Principal Security Engineer

Responsibilities and Qualifications

• Promote a culture where re-use is encouraged to optimize workflow efficiency and reduce duplication.
• Guide and coach teams on good security engineering practices and process improvements, helping to build capability and maturity across the organisation.
• Support the team in delivering outcomes efficiently by reducing manual execution.
• Ensure fast, reliable feedback loops are in place to enable fail‑fast delivery and continuous improvement.
• Define and implement best practices and controls, ensuring adherence and enabling early detection of issues.
• Drive engagement and collaboration across Scrum Teams and the CIO community, leading the definition and adoption of best practices to enable faster, secure and more reliable delivery.
• Extensive practical experience in IT Security working in an agile environment.
• Transformational leadership skills to influence decision making and implement new processes and procedures in support of the company's vision.
• Excellent mentoring skills to support direct reports in their ongoing development.
• Proven experience in designing, implementing, and securing cloud environments, with a strong emphasis on Microsoft Azure services.
• In‑depth knowledge of cloud security best practices, network security, identity and access management, encryption, and secure coding principles.
• Excellent problem‑solving skills and the ability to analyse complex security issues and develop effective solutions.
• Strong communication and collaboration skills, with the ability to work effectively in cross‑functional teams.
• Track record of successfully designing, building, and deploying scalable, secure, and highly available security infrastructures using Azure.
• Strong proficiency in leveraging data and advanced analytics to drive decision‑making and continuously enhance security solutions.
• Proficient knowledge of at least one agile methodology (e.g., Scrum, Kanban, SAFe) and familiarity with backlog and test case management in a system of record such as Jira or Octane.
• Expert knowledge of Cloud Technologies.
• Strong understanding of regulatory compliance requirements (e.g., GDPR, ISO 27001, NIST) and experience implementing security controls to meet those requirements.
• Hands‑on experience with Azure Kubernetes Service (AKS) and microservices architecture.
• Familiarity with DevSecOps methodologies and tools, enabling seamless integration of security into the development process.
• Proficiency in Microsoft Defender security assessment tools, vulnerability scanning tools, and SIEM platforms.
• In‑depth understanding of the Microsoft ecosystem, including hands‑on experience with Firewalls, IDS/IPS, Load Balancers, Application Gateways, Proxies, Microsoft 365, EDR, and KQL.
• Expertise in utilizing Azure DevOps to drive efficient and collaborative development processes, including the development of security solutions and updates in code.

Benefits

• Salary – Attractive salary based on experience + car allowance (pay reviews also completed each year).
• Flexible working – We champion a flexible and hybrid working approach.
• Competitive bonus scheme – All colleagues eligible for our annual 4Cs performance bonus, paid in March.
• Physical wellbeing – Private medical insurance (PMI).
• Financial wellbeing – 4x salary life assurance cover, income protection at no extra cost, pension contribution match up to 10%, plus discounts, cashback, mortgage advice, financial wellbeing support.
• Mental wellbeing – Thrive mental health app, colleague assistance programme, mental health first aiders, support groups.
• Annual leave – 27 days plus bank holidays, option to buy or sell weekly contracts, health care cashback plans, dental plans, health assessments, Cycle to work, tech schemes, free onsite facilities, social events.

Equal Opportunities

Hastings Group is an equal opportunities employer and welcomes applications from all suitably skilled persons regardless of gender, age, race, disability, ethnic background, religion/belief, sexual orientation, gender reassignment, marital or family status. We encourage you to seek reasonable adjustments during the recruitment process.