Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Design and implement robust security solutions for modern applications and networks.
- Company: Join a leading UK retail bank focused on innovative security transformation.
- Benefits: Competitive pay, hands-on experience, and the chance to shape security architecture.
- Why this job: Make a real impact on enterprise security and influence major strategic programmes.
- Qualifications: Experience in application and network security, with strong communication skills.
- Other info: Collaborative environment with opportunities for professional growth and development.
The predicted salary is between 36000 - 60000 £ per year.
We are seeking an experienced Security Design Engineer to join an existing team on a high‐profile transformation programme. This role is ideal for someone with expertise in application architecture, application security, and network security, particularly in the protection and segmentation of application components.
You will be responsible for security design, ensuring alignment with enterprise strategy, architectural standards, and regulatory obligations. This is a hands-on role requiring strong technical credibility, exceptional communication skills, and the ability to influence stakeholders across technology and security functions.
Key Responsibilities- Deliver high‐quality security design documentation aligned to functional/non-functional requirements and enterprise architecture.
- Produce and maintain high-level designs, architecture patterns, decision records, risk logs, and design deviations.
- Ensure all solutions are architected to provide robust protection of application components, with strong consideration for network segmentation, micro-segmentation, and secure communication flows.
- Drive secure-by-design principles and provide expert consultation to engineering squads and programme teams.
- Publish and present reference architectures and technical solutions to design authorities and senior stakeholders.
- Champion architectural governance across reference architectures, HLDs, patterns, and architectural decisions.
- Present technical artefacts for approval at technical and security design authorities.
- Ensure appropriate peer review and documentation quality control.
- Identify, track, and communicate technical risks, design issues, and dependencies.
- Provide clear, actionable remediation strategies.
- Map design decisions to residual risks and articulate business/technical trade-offs.
- Hands-on experience securing modern application architectures (microservices, containerised/K8s environments, cloud-native systems).
- Strong background in application security testing (AST) including SAST, DAST, IAST, MAST, and container/K8s scanning.
- Expertise with Software Composition Analysis (SCA) tools and supply-chain security.
- Skilled in building and optimising CI/CD-integrated security pipelines (GitHub Actions, GitLab, Jenkins, Azure DevOps, etc.).
- Strong threat-modelling capability and deep understanding of secure SDLC.
- Ability to evaluate, design, and integrate enterprise AppSec platforms including SCA/AST tooling, SBOM solutions, and vulnerability workflows.
- Experience guiding engineering teams through vulnerability remediation and secure coding best practices.
- Familiarity with industry frameworks such as OWASP SAMM, ASVS, CSA, NIST SSDF, SLSA.
- A confident communicator capable of presenting deep technical content to both engineers and senior leadership.
- Someone who brings strong documentation discipline and architectural rigour.
- A collaborator with broad IT knowledge and the ability to work effectively with non-security SMEs.
- A technical leader who can represent Cyber Services at governance boards and design authorities.
- Experience in both operational and transformation security environments is highly desirable.
This is an opportunity to influence and shape security architecture across one of the UK's largest retail banks. Working on major strategic programmes, you'll have a significant platform to contribute technical leadership, improve enterprise security posture, and enable secure transformation at scale.
Contract will be for 10 months and will be inside IR35. Applicants must be able to work in the client's Edinburgh or Sheffield office 3 days per week.
Security Engineer in Edinburgh employer: I-confidential
Contact Detail:
I-confidential Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Engineer in Edinburgh
✨Tip Number 1
Network, network, network! Get out there and connect with people in the industry. Attend meetups, webinars, or even just chat with folks on LinkedIn. You never know who might have a lead on your dream Security Engineer role!
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects related to application security and network segmentation. This gives potential employers a tangible look at what you can do and sets you apart from the crowd.
✨Tip Number 3
Prepare for interviews by brushing up on your technical knowledge and soft skills. Practice explaining complex concepts in simple terms, as you'll need to communicate effectively with both engineers and senior leadership. We want you to shine!
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace Security Engineer in Edinburgh
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Security Engineer role. Highlight your experience in application architecture and security, as well as any hands-on work you've done with network segmentation and secure communication flows. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about security design and how your background makes you a perfect fit for our team. Don't forget to mention any relevant projects or achievements that showcase your expertise.
Showcase Your Communication Skills: Since this role involves presenting technical content to various stakeholders, make sure to highlight your communication skills in your application. We love candidates who can break down complex concepts into easily digestible information for both technical and non-technical audiences.
Apply Through Our Website: We encourage you to apply through our website for a smoother application process. It helps us keep track of your application and ensures you don't miss out on any important updates. Plus, it's super easy to do!
How to prepare for a job interview at I-confidential
✨Know Your Security Fundamentals
Make sure you brush up on your knowledge of application architecture, application security, and network security. Be ready to discuss how you would protect and segment application components, as this will be a key focus in the role.
✨Prepare Your Documentation Samples
Since the role involves delivering high-quality security design documentation, gather examples of your previous work. Be prepared to showcase your ability to produce clear, actionable designs and risk logs during the interview.
✨Showcase Your Communication Skills
This position requires exceptional communication skills, so practice explaining complex technical concepts in simple terms. Think about how you would present your ideas to both engineers and senior stakeholders, as this will demonstrate your ability to influence across teams.
✨Familiarise Yourself with Industry Frameworks
Get to grips with frameworks like OWASP SAMM, ASVS, and NIST SSDF. Be ready to discuss how you've applied these in past roles, as understanding these frameworks will show your depth of knowledge and commitment to security best practices.
