At a Glance
- Tasks: Take charge of security for digital products and close vulnerabilities effectively.
- Company: DNV Energy Systems, a leader in cyber security with a focus on innovation.
- Benefits: Competitive salary, flexible working options, and opportunities for professional growth.
- Other info: Join a growing team that values security and fosters collaboration.
- Why this job: Make a real impact by enhancing security practices across diverse products.
- Qualifications: Experience in cyber security and strong problem-solving skills required.
The predicted salary is between 60000 - 80000 £ per year.
Are you a cyber security engineer who gets genuine satisfaction from closing vulnerabilities, not just finding them? DNV Energy Systems is seeking a Senior Cyber Security Engineer to take ownership of the hands‑on delivery of security across a portfolio of digital products. In this role, you will work closely with product and engineering teams to actively reduce risk, meet compliance requirements, and embed secure, sustainable practices that last.
OUR OPPORTUNITY
Reporting to the Digital Portfolio Manager, you will be the primary security engineering resource for the UK&I digital product portfolio. You will own the security posture of the portfolio end‑to‑end, from tooling and triage through to remediation support, assessment execution, and audit preparation. This is an individual contributor role with substantial scope. You'll be the one closest to the work, with direct influence over how security is practised across the portfolio. There is genuine opportunity for the function to grow around you as the team expands. You will work across multiple products and engineering teams simultaneously, acting as the technical security authority for the region. You’ll be joining teams that value security and want to get it right, giving you the platform to drive meaningful, lasting improvements.
What you’ll do:
- Vulnerability Management & Tooling
- Maintain and operate SAST/DAST tooling (including Veracode) across the digital portfolio
- Lead CVE triage, assessing severity, exploitability and remediation priority across all products
- Track and manage vulnerability remediation to closure, working directly with engineering teams
- Maintain the portfolio security risk register, ensuring visibility of open issues and remediation status
- Security Assessment & Audit
- Plan and execute security assessments across the product portfolio against DNV standards and industry frameworks (eg OWASP ASVS)
- Support audit preparation and evidence gathering for internal and external audit cycles
- Maintain assessment documentation, findings registers and remediation tracking artefacts
- Secure Development Practice
- Embed security into the software development lifecycle (SDL/SSDLC) across product teams
- Conduct threat modelling and architecture review for new and materially changed products
- Advise development teams on secure coding practices, dependency management and secrets handling
- Act as technical security subject matter expert, the first point of contact for engineering and product teams when security questions arise
Senior Cyber Security Engineer in London employer: DNV Germany Holding GmbH
At DNV Energy Systems, we pride ourselves on being an exceptional employer that fosters a culture of collaboration and innovation. As a Senior Cyber Security Engineer, you will not only have the opportunity to lead security initiatives across a diverse portfolio of digital products but also benefit from a supportive environment that prioritises employee growth and development. With a commitment to sustainable practices and a focus on meaningful contributions, you'll find a rewarding career path in a company that values your expertise and encourages you to make a lasting impact.
StudySmarter Expert Advice🤫
We think this is how you could land Senior Cyber Security Engineer in London
✨Tip Number 1
Network like a pro! Reach out to folks in the cyber security field, attend meetups, and join online forums. The more connections we make, the better our chances of landing that Senior Cyber Security Engineer role.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your past projects, especially those where you’ve closed vulnerabilities. This will give potential employers a clear view of what you can bring to the table.
✨Tip Number 3
Prepare for interviews by brushing up on common security scenarios and challenges. We should be ready to discuss how we’ve tackled vulnerabilities in the past and how we’d approach security assessments in this new role.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining our team at DNV Energy Systems.
We think you need these skills to ace Senior Cyber Security Engineer in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV reflects the skills and experiences that align with the Senior Cyber Security Engineer role. Highlight your hands-on experience with vulnerability management and security assessments, as these are key to what we’re looking for.
Craft a Compelling Cover Letter:Use your cover letter to tell us why you’re passionate about cyber security and how you’ve successfully closed vulnerabilities in the past. This is your chance to show us your personality and enthusiasm for the role!
Showcase Relevant Projects:If you've worked on projects involving SAST/DAST tooling or security assessments, make sure to include them in your application. We want to see how you’ve applied your skills in real-world scenarios.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you don’t miss out on any important updates from our team!
How to prepare for a job interview at DNV Germany Holding GmbH
✨Know Your Tools Inside Out
Make sure you’re familiar with the SAST/DAST tools mentioned in the job description, especially Veracode. Be ready to discuss your experience with these tools and how you've used them to manage vulnerabilities effectively.
✨Showcase Your Vulnerability Management Skills
Prepare examples of how you've triaged CVEs in the past. Highlight specific instances where you assessed severity and prioritised remediation, as this will demonstrate your hands-on experience and ability to work closely with engineering teams.
✨Understand Security Assessment Frameworks
Brush up on DNV standards and industry frameworks like OWASP ASVS. Be prepared to discuss how you’ve planned and executed security assessments, and how you can contribute to maintaining compliance across the product portfolio.
✨Emphasise Secure Development Practices
Be ready to talk about how you’ve embedded security into the software development lifecycle. Share your experiences with threat modelling and secure coding practices, as this will show that you can be a valuable resource for product and engineering teams.
