What you'll do
- Automation of security controls, security hardening of the developer and IaC processes (building, testing, release), supply chain security (part of the build process), related metrics and monitoring/audits.
- Develop robust and secure CI/CD pipelines, and manage integrated security tooling (SAST/DAST/SCA).
- Actively contribute to addressing security findings by helping teams to create a comprehensive mitigation plans.
- Help achieving Shift Left in our software development lifecycle by closely working with our product teams.
- Organising and performing penetration testing of our products, and collaborating with external parties on those tests.
- Act as a technical security professional, providing advice and guidance to other team members.
- Contribute technical decisions to develop platform and security engineering roadmaps.
- Help cultivate a strong technical security culture across the company.
- Setup and maintain monitoring, metrics & reporting systems for our security tooling to achieve fine-grained security observability and actionable alerting.
What you'll need
- A strong technical security background
- Technical understanding of topics related to SAST, DAST, SCA, Secret Scanning, IAST, fuzzing, and SDLC hardening
- Firm capability of conducting end-to-end security assessment of an application.
- Multiple years of experience working with cloud technologies, preferably with a security focus. We work with AWS, but we understand the skills are transferable
- Strong experience in implementing and automating security best-practices
- Proficient with DevOps methodologies such as CI/CD, version control (we use GitHub) and full-stack repeatability
- Experience working with teams around the globe
- Ability to prioritise tasks and work independently
- Experience working with infrastructure as code tools such as CloudFormation, Terraform and CDK.
It would be great if you had
- Experience with AWS CodePipeline, CodeBuild, CodeDeploy, CloudFormation, SecurityHub, GuardDuty, Config, Inspector, CloudTrail and other AWS Security services
- Software development experience in either Typescript or Python
Why else you'll love it here
- Wondering what the salary for this role is? Just ask us! On a call with one of our recruiters it's something we always cover as we genuinely want to match your experience with the correct salary. The reason why we don't advertise is because we honestly have a degree of flexibility and would never want salary to be a reason why someone doesn't apply to Octopus - what's more important to us is finding the right octofit!
- Octopus Energy is a unique culture. An organisation where people learn, decide, and build quicker. Where people work with autonomy, alongside a wide range of amazing co-owners, on projects that break new ground. We want your hard work to be rewarded with perks you actually care about! We won best company to work for in 2022, on Glassdoor we were voted 50 best places to work in 2022 and our Group CEO, Greg has recorded a podcast about our culture and how we empower our people
- Visit our perks hub - Octopus Employee Benefits
Other Jobs from Octopus Energy
Senior Application Security Engineer (Remote) - KrakenFlex
Machine Learning Engineer - Utilities
Data Analyst sénior H/F
Backend Developer
Senior Data Engineer - KrakenFlex
Similar Jobs
Engineering Manager
Engineering Manager
Senior Application Security Engineer (Remote) - KrakenFlex
Software Engineer II
Senior Software Engineer
There are more than 50,000 engineering jobs:
Subscribe to membership and unlock all jobs
Engineering Jobs
60,000+ jobs from 4,500+ well-funded companies
Updated Daily
New jobs are added every day as companies post them
Refined Search
Use filters like skill, location, etc to narrow results
Become a member
🥳🥳🥳 401 happy customers and counting...
Overall, over 80% of customers chose to renew their subscriptions after the initial sign-up.
To try it out
For active job seekers
For those who are passive looking
Cancel anytime
Frequently Asked Questions
- We prioritize job seekers as our customers, unlike bigger job sites, by charging a small fee to provide them with curated access to the best companies and up-to-date jobs. This focus allows us to deliver a more personalized and effective job search experience.
- We've got about 70,000 jobs from 5,000 vetted companies. No fake or sleazy jobs here!
- We aggregate jobs from 5,000+ companies' career pages, so you can be sure that you're getting the most up-to-date and relevant jobs.
- We're the only job board *for* software engineers, *by* software engineers… in case you needed a reminder! We add thousands of new jobs daily and offer powerful search filters just for you. 🛠️
- Every single hour! We add 2,000-3,000 new jobs daily, so you'll always have fresh opportunities. 🚀
- Typically, job searches take 3-6 months. EchoJobs helps you spend more time applying and less time hunting. 🎯
- Check daily! We're always updating with new jobs. Set up job alerts for even quicker access. 📅
What Fellow Engineers Say