Security Engineer

Reports to: Head of Information Security

Location: Hybrid (Newmarket) and or UK Remote

Hours: 32 hours across a 4-day week (no salary sacrifice)

Salary: £60,000 - £70,000

Product: Group Level, Wonde, Evouchers & Secure Schools

Who we are and what is important to us:

Beyond unifies three technology-driven brands, Wonde, Evouchers and Secure Schools.

Each brand shares a vision to reduce the friction of adapting technology, to help customers navigate an often overwhelming area and provide powerful solutions that make their everyday life easier.

The three brands run independently with the autonomy to continue to prosper although as part of the Beyond team, you’ll join a wider, supportive environment where you’ll be able to pull on the expertise and capabilities of the group.

We do not limit ourselves to standing still. We look ahead and strive to disrupt the sector we operate in. We believe technology should not be complicated or overwhelming. It should do what it says - quickly, safely and efficiently.

Job snapshot:

As our Security Engineer, your expertise and insights will ensure that effective security measures are embedded within Beyond’s use of AWS and throughout the DevSecOps lifecycle. We like to empower teams to deliver security and this role is an enabler in the continuous achievement of this.

Security is the fabric of our business and at the heart of everything we do. We're big believers in the idea that security isn't just something we tack on, it's woven into the very core of our technologies, how we operate and our company culture.

With this in mind, we’re looking for a new teammate who champions a security-first environment to ensure we continuously improve our security posture.

What you’ll be doing:

• Take ownership of our vulnerability management program, including identifying, prioritising, and mitigating vulnerabilities across our systems and applications
• Offer expert guidance and direction to engineering and product teams on all security-related issues, ensuring that new business features are developed and deployed securely
• Work closely with stakeholders to clearly articulate technical and business risks associated with security decisions, ensuring that security measures align with Beyond’s objectives
• Lead security initiatives such as developing security requirements, conducting threat modelling, and implementing measures to strengthen application security and reduce vulnerabilities
• Proactively challenge existing security practices and decisions to drive continuous improvement and ensure that our security posture remains robust and up-to-date
• Coordinate assurance activities such as penetration testing, purple team testing, and application assurance to validate the effectiveness of our security controls and identify areas for improvement