Security Engineer – London

Ovo

To apply for this job please visit careers.ovo.com.

The OVO Group’s mission is to drive progress towards net zero carbon living. We’re a collection of companies with a single vision: to power human progress with clean affordable energy for everyone.

The climate crisis is humanity’s greatest challenge and the OVO Group organisations are all working together to lower our collective carbon emissions to zero. Would you be interested in joining us to help achieve this?

Where in the world of OVO will I be working?

You will be joining the Orion Security Engineering team whose purpose is to ensure OVO’s greenfield Energy Platform is secure for all our customers while enabling our product teams to ship awesome features.

This is a varied role where you’ll be exposed to the full stack and will work across technologies including GCP, AWS, Kubernetes and Kafka. You’ll be focusing on projects spanning infrastructure, release engineering and security monitoring.

As part of the Security Engineering team we want to create solutions and insights that will allow us to meet a very high security calibre, while maintaining a fast delivery pace expected in a modern software system. We believe this happens through tight collaboration between Security Engineering and Software Engineering. You will have a strong focus on building relationships across various teams, including design feedback and coaching but most importantly building security improvements in our products.

What will I be doing?

You will be building tools and fostering our security culture to help OVO’s product teams rapidly deliver secure systems. Providing those teams with clear actionable advice on what risks and threats they have to their systems. You will also be responsible for defining and evolving security best practices for our greenfield system. Helping teams take action on those practices through your expert training or automation will be key to your success.

Is this the job for me?

We are looking for excellent security engineers and whilst experience is important, ultimately less so than your demonstrated abilities and attitude.

The following skills and experience would be beneficial:

  • Knowledge and experience in secure software practices
  • Scripting and software engineering skills; we don’t mind what language! (Python, Scala, Clojure, Java etc.)
  • Awareness of common software security flaws and web application security best practices (OWASP top 10, CWE/SANS Top 25)
  • Code static analysis
  • AWS/GCP security best practices
  • Container vulnerability scanning
  • Open Source dependency scanning
  • Web application firewalls
  • Logging, monitoring and alerting on security incidents
  • Thorough knowledge of CI/CD and DevOps principles

Additional skills

  • An inquisitive and curious approach, with confidence to tackle difficult problems
  • Rapid adoptee of merit-proven new approaches & technologies
  • Problem solver / structured thinker
  • Always happy to help and a natural sharer of knowledge

Want to check out more?

Working in Tech at OVO Energy

See how we work on our blog and our Tech Blog

OVO tech github: https://github.com/ovotech

OVO believes in fueling human progress with clean and abundant energy for all. We were set up to always find a better way and challenge the status quo.

We’re keen to meet people with varied backgrounds: the more inclusive we are the better our work will be. We want to build a team which represents a variety of backgrounds, perspectives, and skills, and we decide employment on the basis of merit and potential.

We understand some people may not apply to jobs unless they tick every box. If you’re excited about joining us and think you have much of what we’re looking for, even if you’re not 100% sure… we’d love to hear from you.

 

Click here for an update from the Talent Acquisition team on how we are hiring during Covid19

Please mention For Purpose Jobs in your application.