Security Engineer

Security Engineer

Job Description

[Up to c. £230k Comp Package | On-Site Working]

Role Overview

We’re working with a highly regarded, London-based investment firm that is strengthening its security engineering capability as the business and technology estate continue to scale. This role sits within a small, high-impact cybersecurity function and carries genuine technical influence across the organisation. As an experienced security engineer, you’ll be responsible for engineering and evolving core security controls rather than operating tooling in isolation. The position combines architectural thinking with hands-on delivery, partnering closely with infrastructure, cloud, development, trading, and compliance teams. The focus is on building durable, well-integrated security capabilities - particularly around privileged access, cloud environments, and modern platform security - while ensuring security supports, rather than constrains, the business...

Key Responsibilities

• Own the technical direction of security engineering efforts, shaping how security controls are designed, implemented, and improved over time
• Translate security objectives into practical engineering outcomes that align with business priorities and operational realities
• Act as the senior technical authority for security engineering topics, supporting teams with design input, threat-aware decision-making, and control selection
• Lead the engineering and maturation of Privileged Access Management capabilities, covering system integration, credential handling, access workflows, and monitoring
• Design approaches that ensure privileged activity is tightly controlled, observable, and auditable across the environment
• Drive cloud security engineering across public cloud platforms, identifying weaknesses and working with delivery teams to implement effective mitigations
• Embed secure patterns across cloud workloads, including identity usage, network boundaries, encryption standards, API exposure, and data access controls
• Contribute to broader security engineering initiatives as the function evolves, such as secure software delivery, AI-related risk considerations, and data protection controls
• Support security incident handling from an engineering perspective, focusing on containment, recovery, and long-term control improvements
• Create and maintain clear technical documentation and design guidance to ensure security controls are consistent and maintainable

What You’ll Bring…

• 6-10 years of experience in security engineering roles within complex, production-grade environments
• Strong hands-on background implementing and operating Privileged Access Management solutions using enterprise tooling
• Practical experience securing cloud platforms such as Azure and/or AWS, including configuration review and control enhancement
• A solid understanding of applied security principles and frameworks, with the ability to apply them pragmatically
• Experience automating or integrating security controls using languages such as Python or PowerShell
• Confidence working alongside engineers and stakeholders across multiple disciplines, influencing outcomes through technical credibility
• An engineering-led mindset focused on scalable, repeatable security solutions rather than manual processes
• A strong academic background from a highly selective university (or international equivalent), ideally in a technical field
• (Preferred) Exposure to attacker techniques, threat modelling, or threat-informed security design
• (Preferred) Industry-recognised security certifications or equivalent demonstrable experience

...

Apply for this role

All fields marked with * are required.