FPSG
Tunbridge Wells, Kent
Security Engineer Permanent Hybrid - 2 or 3 days p/w on-site Tunbridge Wells area (Hands on recent career experience of Salesforce Industries / Vlocity is essential) FPSG have a fantastic opportunity to join a large-scale digital transformation programme aimed at uniting multiple internal business units under a new, secure, cloud-native digital platform. Ideal for a hands-on Security Engineer who enjoys embedding security into the development lifecycle and working with modern tooling and cloud environments. .Net Azure exposure desired, Salesforce Industries / Vlocity experience is essential. The successful Security Engineer's responsibilities will include: Analysing new feature code to identify and mitigate security risks Collaborating with development teams to implement secure coding practices and remediation strategies Driving improvements in security maturity frameworks such as DSOMM, including hands-on delivery (code, configuration, documentation, tooling) Designing, building, operate, monitoring secure solutions across complex platforms Ensuring internal and industry security standards (e.g. OWASP CI/CD, SAMM) are adhered to across systems Managing and improving cloud security posture (Azure Defender, Prisma Cloud etc) Implementing and optimising observability platforms for holistic system monitoring Supporting and securing software delivery lifecycle, from development to deployment and ongoing operations The successful Security Engineer's essential skills will include: Demonstrated experience in software security within cloud-first or hybrid environments (Azure preferred) A deep understanding of the Salesforce Industries aka Vlocity, with experience supporting secure integration and development Strong knowledge of networking protocols (e.g. TCP/IP, UDP, HTTP/3) and cloud network architecture (VPNs, subnets, zones) Experience with API security and integration-related platforms such as Auth0 or API Gateways Proficiency with security tools including SAST (e.g. Snyk, Checkmarx), SCA, and DAST (e.g. OpenZAP, Qualys DAST) Ability to manage secure operations of large-scale software estates, including deployment pipelines, rollback strategies, and uptime monitoring Practical experience building automated security test suites into CI/CD workflows Familiarity with security frameworks such as DSOMM, OWASP, and SAMM Suitability: This role is a technical hands-on security engineering role, it is NOT GRC focused. It would be well-suited to experienced Security Engineers or Developers with a strong security focus and interest in building secure, scalable systems in the cloud and alongside Salesforce Industries / Vlocity. Note: Demonstrable experience of Security Engineering in, on and around the Salesforce Industries / Vlocity is critical. Note: Candidates must be based in the UK. Note: On-site attendance 3 days a week is required Location: Candidates can be based (3 days a week) from multiple UK locations, Leeds, Bristol, Tunbridge Wells, Manchester, Leicester, Redhill Reward This is a great opportunity to work on a high-impact transformation within a dynamic and technology-focused environment. In addition to a hybrid working model, the role offers a competitive benefits package: Competitive annual salary (based on experience) + Annual performance-based bonus + Generous pension scheme + Life Assurance + Generous annual leave with buy/sell options + Private healthcare + Extensive Wellbeing services and employee discounts Key Technical Terms Security Engineering, Cybersecurity Engineer, Information Security Specialist, Salesforce Industries, Vlocity, Azure, OWASP CI/CD, DSOMM, SAMM, Cloud Security Posture Management, Prisma Cloud, Azure Defender, Snyk, Checkmarx, OpenZAP, Qualys, DAST, SAST, CI/CD, Infrastructure Security, Auth0, Secure APIs, Networking Protocols, DevSecOps, Secure Development, CRM Security Next Steps Please click "Apply now" and submit your up-to-date CV, including your notice period and salary expectations. We are Disability Confident and neurodiverse aware. If you have a disability, please tell us if there are any reasonable adjustments we can make to assist you in your application or with your recruitment process
Security Engineer Permanent Hybrid - 2 or 3 days p/w on-site Tunbridge Wells area (Hands on recent career experience of Salesforce Industries / Vlocity is essential) FPSG have a fantastic opportunity to join a large-scale digital transformation programme aimed at uniting multiple internal business units under a new, secure, cloud-native digital platform. Ideal for a hands-on Security Engineer who enjoys embedding security into the development lifecycle and working with modern tooling and cloud environments. .Net Azure exposure desired, Salesforce Industries / Vlocity experience is essential. The successful Security Engineer's responsibilities will include: Analysing new feature code to identify and mitigate security risks Collaborating with development teams to implement secure coding practices and remediation strategies Driving improvements in security maturity frameworks such as DSOMM, including hands-on delivery (code, configuration, documentation, tooling) Designing, building, operate, monitoring secure solutions across complex platforms Ensuring internal and industry security standards (e.g. OWASP CI/CD, SAMM) are adhered to across systems Managing and improving cloud security posture (Azure Defender, Prisma Cloud etc) Implementing and optimising observability platforms for holistic system monitoring Supporting and securing software delivery lifecycle, from development to deployment and ongoing operations The successful Security Engineer's essential skills will include: Demonstrated experience in software security within cloud-first or hybrid environments (Azure preferred) A deep understanding of the Salesforce Industries aka Vlocity, with experience supporting secure integration and development Strong knowledge of networking protocols (e.g. TCP/IP, UDP, HTTP/3) and cloud network architecture (VPNs, subnets, zones) Experience with API security and integration-related platforms such as Auth0 or API Gateways Proficiency with security tools including SAST (e.g. Snyk, Checkmarx), SCA, and DAST (e.g. OpenZAP, Qualys DAST) Ability to manage secure operations of large-scale software estates, including deployment pipelines, rollback strategies, and uptime monitoring Practical experience building automated security test suites into CI/CD workflows Familiarity with security frameworks such as DSOMM, OWASP, and SAMM Suitability: This role is a technical hands-on security engineering role, it is NOT GRC focused. It would be well-suited to experienced Security Engineers or Developers with a strong security focus and interest in building secure, scalable systems in the cloud and alongside Salesforce Industries / Vlocity. Note: Demonstrable experience of Security Engineering in, on and around the Salesforce Industries / Vlocity is critical. Note: Candidates must be based in the UK. Note: On-site attendance 3 days a week is required Location: Candidates can be based (3 days a week) from multiple UK locations, Leeds, Bristol, Tunbridge Wells, Manchester, Leicester, Redhill Reward This is a great opportunity to work on a high-impact transformation within a dynamic and technology-focused environment. In addition to a hybrid working model, the role offers a competitive benefits package: Competitive annual salary (based on experience) + Annual performance-based bonus + Generous pension scheme + Life Assurance + Generous annual leave with buy/sell options + Private healthcare + Extensive Wellbeing services and employee discounts Key Technical Terms Security Engineering, Cybersecurity Engineer, Information Security Specialist, Salesforce Industries, Vlocity, Azure, OWASP CI/CD, DSOMM, SAMM, Cloud Security Posture Management, Prisma Cloud, Azure Defender, Snyk, Checkmarx, OpenZAP, Qualys, DAST, SAST, CI/CD, Infrastructure Security, Auth0, Secure APIs, Networking Protocols, DevSecOps, Secure Development, CRM Security Next Steps Please click "Apply now" and submit your up-to-date CV, including your notice period and salary expectations. We are Disability Confident and neurodiverse aware. If you have a disability, please tell us if there are any reasonable adjustments we can make to assist you in your application or with your recruitment process
FPSG
Zscaler Design and Implementation Engineer Contract (initially 4 weeks rolling) UK based remote, (with minimal requirement for site visit) Inside IR35 (PAYE or Umbrella only) Zscaler Certification is a requirement FPSG seek an experienced Zscaler Design and Implementation Engineer. You will be a senior member of the team responsible for designing, implementing, and optimizing Zscaler AI Firewall security solutions for end customers. Expertise in Zscaler products, familiarity with AI solutions, and understanding of security operations will be critical. In the Zscaler Engineering role key responsibilities will include: Lead the design of Zscaler-based AI Firewall solutions, considering bespoke requirements, AI use cases and industry best practices. Contribute to the creation of comprehensive architecture plans and AI Firewall security policies. Coordinate the deployment and configuration of Zscaler AI Firewall (inc. policies & detections) Oversea that the Zscaler AI Firewall deployments integrate smoothly into AI implementations and provide robust security measures Troubleshoot complex issues related to Zscaler AI Firewall deployments. Address and resolve performance, connectivity, and security incidents. Driving continuously monitoring and fine-tune Zscaler configurations and policies for optimal performance. Take responsibility for Compliance and Governance. (ie HIPAA, GDPR, NIST) Contributing to detailed project documentation, including design, configuration, testing records, status & management reports. Providing guidance, mentoring and training to junior engineers. To be successful in the Zscaler Engineering role you will require demonstrable skills and experience in the following: 5+ years of hands-on experience in designing and implementing Secure Access Services Edge / SASE and Web Application Firewall /WAF solutions. Demonstrable detailed practical knowledge and understanding of relevant Zscaler implementations. Advanced knowledge of network security principles and best practices. An understanding of AI principles and architecture, including cloud computing, Kubernetes infrastructure and cloud security principles Excellent problem-solving and troubleshooting skills, with a track record of taking ownership of and resolving complex issues. Project coordination skills, with the ability to handle multiple projects simultaneously. Certification is essentioal, you MUST hold one or more of the following: ZIA & ZPA Certified Administrator ZIA & ZPA Certified Professional ZIA and ZPA delivery specialist (Strongly preferred) ZIA and ZPA support specialist Please note candidates must have the right to live and work in the UK. Some UK based travel may be required - therefore flexible candidates can be based anywhere IN THE UK Please note candidates MUST hold appropriate Zscaler certification if certification is not detailed on your resume, there will be no progression Reward: The day rate will depend on experience. An Inside of IR35 determination has been declared. The initial scope is a 4 week rolling assignment. However early indications of future tooling and tailoring will depend on the success of the initial deployment work. Key skills: Zscaler, Cybersecurity Engineer, Cybersecurity Consultant, Security Specialist, ZIA & ZPA Certified Administrator, ZIA & ZPA Certified Professional, ZIA and ZPA delivery specialist, ZIA and ZPA support specialist, ZDTA, ZDTE, ZDXA, ZCDS, ZCSS, HIPAA, GDPR, NIST, Secure Access Services Edge, SASE, Web Application Firewall, WAF, Cloud, Kubernetes, We are Disability Confident and neurodiverse aware. If you have a disability, please tell us if there are any reasonable adjustments we can make to assist you in your application or with your recruitment process
Zscaler Design and Implementation Engineer Contract (initially 4 weeks rolling) UK based remote, (with minimal requirement for site visit) Inside IR35 (PAYE or Umbrella only) Zscaler Certification is a requirement FPSG seek an experienced Zscaler Design and Implementation Engineer. You will be a senior member of the team responsible for designing, implementing, and optimizing Zscaler AI Firewall security solutions for end customers. Expertise in Zscaler products, familiarity with AI solutions, and understanding of security operations will be critical. In the Zscaler Engineering role key responsibilities will include: Lead the design of Zscaler-based AI Firewall solutions, considering bespoke requirements, AI use cases and industry best practices. Contribute to the creation of comprehensive architecture plans and AI Firewall security policies. Coordinate the deployment and configuration of Zscaler AI Firewall (inc. policies & detections) Oversea that the Zscaler AI Firewall deployments integrate smoothly into AI implementations and provide robust security measures Troubleshoot complex issues related to Zscaler AI Firewall deployments. Address and resolve performance, connectivity, and security incidents. Driving continuously monitoring and fine-tune Zscaler configurations and policies for optimal performance. Take responsibility for Compliance and Governance. (ie HIPAA, GDPR, NIST) Contributing to detailed project documentation, including design, configuration, testing records, status & management reports. Providing guidance, mentoring and training to junior engineers. To be successful in the Zscaler Engineering role you will require demonstrable skills and experience in the following: 5+ years of hands-on experience in designing and implementing Secure Access Services Edge / SASE and Web Application Firewall /WAF solutions. Demonstrable detailed practical knowledge and understanding of relevant Zscaler implementations. Advanced knowledge of network security principles and best practices. An understanding of AI principles and architecture, including cloud computing, Kubernetes infrastructure and cloud security principles Excellent problem-solving and troubleshooting skills, with a track record of taking ownership of and resolving complex issues. Project coordination skills, with the ability to handle multiple projects simultaneously. Certification is essentioal, you MUST hold one or more of the following: ZIA & ZPA Certified Administrator ZIA & ZPA Certified Professional ZIA and ZPA delivery specialist (Strongly preferred) ZIA and ZPA support specialist Please note candidates must have the right to live and work in the UK. Some UK based travel may be required - therefore flexible candidates can be based anywhere IN THE UK Please note candidates MUST hold appropriate Zscaler certification if certification is not detailed on your resume, there will be no progression Reward: The day rate will depend on experience. An Inside of IR35 determination has been declared. The initial scope is a 4 week rolling assignment. However early indications of future tooling and tailoring will depend on the success of the initial deployment work. Key skills: Zscaler, Cybersecurity Engineer, Cybersecurity Consultant, Security Specialist, ZIA & ZPA Certified Administrator, ZIA & ZPA Certified Professional, ZIA and ZPA delivery specialist, ZIA and ZPA support specialist, ZDTA, ZDTE, ZDXA, ZCDS, ZCSS, HIPAA, GDPR, NIST, Secure Access Services Edge, SASE, Web Application Firewall, WAF, Cloud, Kubernetes, We are Disability Confident and neurodiverse aware. If you have a disability, please tell us if there are any reasonable adjustments we can make to assist you in your application or with your recruitment process