Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Design and implement robust security solutions for modern applications and networks.
- Company: Join a leading UK retail bank focused on secure transformation.
- Benefits: Competitive pay, hands-on experience, and the chance to shape security architecture.
- Why this job: Make a real impact on enterprise security and influence major strategic programmes.
- Qualifications: Experience in application and network security, with strong communication skills.
- Other info: Work in a dynamic environment with opportunities for professional growth.
The predicted salary is between 36000 - 60000 £ per year.
We are seeking an experienced Security Design Engineer to join an existing team on a high‑profile transformation programme. This role is ideal for someone with expertise in application architecture, application security, and network security, particularly in the protection and segmentation of application components.
You will be responsible for security design, ensuring alignment with enterprise strategy, architectural standards, and regulatory obligations. This is a hands-on role requiring strong technical credibility, exceptional communication skills, and the ability to influence stakeholders across technology and security functions.
Key Responsibilities- Deliver high‑quality security design documentation aligned to functional/non-functional requirements and enterprise architecture.
- Produce and maintain high-level designs, architecture patterns, decision records, risk logs, and design deviations.
- Ensure all solutions are architected to provide robust protection of application components, with strong consideration for network segmentation, micro-segmentation, and secure communication flows.
- Drive secure-by-design principles and provide expert consultation to engineering squads and programme teams.
- Publish and present reference architectures and technical solutions to design authorities and senior stakeholders.
- Champion architectural governance across reference architectures, HLDs, patterns, and architectural decisions.
- Present technical artefacts for approval at technical and security design authorities.
- Ensure appropriate peer review and documentation quality control.
- Identify, track, and communicate technical risks, design issues, and dependencies.
- Provide clear, actionable remediation strategies.
- Map design decisions to residual risks and articulate business/technical trade-offs.
- Hands-on experience securing modern application architectures (microservices, containerised/K8s environments, cloud-native systems).
- Strong background in application security testing (AST) including SAST, DAST, IAST, MAST, and container/K8s scanning.
- Expertise with Software Composition Analysis (SCA) tools and supply-chain security.
- Skilled in building and optimising CI/CD-integrated security pipelines (GitHub Actions, GitLab, Jenkins, Azure DevOps, etc.).
- Strong threat-modelling capability and deep understanding of secure SDLC.
- Ability to evaluate, design, and integrate enterprise AppSec platforms including SCA/AST tooling, SBOM solutions, and vulnerability workflows.
- Experience guiding engineering teams through vulnerability remediation and secure coding best practices.
- Familiarity with industry frameworks such as OWASP SAMM, ASVS, CSA, NIST SSDF, SLSA.
- A confident communicator capable of presenting deep technical content to both engineers and senior leadership.
- Someone who brings strong documentation discipline and architectural rigour.
- A collaborator with broad IT knowledge and the ability to work effectively with non-security SMEs.
- A technical leader who can represent Cyber Services at governance boards and design authorities.
- Experience in both operational and transformation security environments is highly desirable.
This is an opportunity to influence and shape security architecture across one of the UK's largest retail banks. Working on major strategic programmes, you’ll have a significant platform to contribute technical leadership, improve enterprise security posture, and enable secure transformation at scale.
Contract will be for 10 months and will be inside IR35. Applicants must be able to work in the client's Edinburgh or Sheffield office 3 days per week.
Security Engineer employer: I-confidential
Contact Detail:
I-confidential Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Engineer
✨Tip Number 1
Network, network, network! Get out there and connect with people in the industry. Attend meetups, webinars, or even just chat with folks on LinkedIn. You never know who might have a lead on your dream Security Engineer role!
✨Tip Number 2
Show off your skills! Create a portfolio that highlights your security design projects, especially those involving application architecture and network security. This will give potential employers a taste of what you can bring to the table.
✨Tip Number 3
Prepare for interviews like a pro! Research common questions for Security Engineers and practice your responses. Be ready to discuss your experience with application security testing and secure coding best practices.
✨Tip Number 4
Don’t forget to apply through our website! We’ve got loads of opportunities waiting for you, and applying directly can sometimes give you an edge. Plus, it’s super easy to keep track of your applications!
We think you need these skills to ace Security Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Security Engineer role. Highlight your experience in application architecture and security, and don’t forget to mention any hands-on work with microservices or cloud-native systems. We want to see how your skills align with what we’re looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you’re passionate about security design and how your background makes you a perfect fit for our team. Be sure to mention specific projects or experiences that relate to the job description.
Showcase Your Communication Skills: Since this role requires exceptional communication skills, make sure your application reflects that. Use clear and concise language, and if you have examples of presenting technical content to non-technical audiences, include them. We love a good storyteller!
Apply Through Our Website: Don’t forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re keen on joining our team at StudySmarter!
How to prepare for a job interview at I-confidential
✨Know Your Security Fundamentals
Make sure you brush up on your knowledge of application architecture, application security, and network security. Be ready to discuss how you would protect and segment application components, as this is crucial for the role.
✨Prepare Your Documentation Samples
Since the role involves delivering high-quality security design documentation, gather examples of your previous work. Be prepared to discuss your approach to creating architecture patterns, risk logs, and design deviations during the interview.
✨Showcase Your Communication Skills
This position requires exceptional communication skills, so practice explaining complex technical concepts in simple terms. Think about how you would present your designs to both technical teams and senior stakeholders.
✨Familiarise Yourself with Industry Frameworks
Get to know frameworks like OWASP SAMM, ASVS, and NIST SSDF. Be ready to discuss how you've applied these in past projects, as understanding these frameworks will demonstrate your expertise and alignment with the company's needs.
