1,092 Software Security jobs in the United Kingdom

Paritas is partnered with a leading Energy Analytics client who are looking to add a Software Security Engineer to their Oxford based team.nCompetitive Annual Salary + Bonus on offernThis role will see you working across software engineering, modelling, and data science, bringing your security knowledge and expertise to the business. As a Security Engineer, you will enable colleagues to improve the security of software development lifecycles, ensure secure operational practices, and support compliance.nKey responsibilities at a glance

Cultivate a security culture. Work with product and engineering colleagues, be the security champion that strives to prioritize sustainable controls and drives real risk reduction outcomes.nBuild secure products. Ensure security is considered throughout the product and software development life cycle.nProvide security best practice, build security design patterns, complete security architecture reviews, threat models and risk assessments. Help solve engineering problems by implementing technical controls to mitigate risk.nProvide internal security consultancy and lead on audit engagements, risk activities and project initiatives. Work closely with colleagues to ensure effective technology risk management.nRequired qualifications, capabilities, and skills

Degree in a computer science-related subject or comparable working experience related to the role.nWorking knowledge of best practices for securing micro-service architectures.nWorking knowledge of modern secure SDLC practices with a focus on embedding security into CI/CD pipelines.nWorking experience of the above concepts in the context of at least one major public cloud provider (AWS, GCP, or Azure).nUnderstanding of global security standards (like SOC2 or ISO 27001) and regulatory requirements, and experience in maintaining compliance with these.nA desire to teach others and share knowledge. We want you to coach other team members on secure coding practices, design principles, and implementation patterns.nComfortable in uncharted waters. We are building something new. Things change quickly. We need you to learn technologies and patterns quickly.nAbility to see the long term. We don’t want you to sacrifice the future for the present.nClarity of thought. We operate quickly and efficiently, and we value people who are economical with their time and clear with their opinions.nSeniority level

Mid-Senior levelnEmployment type

Full-timenJob function

Engineering and Information TechnologynIndustries

Computer and Network SecuritynSoftware DevelopmentnEnergy Technology

#J-18808-Ljbffrn

About Mistral

At Mistral AI, we believe in the power of AI to simplify tasks, save time, and enhance learning and creativity. Our technology is designed to integrate seamlessly into daily working life.nWe democratize AI through high-performance, optimized, open-source and cutting-edge models, products and solutions. Our comprehensive AI platform is designed to meet enterprise needs, whether on-premises or in cloud environments. Our offerings include le Chat, the AI assistant for life and work.nWe are a dynamic, collaborative team passionate about AI and its potential to transform society.nOur diverse workforce thrives in competitive environments and is committed to driving innovation. Our teams are distributed between France, USA, UK, Germany and Singapore. We are creative, low-ego and team-spirited.nJoin us to be part of a pioneering company shaping the future of AI. Together, we can make a meaningful impact. See more about our culture on Summary

We are seeking a talented and experienced software engineer to join our Engineering team.nYou'll work closely with the research, product, solution and program management teams to serve our frontier models to customers wherever they use our technology.nYou will be involved in key components of our technology, including model deployment, performance optimization, real time streaming services, DX tools implementation, cloud infrastructure management.nAdditionally, you will work to evangelize the Engineering team with best practices in secure coding and architecture.nThe role is based in Paris and reports to the Head of Engineering.

What you will do

Software Engineering (80%)

New model releases: you will ensure fast and reliable launch of new models and new features to customers

System design and development: help build systems, APIs and interfaces to interact with large language models

Build and test infrastructure: you will work to improve and extend the infrastructure needed to package, deploy and integrate our core technology within first-party systems and third-party platforms

Safety: you will help solve the unique challenges that come with maintaining AI safety on third-party platforms

Observability and Monitoring: you will collaborate closely with both internal and external stakeholders to ensure our services achieve high availability and deliver state-of-the-art performance for our users

Performance and Resource Optimization: you will be responsible for identifying and solving complex system problems, with the aim to optimize the performance (latency and throughput) of multiple layers of large-scale distributed systems.

Security Focus (20%)

Security Advocacy: Act as a security advocate within the team, sharing best practices and raising awareness about secure coding principles.

Secure System Development: Design and implement robust, secure systems, ensuring that all development adheres to the highest security standards.

Code and Architecture Reviews: Conduct in-depth reviews of code and architectural designs, focusing on identifying and mitigating security vulnerabilities.

Vulnerability Management: Identify, address, and mitigate vulnerabilities in applications and systems, ensuring proactive measures are in place.

Cross-Team Collaboration: Work collaboratively across teams to provide security guidance, ensuring security considerations are integrated into development processes.

Secure Coding Practices: Write secure, maintainable code while considering the broader implications and risks of security decisions.

You may be a good fit if:

You hold a Master’s degree in Engineering or Computer Science.nYou have a proven experience as a Software Engineer with a focus on backend or fullstack development.nYou have hands-on experience working on security projects, integrating security considerations into software products or a past experience as SRE (Site Reliability Engineering).nYou have strong development skills in Python, with a track record of building and maintaining secure systems.nYou’re able to review code and system architectures with a security-first mindset, identifying risks and proposing solutions.nYou are autonomous and a self-starter.nYou are a proactive problem-solver with a continuous improvement mindset.nIdeally you have familiar familiarity with industry standards for secure software development (e.g., OWASP, ISO 27001).nExperience with vulnerability scanning tools and secure development lifecycle (SDLC) practices.

Location & Remote

This role is primarily based at our HQ in Paris, France. We will prioritize candidates who either reside in Paris or are open to relocating. We strongly believe in the value of in-person collaboration to foster strong relationships and seamless communication within our team. Our remote work policy is designed to offer flexibility, enhance work-life balance, and boost productivity. The number of remote workdays is determined by each manager, taking into account individual autonomy and specific circumstances—such as increased flexibility during the summer months. Regardless of the arrangement, we expect all employees to maintain open lines of communication with their teams and be available during core working hours.nIn certain specific situations, we will also consider remote candidates based in one of the countries listed in this job posting (currently France, UK, Germany, Netherlands, Spain and Italy). In that case, we ask all new hires to visit our Paris office:nfor the first month of their onboarding (accommodation and travelling covered)nthen at least 3 days per month

What we offer

Competitive salary and equitynHealth insurancenTransportation allowancenSport allowancenMeal vouchersnPrivate pension plannParental: Generous parental leave policynVisa sponsorship

#J-18808-Ljbffrn

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start **Caring. Connecting. Growing together.**
**About the Role:**
As a Fortune 5 business, we're one of the world's leading healthcare companies. There are no limits here on the resources you'll have or the challenges you'll encounter.
We have been supporting global healthcare systems from Ireland and the UK for more than 20 years, building a dynamic and diverse team of more than 2,100 talented individuals. With a continued record of growth and stability, we're on the constant lookout for fresh talent to join our expanding teams.
A Security Logging Engineer partners with ESRO Cyber Defense Teams to build, customize and distribute Security Log Solutions for on-prem and in the cloud systems. Work alongside the top Google SecOps engineers in the company to ensure our pipelines feeding SecOps are as efficient, reliable and cost effective as possible. ESRO Security Logging Team and ESRO Cyber-Defense teams both utilize the same workload software which produces a seamless workflow, a quicker time-to-deliver, and partnerships that offer focused value. We work with platform owners across the enterprise to provide support and education around the security events their platforms produce. We deliver world-class event pipelines tailored for each owner's platform.
_Careers with Optum offer flexible work arrangements and individuals who live and work in the Republic of Ireland will have the opportunity to split their monthly work hours between our Ireland Offices_ _and telecommuting from a home-based office in a hybrid work model._
**Primary Responsibilities of the Security Software Engineer:**
+ Design & develop log solutions technologies with a key focus on Google SecOps, BindPlane, Beats, LogStash and Kafka
+ Build, design and develop new Log Collection systems for on-prem and cloud environments, AWS, Azure & GCP
+ Build and support pipeline monitoring and alerting tools like GCP Monitoring and ECE Monitoring as needed
+ Respond and troubleshoot platform alerts and high priority incidents and on-call alert pages
+ Facilitation of Change Requests (pipeline deployments, upgrades, breakfixes etc.)
+ Create a training plan to enhance your understanding of cloud key focus technologies like Terraform and AWS Lambda serverless computing as well as other key cloud technologies for AWS, Azure and GCP
_You will be rewarded and recognised for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role, as well as providing development for other roles you may be interested in._
**Required Qualifications:**
+ Bachelor of Science Degree in Computer Science or similar OR equivalent experience
+ Proven experience working within log collection setup and development
+ Proven experience with RHEL Linux Server OS
+ Experience working with Google SecOps basic search queries
+ Experience with BindPlane, LogStash, Kafka, and GitHub Operations
+ Proficiency in Scripting/Programming with Python and Go
**Preferred Qualifications:**
+ Proven ability to work on high and low-level designing
+ Experience with Cloud Solution designs and setup for AWS, GCP and Azure
+ Excellent understanding of Amazon Kinesis Data Streams
+ Advanced Experience with RHEL Linux OS Commands
+ Advanced Experience with Go & Python Scripting/Programming
**Soft Skills:**
+ Good communication skills
+ Good problem-solving attitude
+ Ability to work independently or as a team
**Please note you must currently be eligible to work and remain indefinitely without any restrictions in the country to which you are making an application. Proof will be required to support your application.**
_All telecommuters will be required to adhere to the UnitedHealth Group's Telecommuter Policy._
_At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalised groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission._
_Diversity creates a healthier atmosphere: UnitedHealth Group is an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to disability, gender reassignment, marriage and civil partnership, pregnancy and maternity, race, religion or belief, sex, sexual orientation, or any other characteristic protected by law. UnitedHealth Group is a drug-free workplace. © 2025 UnitedHealth Group. All rights reserved._
#RPO #BBMEMEA

Optum is a global organisation that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start **Caring. Connecting. Growing together.**
A Security Logging Engineer partners with ESRO Cyber Defense Teams to build, customize and distribute Security Log Solutions for on-prem and in the cloud systems. Work alongside the top Google SecOps engineers in the company to ensure our pipelines feeding SecOps are as efficient, reliable and cost effective as possible. ESRO Security Logging Team and ESRO Cyber-Defense teams both utilize the same workload software which produces a seamless workflow, a quicker time-to-deliver, and partnerships that offer focused value. We work with platform owners across the enterprise to provide support and education around the security events their platforms produce. We deliver world-class event pipelines tailored for each owner's platform.
_Careers with Optum offer flexible work arrangements and individuals who live and work in the Republic of Ireland will have the opportunity to split their monthly work hours between our London office_ _and telecommuting from a home-based office in a hybrid work model._
**Primary Responsibilities:**
+ Design & develop log solutions technologies with a key focus on Google SecOps, BindPlane, Beats, LogStash and Kafka
+ Build, design and develop new Log Collection systems for on-prem and cloud environments, AWS, Azure & GCP
+ Build and support pipeline monitoring and alerting tools like GCP Monitoring and ECE Monitoring as needed
+ Respond and troubleshoot platform alerts and high priority incidents and on-call alert pages
+ Facilitation of Change Requests (pipeline deployments, upgrades, breakfixes etc.)
+ Create a training plan to enhance your understanding of cloud key focus technologies like Terraform and AWS Lambda serverless computing as well as other key cloud technologies for AWS, Azure and GCP
_You will be rewarded and recognised for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role, as well as providing development for other roles you may be interested in_
**Required Qualifications:**
+ Bachelor's in Computer Science or similar. or equivalent experience
+ Proven experience working within log collection setup and development
+ Proven experience with RHEL Linux Server OS
+ Experience working with Google SecOps basic search queries
+ Experience with BindPlane, LogStash, Kafka, and GitHub Operations
+ Proficiency in Scripting/Programming with Python and Go
**Preferred Qualifications:**
+ Proven ability to work on high and low-level designing
+ Experience with Cloud Solution designs and setup for AWS, GCP and Azure
+ Excellent understanding of Amazon Kinesis Data Streams
+ Advanced Experience with RHEL Linux OS Commands
+ Advanced Experience with Go & Python Scripting/Programming
**Soft Skills:**
+ Proven good communications skills
+ Proven good problem-solving attitude
+ Proven ability to work independently or as a team
**Please note you must currently be eligible to work and remain indefinitely without any restrictions in the country to which you are making an application. Proof will be required to support your application.**
_All telecommuters will be required to adhere to the UnitedHealth Group's Telecommuter Policy._
_At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically_ _marginalised_ _groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission._
_Diversity creates a healthier atmosphere: UnitedHealth Group is an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to disability, gender reassignment, marriage and civil partnership, pregnancy and maternity, race, religion or belief, sex, sexual orientation, or any other characteristic protected by law. UnitedHealth Group is a drug-free workplace. © 2025 UnitedHealth Group. All rights reserved._
#RPO #BBMEMEA

Overview

Join to apply for the

Senior Security Software Engineer

role at

UnitedHealth Group .nOptum is a global organisation that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start Caring. Connecting. Growing together.nA Security Logging Engineer partners with ESRO Cyber Defense Teams to build, customize and distribute Security Log Solutions for on-prem and in the cloud systems. Work alongside the top Google SecOps engineers in the company to ensure our pipelines feeding SecOps are as efficient, reliable and cost effective as possible. ESRO Security Logging Team and ESRO Cyber-Defense teams both utilize the same workload software which produces a seamless workflow, a quicker time-to-deliver, and partnerships that offer focused value. We work with platform owners across the enterprise to provide support and education around the security events their platforms produce. We deliver world-class event pipelines tailored for each owner's platform.nCareers with Optum offer flexible work arrangements and individuals who live and work in the Republic of Ireland will have the opportunity to split their monthly work hours between our London office and telecommuting from a home-based office in a hybrid work model.

Primary Responsibilities

Design & develop log solutions technologies with a key focus on Google SecOps, BindPlane, Beats, LogStash and Kafka

Build, design and develop new Log Collection systems for on-prem and cloud environments, AWS, Azure & GCP

Build and support pipeline monitoring and alerting tools like GCP Monitoring and ECE Monitoring as needed

Respond and troubleshoot platform alerts and on-call high-priority incidents

Facilitation of Change Requests (pipeline deployments, upgrades, breakfixes etc.)

Create a training plan to enhance understanding of cloud technologies like Terraform and AWS Lambda serverless computing as well as other key cloud technologies for AWS, Azure and GCP

Required Qualifications

Bachelor's in Computer Science or similar, or equivalent experience

Proven experience working within log collection setup and development

Proven experience with RHEL Linux Server OS

Experience working with Google SecOps basic search queries

Experience with BindPlane, LogStash, Kafka, and GitHub Operations

Proficiency in scripting/programming with Python and Go

Preferred Qualifications

Proven ability to work on high and low-level designing

Experience with Cloud Solution designs and setup for AWS, GCP and Azure

Excellent understanding of Amazon Kinesis Data Streams

Advanced experience with RHEL Linux OS commands

Advanced experience with Go & Python scripting/programming

Soft Skills

Proven good communications skills

Proven good problem-solving attitude

Proven ability to work independently or as a team

Please note you must currently be eligible to work and remain indefinitely without any restrictions in the country to which you are making an application. Proof will be required to support your application.

All telecommuters will be required to adhere to the UnitedHealth Group’s Telecommuter Policy.

At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone—of every race, gender, sexuality, age, location and income—deserves the opportunity to live their healthiest life. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes — an enterprise priority reflected in our mission.

Diversity creates a healthier atmosphere: UnitedHealth Group is an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to disability, gender reassignment, marriage and civil partnership, pregnancy and maternity, race, religion or belief, sex, sexual orientation, or any other characteristic protected by law. UnitedHealth Group is a drug-free workplace.

2025 UnitedHealth Group. All rights reserved.

#J-18808-Ljbffrn

Overview

Job DescriptionnOptum is a global organisation that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by and , talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start

Caring. Connecting. Growing together.nA Security Logging Engineer partners with ESRO Cyber Defense Teams to build, customize and distribute Security Log Solutions for on-prem and in the cloud systems. Work alongside the top Google SecOps engineers in the company to ensure our pipelines feeding SecOps are as efficient, reliable and cost effective as possible. ESRO Security Logging Team and ESRO Cyber-Defense teams both utilize the same workload software which produces a seamless workflow, a quicker time-to-deliver, and partnerships that offer focused value. We work with platform owners across the enterprise to provide support and education around the security events their platforms produce. We deliver world-class event pipelines tailored for each owner's platform.

Primary Responsibilities

Design & develop log solutions technologies with a key focus on Google SecOps, BindPlane, Beats, LogStash and KafkanBuild, design and develop new Log Collection systems for on-prem and cloud environments, AWS, Azure & GCPnBuild and support pipeline monitoring and alerting tools like GCP Monitoring and ECE Monitoring as needednRespond and troubleshoot platform alerts and on-call high priority incidentsnFacilitation of Change Requests (pipeline deployments, upgrades, breakfixes etc.)nCreate a training plan to enhance understanding of cloud key technologies like Terraform and AWS Lambda serverless computing as well as other key cloud technologies for AWS, Azure and GCP

You will be rewarded and recognised for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role, as well as providing development for other roles you may be interested in

Required Qualifications

Bachelor's in Computer Science or similar, or equivalent experiencenProven experience working within log collection setup and developmentnProven experience with RHEL Linux Server OSnExperience working with Google SecOps basic search queriesnExperience with BindPlane, LogStash, Kafka, and GitHub OperationsnProficiency in Scripting/Programming with Python and Go

Qualifications

Proven ability to work on high and low-level designingnExperience with Cloud Solution designs and setup for AWS, GCP and AzurenExcellent understanding of Amazon Kinesis Data StreamsnAdvanced Experience with RHEL Linux OS CommandsnAdvanced Experience with Go & Python Scripting/Programming

Soft Skills

Proven good communications skillsnProven good problem-solving attitudenProven ability to work independently or as a team

Please note you must currently be eligible to work and remain indefinitely without any restrictions in the country to which you are making an application. Proof will be required to support your application.

All telecommuters will be required to adhere to the UnitedHealth Group’s Telecommuter Policy.

At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone—of every background, sexuality, location and income—deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalised groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes — an enterprise priority reflected in our mission.

Creates a healthier atmosphere: UnitedHealth Group is an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to race, religion, sex, national origin, disability, or age. UnitedHealth Group is a drug-free workplace. 2025 UnitedHealth Group. All rights reserved.

#RPO #BBMEMEA

#J-18808-Ljbffrn

**Application Security Architect (Software)**
**Location: Europe-Based** (Office/ Hybrid/Home)
**Position Summary:**
We are seeking a visionary **Application Security Architect** to elevate our software security strategy across a global portfolio of cutting-edge products. As a key member of our Product Security team, you'll define and drive secure architecture practices, influence engineering decisions, and help shape the future of secure software development.
This is a high-impact role where your expertise will directly contribute to protecting mission-critical infrastructure software used worldwide. You'll collaborate with talented engineers across Europe and beyond, working with modern technologies like Azure, Kubernetes, Electron, and a wide range of programming languages.
If you're passionate about building secure systems, influencing technical direction, and mentoring others, this is your opportunity to make a lasting impact.
**Responsibilities** :
+ **Lead the adoption and evolution of Secure Software Development Lifecycle (SSDLC)** practices and standards across teams and projects.
+ Conduct **security architecture and design reviews** to ensure robust protection of applications and systems.
+ Drive and mature **threat modeling** practices across the organization, identifying and mitigating risks early in the development process.
+ Collaborate with empowered, cross-functional teams to embed security into the **design, development, implementation, and verification** of software.
+ Provide clear, actionable **remediation guidance** to developers and system administrators.
+ Support stakeholders in making **informed, risk-based decisions** that balance technical and business priorities.
+ Deliver **training sessions and educational content** to upskill developers and promote a security-first mindset.
+ Build and maintain **tools and automation** that enhance security workflows and reduce manual effort.
**Qualifications** :
+ Approximately **7+ years of experience in software** , with **4+ years focused on Application Security Architecture** .
+ Strong proficiency in **securing cloud environments** , ideally with hands-on experience in Azure.
+ Proven expertise in **threat modeling** complex software systems.
+ Solid foundation in **software development** , with the ability to read, write, and audit code across multiple languages.
+ Deep understanding of **OWASP Top 10** , **SANS Top 25** , and common security vulnerabilities.
+ Experience with **containerization and orchestration tools** such as **Kubernetes, Docker, and Istio** .
+ Ability to **deconstruct complex systems** to identify potential threats and weaknesses.
+ Exceptional communication skills-able to clearly articulate technical risks to developers, engineers, administrators, and leadership.
+ Demonstrated ability to **learn quickly** , research new topics, and adapt to evolving technologies.
+ Strong problem-solving skills and a proactive approach to tackling security challenges.
+ Ability to make **balanced, unbiased decisions** that consider both technical risks and business impact.
**Bonus Skills That Set You Apart:**
+ Knowledge of **OAuth 2.0 / OpenID Connect** and modern authentication protocols.
+ Familiarity with **web technologies** including **JavaScript, HTML5, HTTP, REST** , and related protocols.
+ Proficiency in one or more programming languages/platforms such as **.NET Core, Node.js, C#, Java, TypeScript, C/C++** .
+ Certifications such as **CISSP** or **CCSP** are a strong plus.
**What We Offer:**
+ A great Team and culture - please see our colleague video .
+ An exciting career as an integral part of a world-leading software company providing solutions for architecture, engineering, and construction - watch this short documentary about how we got our start.
+ An attractive salary and benefits package.
+ A commitment to inclusion, belonging, and colleague wellbeing through global initiatives and resource groups.
+ A company committed to making a real difference by advancing the world's infrastructure for a better quality of life, where your contributions help build a more sustainable, connected, and resilient world. Discover our latest user success stories for an insight into our global impact.

**About Bentley Systems**
Around the world, infrastructure professionals rely on software from Bentley Systems to help them design, build, and operate better and more resilient infrastructure for transportation, water, energy, cities, and more. Founded in 1984 by engineers for engineers, Bentley is the partner of choice for engineering firms and owner-operators worldwide, with software that spans engineering disciplines, industry sectors, and all phases of the infrastructure lifecycle. Through our digital twin solutions, we help infrastructure professionals unlock the value of their data to transform project delivery and asset performance. Opportunity Employer:**
Bentley is proud to be an equal opportunity employer and considers for employment all qualified applicants without regard to race, color, gender/gender identity, sexual orientation, disability, marital status, religion/belief, national origin, caste, age, or any other characteristic protected by local law or unrelated to job qualifications.
**#LI-VP**
**#LI-Remote**
**#LI-Hybrid**
Equal Opportunity Employer/Minorities/Females/Veterans/Disabled

Application Security Architect (Software)

Location: Europe-Based

(Office/ Hybrid/Home)

Position Summary:

We are seeking a visionary

Application Security Architect

to elevate our software security strategy across a global portfolio of cutting-edge products. As a key member of our Product Security team, you'll define and drive secure architecture practices, influence engineering decisions, and help shape the future of secure software development.

This is a high-impact role where your expertise will directly contribute to protecting mission-critical infrastructure software used worldwide. You'll collaborate with talented engineers across Europe and beyond, working with modern technologies like Azure, Kubernetes, Electron, and a wide range of programming languages.

If you're passionate about building secure systems, influencing technical direction, and mentoring others-this is your opportunity to make a lasting impact.

Responsibilities :nLead the adoption and evolution of Secure Software Development Lifecycle (SSDLC)

practices and standards across teams and projects.nConduct

security architecture and design reviews

to ensure robust protection of applications and systems.nDrive and mature

threat modeling

practices across the organization, identifying and mitigating risks early in the development process.nCollaborate with empowered, cross-functional teams to embed security into the

design, development, implementation, and verification

of software.nProvide clear, actionable

remediation guidance

to developers and system administrators.nSupport stakeholders in making

informed, risk-based decisions

that balance technical and business priorities.nDeliver

training sessions and educational content

to upskill developers and promote a security-first mindset.nBuild and maintain

tools and automation

that enhance security workflows and reduce manual effort.

Qualifications :nApproximately

7+ years of experience in software , with

4+ years focused on Application Security Architecture .nStrong proficiency in

securing cloud environments , ideally with hands-on experience in Azure.nProven expertise in

threat modeling

complex software systems.nSolid foundation in

software development , with the ability to read, write, and audit code across multiple languages.nDeep understanding of

OWASP Top 10 ,

SANS Top 25 , and common security vulnerabilities.nExperience with

containerization and orchestration tools

such as

Kubernetes, Docker, and Istio .nAbility to

deconstruct complex systems

to identify potential threats and weaknesses.nExceptional communication skills-able to clearly articulate technical risks to developers, engineers, administrators, and leadership.nDemonstrated ability to

learn quickly , research new topics, and adapt to evolving technologies.nStrong problem-solving skills and a proactive approach to tackling security challenges.nAbility to make

balanced, unbiased decisions

that consider both technical risks and business impact.

Bonus Skills That Set You Apart:nKnowledge of

OAuth 2.0 / OpenID Connect

and modern authentication protocols.nFamiliarity with

web technologies

including

JavaScript, HTML5, HTTP, REST , and related protocols.nProficiency in one or more programming languages/platforms such as

.NET Core, Node.js, C#, Java, TypeScript, C/C++ .nCertifications such as

CISSP

or

CCSP

are a strong plus.

What We Offer:

A great Team and culture - please see our colleague video.nAn exciting career as an integral part of a world-leading software company providing solutions for architecture, engineering, and construction - watch this short documentary about how we got our start.nAn attractive salary and benefits package.nA commitment to inclusion, belonging, and colleague wellbeing through global initiatives and resource groups.nA company committed to making a real difference by advancing the world's infrastructure for a better quality of life, where your contributions help build a more sustainable, connected, and resilient world. Discover our latest user success stories for an insight into our global impact.

About Bentley Systems

Around the world, infrastructure professionals rely on software from Bentley Systems to help them design, build, and operate better and more resilient infrastructure for transportation, water, energy, cities, and more. Founded in 1984 by engineers for engineers, Bentley is the partner of choice for engineering firms and owner-operators worldwide, with software that spans engineering disciplines, industry sectors, and all phases of the infrastructure lifecycle. Through our digital twin solutions, we help infrastructure professionals unlock the value of their data to transform project delivery and asset performance. Opportunity Employer:

Bentley is proud to be an equal opportunity employer and considers for employment all qualified applicants without regard to race, color, gender/gender identity, sexual orientation, disability, marital status, religion/belief, national origin, caste, age, or any other characteristic protected by local law or unrelated to job qualifications.

#LI-VP

#LI-Remote

#LI-Hybridn#J-18808-Ljbffrn