AppSec Jobs
← Back to all jobs

Capco

Senior / Lead Security Engineer

London, England, United KingdomWebsite

Full details on LinkedIn

The complete job description, requirements, and application details are available on the original posting.

About Capco

Capco is a global business and technology management consultancy that focuses on transformation in the financial services and energy sectors. With its operational headquarters in London, the company employs around 1,500 consultants and has 32 offices across the Americas, Europe, and Asia Pacific. Founded in 1998, Capco has evolved through several ownership changes, most recently being acquired by Wipro Limited in 2021. The firm offers a wide range of services, including management consulting, technology delivery, regulatory and compliance advisory, data and analytics, and operational strategy. Capco is known for its expertise in banking, payments, capital markets, wealth management, and insurance within the financial services industry. Additionally, it has a dedicated practice for the energy sector, covering oil and gas, utilities, and renewables. Capco serves many leading banks and financial institutions worldwide, leveraging its deep industry knowledge and technology solutions to drive client success.

Industry

financial services

Employees

6,500

548 engineers

Revenue

$1.4B

Website

Visit →

Security at Capco

Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.

3 Intel Signals

Security Philosophy

Capco's Application Security philosophy is centered on being a 'multi-faceted team focused on the evaluation, strategy definition, and execution of risk-minded solutions.' Their approach prioritizes developer enablement by ensuring 'developers received less volume but more context' and aims to 'embed security-by-design principles throughout the SDLC.' Their risk philosophy focuses on seeing 'the true risk to our business, not just a pile of findings,' with a goal to 'deliver only high-risk, contextualized issues to the right people.'

Security Team

  • Capco's cybersecurity leadership includes Jim Newman (CISO), Jamilia Parry (Global Cybersecurity Lead), and Harbir Brar (Executive Director, Cybersecurity).
  • While the exact AppSec headcount is not public, the team is described as a 'multi-faceted team' and there are at least 3 active job postings for security roles involving application and cloud security.
  • The reporting line is generally described as part of the 'Cybersecurity practice.'.

Key Initiatives

Capco's initiatives include 'aggregating and correlating findings from static, dynamic and container scanning tools' and replacing manual triage with 'Automation, tagging and campaign-based remediation flows.' They focus on 'Precision Control Over Vulnerability Management' and require engineers to 'lead vulnerability assessments, code reviews, and security audits.' There is no public evidence of a formal Security Champions program.

Preparing for an AppSec interview?

Get the weekly briefing 2,000+ security pros trust.