Principal Security Engineer

Title: Principal Security Engineer Location: London (Office based) Contract Duration: 6 Months IR35 Status: £Inside IR35 Role Purpos eSenior hands-on Cyber Security Engineer and Security Architect responsible for ensuring secure-by-design delivery and operational security assuranc e across the programme lifecycle .Act as the primary authority for :Threat Modelling, Security Architecture, Control Validation, Security Testing, Security Assurance, Evidence Management .Responsible for validating all programme activities from :Requirements → Architecture → Design → Build → Test → Deploy → Hyper-care → BAU Handover while ensuring compliance with CIS Controls v8.1 IG 3 requirements . Essential Experien ce12+ years Cyber Security Engineering experien ce5+ years Security Architecture and Security Validation experien ceEnterprise-scale security design and implementati onStrong hands-on engineering capabili tyProven secure-by-design delivery experien ceExperience wit h:CIS Controls v8.1, NIST CSF, ISO 27001 / ISO 270 02Extensive Threat Modelling experience usin g:STRIDE, MITRE ATT&CK, OWASP methodologi esHands-o n:Penetration Testing, Security Testing, Control Validati onExperience working withi n:Agile, DevSecOps, Evidence-driven governance framewor ksExecutive stakeholder engagement experien ce Essential Technical Ski llsSecurity Architect ureEnterprise Security Architecture, Threat Modelling, Control Framework Design, Secure-by-Design Princip lesSecurity Operati onsSIEM, Endpoint Security, Vulnerability Management, Incident Respo nseSecurity Test ingPenetration Testing, Security Validation, Control Assura nceGovernance & R iskSecurity Assurance, Risk Reporting, KRI Management, External Audit Supp ortDelivery Methodolog iesAgile, Scrum, Kan banDevSecOps, SAFe PI Plann ing Essential Tools & Methodolo giesJira, Azure DevOps, MS Pro jectmonday.com, PowerPoint, Powe r BIExcel, Python, Cop ilot Essential Certifica tionsMandatory: CISSP AND One of: CISM/ CISA/ CCSP/ SABSA Practitioner/ CRISCAND One of: OSCP/ GIAC GPEN / CEH Additional Expe rienceRetail sector expe rienceLarge distributed enterprise enviro nment sSABSAOWASP Threat Dragon auth orshipMicrosoft Threat Modeling Tool exp ertisePower BI dashboard devel opmentmonday.com implementation expe rience