Experienced Security Engineer
Europe,
United Kingdom,
London
Permanent
Job ID: 2212
Job Description
[c. £160-200k Comp Package | Hybrid Working - 3 Days in Office]
Are you a hands-on (Mid-to-Senior Level) Security Engineer eager to define the future of cybersecurity within a truly serverless, cloud-first organisation? Our client, a leader in financial innovation, is driving a significant technology and security transformation. This is your opportunity to roll out cutting-edge cybersecurity capabilities, implement secure-by-design principles, and build a platform designed to set industry benchmarks. With a flat organisational structure, you’ll work directly on the tools and infrastructure that matter!
Key Responsibilities
- Design, implement, and manage security services to safeguard core systems as the organisation scales
- Roll out and administer critical cybersecurity capabilities such as identity and access management tools (e.g., SailPoint or Netskope) and web application firewalls
- Analyse threats, identify mitigation strategies, and deploy technical solutions that align with organisational goals
- Collaborate with developers to embed secure coding practices in CI/CD pipelines
- Drive a "code-first" approach, leveraging Terraform and Python to automate and optimise security processes
- Apply robust security controls to cloud-native environments (AWS, Azure) while building reusable templates and modules for consistent protection
- Use threat modelling and proactive risk management to enhance security architecture and resilience
- Maintain operational security excellence through careful change control and tool administration
Key Requirements
- 4-7 years of experience as a Security Engineer or Software Engineer, with hands-on expertise in cloud-native environments (AWS or Azure)
- Proven ability to administer and optimise tools such as Netskope, SailPoint, or similar IAM/WAF technologies
- Strong knowledge of Infrastructure as Code (Terraform preferred) and Python scripting
- Experience working with serverless architectures, event-driven systems, and secure-by-design principles
- Familiarity with threat analysis and practical implementation of mitigation strategies
- Strong communication skills, with the ability to collaborate effectively across technical and non-technical teams
- (Desired) Degree in a relevant field or certifications such as CISSP, CISM, or OSCP
...
Apply for this role
All fields marked with * are required.