Senior Security Engineer

Abound is changing how consumer lending works in the UK and beyond. By combining advanced AI with Open Banking data, the company looks at a person’s complete financial situation, not just a credit score, to make lending decisions that are fairer and more accurate. Since launch, Abound has issued over £1.3bn in loans, with a credit performance that outpaces industry averages. The company became profitable within 2.5 years and has backing from major investors, including Citi and Deutsche Bank. With over £2bn in funding, Abound is recognized as one of Europe’s fastest-growing fintechs. Role overview This Senior Security Engineer position is based in London and sits within the Platform team. The role blends DevSecOps responsibilities, serving as a bridge between product engineering and Corporate IT. As a hands-on contributor, the Senior Security Engineer critically reviews security architecture across both production and internal IT environments. During the first 6 to 12 months, the focus will be on designing and implementing next-generation cloud security architecture in AWS and GCP. The role also involves building and maturing internal SOC capabilities, particularly around detection and response. What you will do Manage Microsoft Sentinel to strengthen SIEM/SOAR capabilities Automate RBAC for identity and access management across AWS, Microsoft Entra, and internal systems Embed security controls into GitLab CI/CD pipelines, including scanning, infrastructure-as-code reviews, and automated policy enforcement Support a shift-left approach by integrating security throughout the software development lifecycle Technology stack Cloud & Compute: AWS, ECS Fargate, Aurora, Lambda, GCP Data Lake: S3, DMS, Glue Security & Identity: Microsoft Defender (XDR), Microsoft Sentinel (SIEM/SOAR), Defender for Cloud (CSPM), Microsoft 365, Entra, Intune Cloud Security Tooling: GuardDuty, Security Hub, Inspector, Security Command Center Code & Infrastructure: Terraform, GitLab CI/CD

airapps is hiring a Security Engineer to help safeguard digital assets and infrastructure in the London Metropolitan Area. This role centers on identifying weaknesses, managing security risks, and ensuring strong security measures are in place. Key responsibilities Identify vulnerabilities throughout information systems Reduce and address security risks as they arise Implement and maintain effective security protocols Support efforts to comply with relevant industry standards Help strengthen the company’s overall security posture Location This position is based in the London Metropolitan Area.

ABOUT AvolutionJoin Avolution, a prestigious global leader in Enterprise Architecture Software with over 20 years of experience. Our established presence spans across London, Sydney, Northern Virginia, and Singapore, and we are recognized in the Gartner Magic Quadrant as an industry frontrunner. Become part of our intelligent, friendly team, where your skills and initiative will drive our growth while enjoying a culture rated as collegial, collaborative, flexible, and supportive by our employees.Key ResponsibilitiesCloud & Infrastructure SecurityDesign, manage, and enhance security configurations across Azure and AWS environments, ensuring seamless integration with Office 365.Implement and enforce industry best practices for identity and access management (IAM) in Azure AD (Entra ID) and AWS IAM.Monitor cloud workloads for vulnerabilities, misconfigurations, and threats utilizing tools such as Microsoft Defender.Collaborate with DevOps/Engineering teams to embed security controls into CI/CD pipelines, advocating for DevSecOps principles.Conduct thorough security assessments, including aiding in penetration testing and risk evaluations to identify and mitigate potential vulnerabilities.Endpoint & Identity SecurityEnhance device posture, compliance, and management utilizing Microsoft Intune and Defender for Endpoint.Develop and maintain solid conditional access, multi-factor authentication (MFA), and endpoint protection policies.Oversee secure identity lifecycle processes, enforcing least-privilege access and zero-trust principles.Security OperationsRespond promptly to security alerts, incidents, and vulnerabilities with thorough investigations and remediation actions.Perform regular risk assessments, security reviews, and internal audits.Manage and optimize security tools, including SIEM, EDR, vulnerability scanners, and the Microsoft Defender suite.Lead incident response efforts and coordinate with cross-functional teams.Compliance & GovernanceSupport ISO 27001:2022 recertification and ongoing compliance activities, including internal audits.Prepare for and assist in obtaining additional compliance certifications (e.g., SOC 2, GDPR) to facilitate company growth.Develop, maintain, and enhance security policies, procedures, and technical documentation.Track, report on, and address audit findings or compliance gaps.Collaboration & CulturePartner with globally distributed teams across EMEA, AMER, and APAC regions.Educate internal teams on security best practices and cultivate a security-first culture through training and awareness initiatives.

Role Overview Aircall is looking for a Security Engineer focused on Product Security to help protect our products and platform. This role is based in our London office. What You Will Do Work with teams across engineering, product, and other functions to spot vulnerabilities and address them early in the development process. Implement security measures that fit our product development lifecycle. Lead security initiatives that strengthen customer trust and protect sensitive data. Support efforts to keep our security standards high as our platform evolves. Impact This role directly shapes the security of Aircall’s products and the safety of customer data. The work supports our commitment to strong security practices and helps maintain trust with our users.

Join Us in Shaping the Future of Cyber Security.At Quantexa, we believe in the power of innovation and continuous improvement. Our mission is to forge meaningful relationships with our clients and drive impactful change across various industries. With a diverse workforce comprising over 50 nationalities and 20 languages spoken, we foster an inclusive environment where every voice matters. Here, you will find the autonomy and support needed to craft a career that aligns with your aspirations.The Role.We are seeking a proactive and technically skilled Cyber Security Engineer to join our Security Operations team. In this hands-on role, you will be instrumental in safeguarding Quantexa's digital assets. Your responsibilities will include the operational management, optimization, and monitoring of essential security platforms, focusing on Zscaler, cloud monitoring via Wiz, and endpoint detection and response through CrowdStrike.Collaborating closely with the broader Security Operations team, you will ensure that security alerts, findings, and detections are efficiently triaged, validated, documented, and remediated. Your contributions will directly enhance Quantexa's security posture by minimizing risk, bolstering detection capabilities, and ensuring timely responses to security incidents.This position is ideal for a curious and detail-oriented professional who thrives on working with cutting-edge security tools, embraces disciplined execution, and seeks opportunities for ongoing improvement.Your Responsibilities.Wiz (Cloud Security Posture Management)Daily monitoring and triaging of Wiz findings, validating alerts and assessing operational impact.Engaging in tuning and threat hunting within Wiz and other security tools.Identifying misconfigurations, excessive permissions, and exposed assets while escalating issues as necessary.Tracking remediation progress with engineering teams and ensuring the resolution of high-priority issues.Zscaler (Web Security Tunnel 2.0)Reviewing and triaging Zscaler alerts and policy violations according to documented response procedures.Investigating suspicious traffic, access attempts, and user activity to determine legitimacy.

About the Position Jane Street is seeking a skilled Identity Security Engineer with expertise in engineering hybrid Windows platforms to become a vital member of our expanding team. Our IT Security team is committed to safeguarding access to Jane Street's IT systems. In this role, you will be instrumental in enhancing the organization's security posture through a blend of hands-on technical work and collaborative efforts with cross-functional engineering teams to initiate transformative security projects. Key Responsibilities: Serve as a technical security authority, offering insights on EntraID, M365, Azure tools, and security best practices. Lead the implementation and validation of robust security controls to minimize attack pathways between on-premises and external platforms. Identify security vulnerabilities and recommend operational improvements to meet our security standards. Provide technical guidance and influence cross-functional technology teams to facilitate cloud adoption. We are looking for an individual ready to make an immediate impact, capable of prioritizing work in a fast-paced environment. This position is more than just execution; we will rely on your judgment and quick thinking to guide our remediation and mitigation strategies for our Windows infrastructure. Your decisions will have far-reaching implications across the firm. About You: Possess a solid understanding of Microsoft security policies and configurations across Microsoft cloud services (SaaS/PaaS), IAM, and Privilege Access Management. Exhibit a strong grasp of industry-standard SSO technologies and authentication protocols (OpenID Connect, SAML, OAuth, Kerberos, LDAP, etc.). Have experience designing, implementing, and supporting Microsoft security infrastructure in live environments. Provide security recommendations regarding certificate policies, templates, and key sizes to uphold secure cryptographic standards. Manage and secure Azure resources utilizing a code-driven methodology. Be eager to develop scalable and repeatable security practices through automation, including certificate enrollment and renewal processes. Fluent in English. If you are a recruiting agency interested in partnering with us, please reach out to agency-partnerships@janestreet.com.

Join our dynamic team at Lendable as a Cyber Security Engineer, where you will play a pivotal role in safeguarding our digital assets and ensuring the integrity of our systems. In this position, you will be responsible for the design, implementation, and maintenance of security protocols across our network and applications. You will work closely with cross-functional teams to identify vulnerabilities and develop strategies to mitigate risks.

Application Deadline: We are actively conducting interviews and aim to fill this position promptly as soon as we find the right candidate.THE OPPORTUNITYApollo Research is searching for a Senior Security Engineer to take full ownership of security protocols and practices within our organization. As the first dedicated security hire, you will play a crucial role in maintaining the trust of our innovative AI lab partners and supporting our research mission. This position is embedded within the engineering team and reports directly to the CEO.YOUR RESPONSIBILITIES WILL INCLUDE- Establishing and leading Apollo's security program. You will create and manage the security roadmap, perform risk assessments, and adapt the program as the organization evolves, defining the security posture in relation to our size, threat model, and partner relationships.- Fostering trust with our AI lab partners. You will be the primary contact for security teams of our partners, building relationships with their CISOs, and ensuring our security practices are documented and meet the necessary standards for our partnerships.- Setting security strategies for engineering. You will define security principles and an AppSec strategy that the engineering team will adopt, creating efficient pathways for secure development.- Defining the use of AI tools and integrations at Apollo. You will determine approved tools, data handling procedures, and vetting processes for new technologies, ensuring a balance between security and the need for cutting-edge research tools.- Managing our security tooling stack and automating operations. You will select, implement, and oversee security controls such as EDR/MDR, endpoint management, email protection, and identity management, while automating processes wherever feasible.- Leading compliance and certification efforts. You will spearhead certification initiatives (ISO 27001, SOC 2) as required, integrating compliance into our security practices.- Managing IT administration across the organization. You will oversee Google Workspace and other IT resources.

Why Join Deliveroo?At Deliveroo, our mission is to revolutionize how people shop and dine by seamlessly connecting consumers, restaurants, shops, and delivery riders. We strive to make food and product accessibility more convenient and enjoyable, empowering individuals to purchase what they want, when and where they desire.As a forward-thinking, technology-driven organization, we are leading the charge in one of the fastest-growing industries globally. Our small team is making a significant impact as we tackle some of the most fascinating challenges. We prioritize speed, autonomy, and innovative ideas, continuously seeking fresh perspectives.About the RoleIn the role of Senior Security Engineer, you will spearhead the development and implementation of security measures that safeguard our internal networks, workforce identities, endpoints, and corporate systems. Collaborating with security teams across the US, EU, and APAC, you will aim to minimize risk and enhance our security controls.Operating with significant independence, you will define the technical strategy, make architectural decisions, and oversee the execution of complex security projects from start to finish. Your focus will be on balancing risk mitigation with user experience, ensuring that security measures are effective without hindering employee productivity.This position emphasizes Identity and Access Management (IAM), Endpoint Security (EDR), Network Security, logging and detection engineering, and secure SaaS enablement. You will collaborate closely with IT, Legal, Privacy, Engineering, and business stakeholders to ensure that security is integrated as a fundamental practice across the organization.Our security protocols are aligned with recognized frameworks such as the CIS Critical Security Controls and the NIST Cybersecurity Framework (CSF).

Join Checkatrade as a Senior Security Engineer and play a pivotal role in safeguarding our systems and data. In this position, you will be responsible for designing and implementing robust security measures, monitoring potential threats, and ensuring compliance with industry standards. We seek a proactive individual who thrives in a fast-paced environment and is dedicated to continuous improvement.

Join our dynamic team at Blockchain as an Infrastructure Security Engineer. In this pivotal role, you will be responsible for designing, implementing, and maintaining robust security architectures to safeguard our cutting-edge blockchain technologies. Your expertise will be essential in identifying vulnerabilities, managing security incidents, and ensuring compliance with industry standards.We are looking for a passionate individual who thrives in a fast-paced environment and is eager to contribute to the future of decentralized technologies.

About Anaplan Anaplan builds an AI-powered scenario planning and analytics platform that helps organizations make sharper business decisions. Over 2,400 global companies, including names like Coca-Cola, LinkedIn, Adobe, LVMH, and Bayer, rely on Anaplan to stay competitive and navigate changing markets. The team values diverse perspectives, sets ambitious goals, and celebrates progress of all sizes. Anaplan’s culture emphasizes customer success, leadership at every level, and disciplined execution. Employees find opportunities for growth, connection, and recognition. Role Overview: Senior Product Security Engineer Location: London, United Kingdom This role focuses on strengthening security across Anaplan’s products and operations. The Senior Product Security Engineer leads initiatives to reduce risk, partners with teams across the company, and helps shape the security strategy. Main Responsibilities Design, lead, and implement security programs that address key risks and deliver on security goals. Translate findings from security assessments into practical projects that improve security at scale. Work with both technical and non-technical teams to embed security controls and encourage secure practices throughout the company. Define and track metrics to show the impact and effectiveness of security programs. Manage stakeholder expectations, using problem-solving and negotiation skills to build trust across teams. Support innovation and proof-of-concept work within the security function, helping teams focus on the right priorities. Collaborate with cross-functional groups to advance security objectives. Partner with the CISO to prepare executive reports, status updates, and company-wide communications, ensuring visibility into important security milestones and risks.

At Menlo Security, we are dedicated to empowering secure connections, communications, and collaborations worldwide. Our mission has become increasingly vital in the current landscape shaped by COVID-19. We proudly serve a diverse clientele, including Fortune 500 companies, 9 out of the 10 largest global banks, and the Department of Defense.As we transition from a team of 400 towards our next growth phase, we seek passionate individuals who exhibit empathy and adaptability. The ideal candidate will possess a strong ethical foundation, exceptional organizational skills, and a commitment to service. A willingness to both give and receive constructive feedback is essential.Backed by industry-leading investors such as Vista Equity Partners, General Catalyst, JPMC, American Express, HSBC, and Ericsson Ventures, Menlo is poised for significant growth.Position Overview:The Senior Security Engineer will play a crucial role in safeguarding our organization’s digital assets, infrastructure, and data. Responsibilities include designing, implementing, and maintaining security systems and controls, managing security tools, conducting risk assessments, responding to incidents, and ensuring compliance with relevant security standards. This position involves close collaboration with various teams within Menlo to promote security best practices across all technological initiatives, thereby enhancing our security posture and resilience.Key Responsibilities:Security Operations & Monitoring:Oversee the SIEM platform and manage security alerts to identify, investigate, and respond to potential threats.Administer and optimize EDR solutions, specifically Crowdstrike, to ensure comprehensive endpoint protection.Lead incident response efforts, including investigation, containment, remediation, and post-incident analysis.Vulnerability & Risk Management:Oversee the vulnerability management program, including scanning, prioritization, and coordination of remediation efforts.Conduct risk assessments and formulate strategies for risk mitigation.

At Kroo Bank, we are pioneering the future of banking through innovative technology and exceptional digital services. As the fintech sector rapidly evolves, our bank is committed to adapting our roles and responsibilities to seize new business opportunities and meet emerging challenges. We prioritize updating our job descriptions to maintain our leadership in banking innovation.Your Contributions and Key Responsibilities:In the role of Senior Security Engineer, you will play a crucial role in the design and implementation of security measures for our mobile applications, services, and websites, ensuring adherence to the highest security standards. Your expertise will be pivotal in continually assessing and enhancing our security systems, ensuring our products and services are secure by design and compliant with both internal and external regulatory requirements. Key responsibilities include:Security Analysis and Improvement: Continuously evaluate our security systems for potential enhancements, ensuring our defenses lead in cybersecurity practices.Vulnerability Management: Proactively identify, assess, and resolve security vulnerabilities to uphold the integrity and confidentiality of customer data.Security Automation: Streamline security processes and procedures to boost efficiency and effectiveness, minimizing the risk of human error.Security Requirements and Solutions: Define and document system security requirements, offering well-considered recommendations to management.Development of Security Standards: Create and maintain best practices and security standards within the organization, guiding teams in secure coding practices.Secure Design: Collaborate with development teams to ensure robust security measures are integrated into the design of web and mobile front-ends, along with microservice architectures.Cloud Security and Secure Infrastructure: Assist teams in identifying and addressing gaps in infrastructure security, aligning with industry security posture standards.Cybersecurity Collaboration: Work closely with stakeholders across the organization to ensure security measures align with our overarching cybersecurity strategy and protect the bank’s technology infrastructure.Regulatory Compliance: Support teams in meeting compliance requirements for internal audits and external regulators to mitigate potential fines and reputational damage.

Join our dynamic team at Shawbrook as an Application Security Engineer. In this pivotal role, you will be responsible for safeguarding our applications by implementing robust security measures throughout the software development lifecycle. Your expertise will help identify vulnerabilities and enhance our overall security posture, ensuring our systems remain resilient against evolving threats.

Join Cohere as a Security Operations Engineer in the vibrant city of London. In this pivotal role, you will be responsible for ensuring the security and integrity of our operations across the EMEA region. You will work closely with cross-functional teams to identify vulnerabilities, implement security measures, and respond to incidents promptly. Your expertise will make a significant impact in safeguarding our systems and data.

Join our dynamic team as a Reverse Engineer specializing in Mobile Software Security. In this role, you will leverage your expertise in reverse engineering and security analysis to identify and mitigate threats in mobile applications and operating systems. Your contributions will play a crucial role in enhancing the security posture of our clients.Key Responsibilities:Conduct intelligence analysis to identify and assess potential threats.Offer subject matter expertise to support various operational initiatives.Identify and evaluate new intelligence sources related to current and emerging technological threats.Skills and Expertise Required:Proficient in assembly language.Hands-on experience with Android applications and operating systems.A minimum of 3 years of relevant experience in reverse engineering and code-level security auditing, with a solid understanding of assembly language and the ability to unpack obfuscated code.Experience in both static and dynamic analysis of malicious binaries.Familiarity with Java programming.Strong analytical skills in security-related data analysis.Proficient with tools such as IDA Pro and OllyDbg.A robust foundation in security engineering, computer and network security, and authentication protocols.Qualifications:A Bachelor's degree in Engineering or a related field, or equivalent practical experience.

Join Samsara as a Senior Security Engineer on our Vulnerability Team, where you'll play a pivotal role in enhancing our security posture. In this position, you will be responsible for identifying vulnerabilities within our systems and implementing effective solutions to mitigate risks. Collaborate with cross-functional teams to ensure the security of our products and infrastructure, and contribute to our mission of bringing transparency and safety to the IoT space.

The Economist Group is seeking a dedicated and skilled Cyber Security Engineer to join our dynamic team in London. In this role, you will play a crucial part in safeguarding our digital assets and ensuring the integrity of our systems against various cyber threats. You will work closely with cross-functional teams to implement security measures, conduct risk assessments, and respond to security incidents.

Join Wiz, a pioneering force in cloud security, as a Cloud Security Research Engineer. In this pivotal role within our Product team, you will be instrumental in fortifying our customers' cloud infrastructures against cyber threats. Your innovations will not only enhance our security offerings but also contribute significantly to customer success and the advancement of cloud security technologies.