunbridge Wells, Manchester, Leicester, and Redhill.

This is a great opportunity to work on a high-impact transformation within a dynamic and technology-focused environment. In addition to a hybrid working model, the role offers a competitive benefits package:

• Competitive annual salary (based on experience)
• Annual performance-based bonus
• Generous pension scheme
• Life Assurance
• Generous annual leave with buy/sell options
• Private healthcare
• Extensive Wellbeing services and employee discounts

Please click "Apply now" and submit your up-to-date CV, including your notice period and salary expectations.

We are Disability Confident and neurodiverse aware. If you have a disability, please tell us if there are any reasonable adjustments we can make to assist you in your application or with your recruitment process.