Experienced Security Engineer

Europe, United Kingdom, London
Permanent
Job ID: 2212

Job Description

[c. £160-200k Comp Package | Hybrid Working - 3 Days in Office]

Are you a hands-on (Mid-to-Senior Level) Security Engineer eager to define the future of cybersecurity within a truly serverless, cloud-first organisation? Our client, a leader in financial innovation, is driving a significant technology and security transformation. This is your opportunity to roll out cutting-edge cybersecurity capabilities, implement secure-by-design principles, and build a platform designed to set industry benchmarks. With a flat organisational structure, you’ll work directly on the tools and infrastructure that matter!


Key Responsibilities

  • Design, implement, and manage security services to safeguard core systems as the organisation scales
  • Roll out and administer critical cybersecurity capabilities such as identity and access management tools (e.g., SailPoint or Netskope) and web application firewalls
  • Analyse threats, identify mitigation strategies, and deploy technical solutions that align with organisational goals
  • Collaborate with developers to embed secure coding practices in CI/CD pipelines
  • Drive a "code-first" approach, leveraging Terraform and Python to automate and optimise security processes
  • Apply robust security controls to cloud-native environments (AWS, Azure) while building reusable templates and modules for consistent protection
  • Use threat modelling and proactive risk management to enhance security architecture and resilience
  • Maintain operational security excellence through careful change control and tool administration


Key Requirements

  • 4-7 years of experience as a Security Engineer or Software Engineer, with hands-on expertise in cloud-native environments (AWS or Azure)
  • Proven ability to administer and optimise tools such as Netskope, SailPoint, or similar IAM/WAF technologies
  • Strong knowledge of Infrastructure as Code (Terraform preferred) and Python scripting
  • Experience working with serverless architectures, event-driven systems, and secure-by-design principles
  • Familiarity with threat analysis and practical implementation of mitigation strategies
  • Strong communication skills, with the ability to collaborate effectively across technical and non-technical teams
  • (Desired) Degree in a relevant field or certifications such as CISSP, CISM, or OSCP


...


Apply for this role

All fields marked with * are required.

I confirm I have a pre-existing Right to Work in this location *

Back to Job Listings