Principal Security Engineer

Promote a culture where we re-use more which allows us to optimise workflow efficiency and reduce duplication. Guide and coach teams on good security engineering practices and process improvements, helping to build capability and maturity across the organisation. Supports the team in delivering outcomes efficiently, by reducing manual execution. Ensure fast, reliable feedback loops are in place to enable fail-fast delivery and continuous improvement. Define and implement best practices and controls, ensuring adherence and enabling early detection of issues. Drive engagement and collaboration across Scrum Teams and the CIO community, leading the definition and adoption of best practices to enable faster, secure and more reliable delivery.

Skills We Would Love You To Have

• Extensive practical experience in IT Security working in an agile environment.
• Transformational leadership skills being able to influence decision making and implement new processes and procedures in support of the company’s vision.
• Excellent mentoring skills to support direct reports in their ongoing development.
• Proven experience in designing, implementing, and securing cloud environments, with a strong emphasis on Microsoft Azure services.
• In-depth knowledge of cloud security best practices, network security, identity and access management, encryption, and secure coding principles.
• Excellent problem-solving skills and the ability to analyse complex security issues and develop effective solutions.
• Strong communication and collaboration skills, with the ability to work effectively in cross-functional teams.
• Track record of successfully designing, building, and deploying scalable, secure, and highly available security infrastructures using Azure.
• Strong proficiency in leveraging data and advanced analytics to drive decision-making and continuously enhance security solutions.

Tools & Technologies

• Proficient knowledge of at least one agile methodology (e.g. Scrum, Kanban, SAFe).
• Familiar with backlog and test case management in a system of record such as Jira or Octane.
• Expert knowledge using Cloud Technologies.
• Strong understanding of regulatory compliance requirements (e.g. GDPR, ISO 27001, NIST) and experience implementing security controls to meet those requirements.
• Hands-on experience with Azure Kubernetes Service (AKS) and microservices architecture.
• Familiarity with DevSecOps methodologies and tools, enabling the seamless integration of security into the development process.
• Proficiency in Microsoft Defender security assessment tools, vulnerability scanning tools, and SIEM platforms.
• In-depth understanding of the Microsoft ecosystem, including hands-on experience with Firewalls, IDS/IPS, Load Balancers, Applications Gateways, Proxies, M365, EDR, KQL.
• Expertise in utilizing Azure DevOps to drive efficient and collaborative development processes, including the development of security solutions and updates in code.

What We Offer

• Attractive salary based on experience + car allowance (pay reviews also completed each year).
• Flexible Working: We champion a flexible and hybrid working approach.
• Competitive Bonus Scheme: All colleagues are eligible for our annual 4Cs performance bonus.
• Physical Wellbeing: Hastings pays for private medical insurance (PMI).
• Financial Wellbeing: Life assurance cover, income protection, pension contribution match up to 10%, and an award-winning package.
• Mental Wellbeing programme: Support for mental health including a mental health app and assistance programme.
• 27 days annual leave + bank holidays, with options to buy or sell contracted weeks.
• Access to health care cash back plans, dental plans, discounted health assessments, and social events throughout the year.

Hastings Group is an equal opportunities employer which means we treat people fairly. We welcome applications from all suitably skilled persons regardless of their gender, age, race, disability, ethnic background, religion/belief, sexual orientation, gender reassignment or marital/family status. We have a thorough referencing process, which includes credit and criminal record checks. At Hastings Direct, we’re committed to creating an inclusive environment where everyone has the opportunity to succeed. If you require any reasonable adjustments during the recruitment process, we encourage you to be open with us.