Security Engineer (Product Security) at Gallup, Inc-Usa
London, England, United Kingdom -
Full Time


Start Date

Immediate

Expiry Date

03 May, 26

Salary

0.0

Posted On

02 Feb, 26

Experience

2 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

No

Skills

Security Engineering, Penetration Testing, Secure Coding, Static Code Analysis, Software Composition Analysis, AWS, SaaS Applications, Mobile Applications, Web Applications, API Security, Programming, Scripting, Open-Source Security, Incident Response, Risk Assessment, Collaboration

Industry

Business Consulting and Services

Description
Anticipate attacks, outsmart threats and safeguard innovation. Gallup is seeking a Security Engineer (Product Security) who thrives at the intersection of engineering and security. You’ll apply deep offensive security expertise to test Gallup’s products and collaborate with developers to turn findings into secure, resilient applications. This role offers the autonomy to innovate, the responsibility to safeguard critical systems and the opportunity to leave a lasting impact on how security scales across Gallup. What You’ll Do Review and advise on secure architecture and design for SaaS applications built and hosted in AWS Perform penetration testing across web, mobile and API applications to identify and validate security vulnerabilities Partner with engineering teams to incorporate security into applications from the start through secure coding guidance, reviews and awareness Use static code analysis and code reviews to augment penetration testing and uncover vulnerabilities earlier in the development process Secure open-source and third-party components through software composition analysis (SCA) and package management best practices What Makes You Stand Out Clear communication: You turn complex risks into clear, actionable guidance. Self-starter mindset: You thrive working independently while knowing when to pull in others. Impactful speed: You move quickly without cutting corners, ensuring durable results. Adaptive focus: You stay effective across shifting priorities and varied demands. Calm under pressure: In urgent incidents, you bring clarity and steadiness. Persistence and precision: You solve tough security challenges with practical, scalable solutions. What You Need Bachelor’s degree in cybersecurity, information assurance, computer science or a related field required At least two years of experience in enterprise application security engineering required Demonstrated deep expertise in mobile, web and API penetration testing required Hands-on experience with secure SaaS (web, API, mobile) design required Proficiency with SAST and code reviews required Strong programming or scripting skills in at least one language (e.g., Python, JavaScript, C#, Java) required Expertise in securing software supply chains and managing open-source dependencies through effective SCA practices preferred Certifications such as OSWE, OSCP, GWAPT and GXPN preferred A commitment to working on-site at Gallup’s London office at least three days a week required Eligibility to work in the United Kingdom; this position is not eligible for employment visa sponsorship About Gallup At Gallup, we change the world, one client at a time, through extraordinary analytics and advice on everything important facing humankind. Gallup offers a robust benefits package that includes competitive pay; medical, dental, vision, life and other insurance options; a pension; an employee stock ownership program; mass transit reimbursement; a cycle-to-work scheme; family-building benefits; an employee assistance program; and various reimbursements and activities that enhance our associates’ wellbeing. Gallup is an equal opportunity employer. Employment decisions are based on qualifications and business needs. We value diversity and are committed to an inclusive workplace. To review Gallup’s Privacy Statement, please click this link: https://www.gallup.com/privacy. This privacy policy is meant to help you understand what information we collect, why we collect it, and how you can update, manage and delete your information. Your application and the information you provide will be processed and stored in the United States. Agencies: We are not partnering with agencies for this role, nor will we accept unsolicited résumés or be responsible for any fees or expenses related to such unsolicited résumés and/or applicants. #LI-Hybrid #LI-TF1 1

How To Apply:

Incase you would like to apply to this job directly from the source, please click here

Responsibilities
The Security Engineer will review and advise on secure architecture for SaaS applications, perform penetration testing, and collaborate with engineering teams to incorporate security from the start. They will also secure open-source and third-party components through software composition analysis.
Loading...