Senior Security Engineer, Policy Expert
£80-110k
More information about location
2+ days a week in office
Digital home & car insurance provider
Be an early applicant
Digital home & car insurance provider
201-500 employees
Be an early applicant
£80-110k
More information about location
2+ days a week in office
201-500 employees
Company mission
To be the most successful insurance provider that people want to stay with for life. This will be achieved by creating proprietary technology that allows us to offer honest, transparent and easy to understand products.
Role
Who you are
- Proven experience delivering web application and API security improvements across an organisation
- Proficiency with DevSecOps and SDLC tooling, including SAST, DAST, SCA, ASPM and CSPM
- Hands-on experience with IAM solutions such as Auth0, or AWS Cognito
- Strong background in threat modelling and vulnerability management
- Strong background in AWS, cloud computing concepts, and cloud security best practices
Desirable
- Previous experience as a software engineer
- Experience running a security champion program
- Knowledge of security incident management and response
- Relevant certifications such as OSCP, OSWP, CISSP, AWS Security Specialty, or similar
What the job involves
- At PolicyExpert, the DevSecOps team focuses on application, cloud, and cybersecurity to ensure security is integrated throughout the software development lifecycle
- Our goal is to empower tech teams to build and deploy secure applications and platforms by embedding security best practices, automating security checks, and fostering a culture of shared responsibility
- Becoming part of the DevSecOps team means joining a high-impact, forward-thinking group dedicated to securing the business and its customers
- Team members collaborate with development, platform, IT, and Compliance teams to mitigate risks, enhance compliance, and enable faster, safer software delivery, ultimately strengthening the organisation’s competitive edge and fostering customer trust
- Lead the application and API security initiatives, ensuring robust protection mechanisms are in place
- Own and drive the Application Security Posture Management (ASPM) function
- Integrate security within the plan/design phase through threat modelling, code and architecture reviews, and by defining secure coding standards, libraries, and best practices
- Configure and manage security tooling such as ASPM, CSPM, IAM/PAM, WAF, including writing custom security rules for the CI/CD pipeline
- Collaborate with cross-functional teams to drive security improvements and embed a security-first mindset across the organisation
- Participate in first responder rota where you would be the point of contact for consulting on security queries from development team, reviewing state of security through internal or external threat intelligence, and responding to security alerts
- Perform and support internal pentesting efforts, identifying and mitigating vulnerabilities in our applications and APIs
Application process
- 15 minute Chat with someone from our Internal Talent Team
- 90 minute Technical Interview with our Lead DevSecOps Engineer
- 60 minute Culture fit interview with Tech Principal of Platform Engineering and non-technical person
Salary benchmarks
Our take
Policy Expert is a trusted insurance provider, serving more than 1 million home and car insurance customers across the UK since its launch in 2011. Policy Expert was the first insurer to be designed for aggregator sites, allowing it to capitalise on the growth of price comparison sites like Compare the Market and GoCompare.
It is a part of QMetric Group, which set out to redesign what an insurer should be, even before 'InsurTech' was a word. It has streamlined how people buy insurance by building its own tech and owning the process end to end. With a strong belief that competition and transparency are key to the future of any market, QMetric launched Policy Expert to meet the changing consumer trends over the past decade.
Since its founding, it has recorded significant year-on-year growth to become one of the UK’s ten biggest home insurance providers while diversifying its proposition by entering the motor market in 2019. Having been built on a disruptive and ground-breaking platform, this established company is well positioned to continue building a customer base within the UK whilst keeping up with consumer trends.
Freddie
Company Specialist at Welcome to the Jungle
Insights
Company
Employee endorsements
Intelligent people
"My colleagues have high attention to detail and explain their decisions and viewpoints very well. It's inspiring to work with teammates with high..."
Company benefits
- 🤒 Private medical cover with Aviva
- 🚅 Travel season ticket loan
- 🎉 Access to selected London O2 events and use of a Private Lounge
- 🏖️ 25 days holiday (excl. bank holidays)
- 🏠 50/50 hybrid working - we trust you to do your best work whether it's in the office or at home
- 💻 One off work from home equipment fund
- 💅🏻 Each year you are with us you can get an extra wellness day!
- 🥳 Social events through the year - monthly themed in office events celebrating festive holidays!
- 🦷 Private dental cover with Bupa
Company HQ
City of London, London, UK
Articles
Leadership
Adam Powell
(Co-Founder & COO)COO at Policy Expert since 2010, prior to which he was the Head of New Markets at Simply Business.
People progressing
Paul started with us as a Business Analyst back in 2019 and has been fundamental in our growth and now Policy Experts Head of Delivery.
Ezgi joined us back in 2019 in the Business Analysis team. She has excelled in her work and really contributed to building out the function. In 2023 she was promoted to Head of Business Analysis.
Diversity, Equity & Inclusion at Policy Expert
- We’re committed to creating a culture of inclusivity where every employee feels welcome, and different perspectives are valued and encouraged. We respect and value people's differences. In fact, we welcome it, as this brings a wider range of ideas, opinions and experience.
Share this job
View 11 more jobs at Policy Expert