Contact us Request demo

View navigation

Careers

Back to all vacancies

Application Security Engineer (DevSecOps)

Location

Milton Keynes / Canterbury / Home based 

Overview

We are a software development company that provides solutions to the healthcare IT market and we are seeking a talented and experienced Application Security Engineer to join our Architecture team.

The person we are looking for will need to have strong commercial development & cloud experience, who can demonstrate a real passion for security within cloud architecture and code, with a flexible and creative attitude, good communication skills and a strong work ethic.

Working within the existing Architecture team (comprising of Dev & DevOps functions) and alongside the Security team, the individual will have a diverse workload covering (but not limited to):

  • Define code & infrastructure security best practices
  • Educating developers on secure coding
  • Ensuring adherence to best practices and management of associated tooling (eg SonarQube)
  • Keeping up to date with emerging threats/vulnerabilities and providing guidance/fixes to keep our systems secure
  • Perform regular internal security assessments
  • Collaborate with external security monitoring and penetration testing companies

Personal Attributes: 

  • Able to work well as an individual and as part of a team
  • Take part in architectural discussions with technical / non-technical team members
  • Able to self-manage and self-motivate
  • An eye for detail and a desire to adhere to best practices
  • Strong inter-personal and communication skills
  • Able to work under pressure
  • Have a desire to keep up with the latest tools and techniques

Experience & Skills Required: 

  • A thorough understanding of .NET, with a particular focus on security
  • A thorough understanding of Azure components. Key areas:
    • AKS
    • App Services
    • Functions
    • Networking
    • App Insights
    • Security Centre + Sentinel
    • API Management
  • Good understanding of Terraform, HELM & Powershell
  • Configuration and integration of code analysis tools (eg SonarQube)
  • Configuration of infrastructure static analysis and scanning tools (eg Qualys)

Advantageous:

  • Healthcare or Government related industry experience/knowledge
  • Understanding of JIRA and Confluence
  • Experience with ISO9001, ISO27001 and ISO27018 standards
  • Ethical hacking experience

Qualifications

  • Degree in IT, Computer Science or related discipline
  • Microsoft Azure certification(s) advantageous

Applications

Please apply in writing, sending a covering letter & CV to hrrecruitment@systemc.com

Graphnet Health uses cookies to ensure that we give you the best experience on our website. For optimal performance please accept cookies. For more information please visit our cookies policy.

Accept and continue|Manage settings