At a Glance
- Tasks: Take charge of security for digital products and close vulnerabilities effectively.
- Company: DNV Energy Systems, a leader in cyber security with a focus on innovation.
- Benefits: Competitive salary, flexible working options, and opportunities for professional growth.
- Other info: Join a growing team that values security and fosters collaboration.
- Why this job: Make a real impact by enhancing security practices across diverse products.
- Qualifications: Experience in cyber security and strong problem-solving skills required.
The predicted salary is between 60000 - 80000 £ per year.
Are you a cyber security engineer who gets genuine satisfaction from closing vulnerabilities, not just finding them? DNV Energy Systems is seeking a Senior Cyber Security Engineer to take ownership of the hands‑on delivery of security across a portfolio of digital products. In this role, you will work closely with product and engineering teams to actively reduce risk, meet compliance requirements, and embed secure, sustainable practices that last.
OUR OPPORTUNITY
Reporting to the Digital Portfolio Manager, you will be the primary security engineering resource for the UK&I digital product portfolio. You will own the security posture of the portfolio end‑to‑end, from tooling and triage through to remediation support, assessment execution, and audit preparation. This is an individual contributor role with substantial scope. You'll be the one closest to the work, with direct influence over how security is practised across the portfolio. There is genuine opportunity for the function to grow around you as the team expands. You will work across multiple products and engineering teams simultaneously, acting as the technical security authority for the region. You’ll be joining teams that value security and want to get it right, giving you the platform to drive meaningful, lasting improvements.
What you’ll do:
- Vulnerability Management & Tooling
- Maintain and operate SAST/DAST tooling (including Veracode) across the digital portfolio
- Lead CVE triage, assessing severity, exploitability and remediation priority across all products
- Track and manage vulnerability remediation to closure, working directly with engineering teams
- Maintain the portfolio security risk register, ensuring visibility of open issues and remediation status
- Security Assessment & Audit
- Plan and execute security assessments across the product portfolio against DNV standards and industry frameworks (eg OWASP ASVS)
- Support audit preparation and evidence gathering for internal and external audit cycles
- Maintain assessment documentation, findings registers and remediation tracking artefacts
- Secure Development Practice
- Embed security into the software development lifecycle (SDL/SSDLC) across product teams
- Conduct threat modelling and architecture review for new and materially changed products
- Advise development teams on secure coding practices, dependency management and secrets handling
- Act as technical security subject matter expert, the first point of contact for engineering and product teams when security questions arise
Senior Cyber Security Engineer employer: DNV Germany Holding GmbH
At DNV Energy Systems, we pride ourselves on being an exceptional employer that fosters a culture of collaboration and innovation. As a Senior Cyber Security Engineer, you will not only have the opportunity to take ownership of security across a diverse portfolio of digital products but also benefit from a supportive environment that encourages professional growth and development. With a focus on meaningful work and lasting impact, our teams are dedicated to embedding secure practices that contribute to a sustainable future.
StudySmarter Expert Advice🤫
We think this is how you could land Senior Cyber Security Engineer
✨Tip Number 1
Network like a pro! Get out there and connect with folks in the cyber security field. Attend meetups, webinars, or even local events. The more people you know, the better your chances of landing that Senior Cyber Security Engineer role.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your past projects, especially those where you’ve closed vulnerabilities. This will give potential employers a clear view of what you can bring to the table.
✨Tip Number 3
Don’t just apply; engage! When you find a job listing that excites you, reach out to someone at the company. Ask questions about the role or the team. This shows genuine interest and can help you stand out from the crowd.
✨Tip Number 4
Keep it real during interviews! Be prepared to discuss how you’ve tackled vulnerabilities in the past. Use specific examples to demonstrate your hands-on experience and how you can contribute to maintaining a strong security posture.
We think you need these skills to ace Senior Cyber Security Engineer
Some tips for your application 🫡
Tailor Your CV:Make sure your CV reflects the specific skills and experiences that align with the Senior Cyber Security Engineer role. Highlight your hands-on experience with vulnerability management and security assessments, as these are key to what we’re looking for.
Craft a Compelling Cover Letter:Use your cover letter to tell us why you’re passionate about cyber security and how you’ve successfully closed vulnerabilities in the past. This is your chance to show us your personality and enthusiasm for the role!
Showcase Relevant Projects:If you've worked on projects that involved SAST/DAST tooling or security assessments, make sure to include them in your application. We want to see how you’ve applied your skills in real-world scenarios.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows us you’re keen to join our team!
How to prepare for a job interview at DNV Germany Holding GmbH
✨Know Your Tools Inside Out
Make sure you’re familiar with the SAST/DAST tools mentioned in the job description, especially Veracode. Be ready to discuss your experience with these tools and how you've used them to manage vulnerabilities effectively.
✨Showcase Your Vulnerability Management Skills
Prepare examples of how you've triaged CVEs in the past. Highlight specific instances where you assessed severity and prioritised remediation, as this will demonstrate your hands-on experience and ability to work closely with engineering teams.
✨Understand Security Assessment Frameworks
Brush up on DNV standards and industry frameworks like OWASP ASVS. Being able to discuss how you’ve planned and executed security assessments will show that you can hit the ground running in this role.
✨Emphasise Secure Development Practices
Be prepared to talk about how you've embedded security into the software development lifecycle. Share your experiences with threat modelling and secure coding practices, as this will illustrate your capability to act as a technical security authority.
