Principal Engineer for Product Security

Trainline is a major player in European rail travel, connecting millions of customers with ticket options from hundreds of carriers. With a presence in over 40 countries and a team representing more than 50 nationalities, the company focuses on making travel simpler and more sustainable. The London office is one of several across Europe supporting this mission. The security team at Trainline works at the intersection of technology and safety, partnering with Cloud Engineering, SRE, and Platform Engineering. Their work helps protect digital channels that process billions in ticket sales, adapting to new threats and integrating emerging technologies to keep systems secure. Role overview The Junior Product Security Engineer role centers on supporting security throughout the product development lifecycle. This position is well suited to someone early in their security career who wants to apply security concepts in a cloud-native environment. The role involves hands-on work with vulnerability management and collaboration with product teams to strengthen security practices. What you will do Assist with embedding security into each stage of product development Support vulnerability management processes Work alongside experienced security engineers and cross-functional teams Help improve security practices for digital products Location This position is based in London.

About JuniorAt Junior, we are on a mission to revolutionize the investment research landscape with innovative LLM-powered tools designed specifically for private market investors. Our clientele includes some of the world's leading private equity and consulting firms, collectively managing billions in annual investments. As a profitable and bootstrapped enterprise, we have grown our team to 24 talented individuals across our London and NYC offices, and we achieved a remarkable 10x revenue growth in 2025.Discover more about our mission and values here. Role DescriptionAs our first dedicated Backend Engineer focused solely on our internal go-to-market and operations stack, you will play a pivotal role in shaping our technology framework. Your responsibilities will include:Crafting an AI-first tech stack from the ground up, influencing infrastructure decisions and priorities.Rapidly deploying internal tools and receiving immediate feedback from your team members, who will quickly become your strongest advocates!Developing and managing our data warehouse and internal data architecture.Engaging in innovative projects that leverage LLMs, automation, and advanced agent technologies.Cultivating our engineering culture. Sample Set of ProjectsUser Health Reporting + CRM Data Quality: Automate data pipelines to enhance metrics visibility in BI dashboards and ML evaluations, while establishing alert systems for risk signals.User Feedback Integration: Develop a tool that summarizes user feedback calls, prioritizes feature requests, and communicates findings to our Product team.Billing and Invoicing: Implement complex B2B pricing models encompassing usage-based, seat-based, and platform fees, while automating financial reconciliation processes.Data Warehouse Development: Create a data warehouse to integrate product, CRM, and operational data, and generate tailored dashboards for different teams. About YouWe are searching for a backend/data engineer who...

Role Overview Aircall is looking for a Security Engineer focused on Product Security to help protect our products and platform. This role is based in our London office. What You Will Do Work with teams across engineering, product, and other functions to spot vulnerabilities and address them early in the development process. Implement security measures that fit our product development lifecycle. Lead security initiatives that strengthen customer trust and protect sensitive data. Support efforts to keep our security standards high as our platform evolves. Impact This role directly shapes the security of Aircall’s products and the safety of customer data. The work supports our commitment to strong security practices and helps maintain trust with our users.

About Anaplan Anaplan builds an AI-powered scenario planning and analytics platform that helps organizations make sharper business decisions. Over 2,400 global companies, including names like Coca-Cola, LinkedIn, Adobe, LVMH, and Bayer, rely on Anaplan to stay competitive and navigate changing markets. The team values diverse perspectives, sets ambitious goals, and celebrates progress of all sizes. Anaplan’s culture emphasizes customer success, leadership at every level, and disciplined execution. Employees find opportunities for growth, connection, and recognition. Role Overview: Senior Product Security Engineer Location: London, United Kingdom This role focuses on strengthening security across Anaplan’s products and operations. The Senior Product Security Engineer leads initiatives to reduce risk, partners with teams across the company, and helps shape the security strategy. Main Responsibilities Design, lead, and implement security programs that address key risks and deliver on security goals. Translate findings from security assessments into practical projects that improve security at scale. Work with both technical and non-technical teams to embed security controls and encourage secure practices throughout the company. Define and track metrics to show the impact and effectiveness of security programs. Manage stakeholder expectations, using problem-solving and negotiation skills to build trust across teams. Support innovation and proof-of-concept work within the security function, helping teams focus on the right priorities. Collaborate with cross-functional groups to advance security objectives. Partner with the CISO to prepare executive reports, status updates, and company-wide communications, ensuring visibility into important security milestones and risks.

About JuniorAt Junior, we are at the forefront of innovation, developing advanced LLM-powered workflow tools designed to enhance investment research for private market investors. Our esteemed clientele includes the majority of the top 10 global private equity and consulting firms, and we currently facilitate the investment of hundreds of billions of dollars annually. As a profitable and bootstrapped company, we are proud to have a dynamic team of over 30 professionals based in London, New York City, and Sydney, achieving a remarkable 10x revenue growth in 2025.Explore more about our mission and values here. Role OverviewWe are searching for our inaugural Product Marketing Lead to define our positioning, messaging, and marketing strategies for Junior, targeting the world's most discerning enterprise software buyers. You will act as a vital link connecting our state-of-the-art AI product with decision-makers at prestigious consulting firms and private equity funds.In this pioneering role, you will have the chance to:Lead product launches and messaging for feature releases: Ensure new features are effectively communicated to the right audience, helping users maximize their value from Junior.Develop our content strategy: Create engaging case studies, thought leadership articles, and sales enablement resources that demonstrate tangible ROI.Shape our go-to-market strategy: Develop impactful messaging that stands out in the crowded AI landscape and resonates with sophisticated buyers by deeply understanding customer segments, market dynamics, and decision-making personas. About YouWe are looking for a strategic product marketer who possesses:5+ years of B2B product marketing experience, ideally within enterprise software, AI/ML platforms, or technology services.A deep understanding of complex sales cycles, with experience engaging sophisticated buyers who navigate 3-9 month decision-making processes involving multiple stakeholders.Fluency in AI/LLM products, with the ability to articulate the technological shifts we are experiencing and create compelling messaging around customer use cases.A tinkerer’s mindset: Experimentation with LLMs and AI tools, showcasing several examples of processes developed or improved through generative AI.

About Anaplan Anaplan builds an AI-powered scenario planning and analysis platform that helps businesses make confident decisions and stay ahead in the market. Our customers include Fortune 50 leaders such as Coca-Cola, LinkedIn, Adobe, LVMH, and Bayer. We value innovation, customer success, and collaboration. Our teams work globally, celebrating diversity and leadership at every level. At Anaplan, people set ambitious goals and take pride in both individual and shared achievements. Role Overview: Senior Product Security Engineer Location: London, United Kingdom The Senior Product Security Engineer will help shape and strengthen Anaplan’s security programs. This role focuses on designing, implementing, and measuring security initiatives that protect our platform and support our business goals. What You Will Do Design and implement security programs to reduce risk and meet key security objectives. Turn findings from security assessments into actionable initiatives and scalable programs. Work with both technical and non-technical teams to integrate security controls and encourage secure practices throughout the company. Set and track metrics to measure the effectiveness and impact of security efforts. Manage expectations and build trust with stakeholders at all levels, using strong problem-solving and negotiation skills. Improve the security innovation and proof-of-concept process, helping teams focus on the most important challenges. Coordinate with cross-functional teams to advance security goals. Collaborate with the CISO to prepare executive reports, provide status updates, and highlight progress on critical security milestones and risks.

Galaxy Digital Services seeks a Vice President, Senior Product Security Engineer for its London office. This role focuses on strengthening the security of microservices and cloud applications across a range of digital asset and trading platforms. The position reports to the Director of Product Security. Role overview The Senior Product Security Engineer will assess complex trading systems and blockchain architectures. Responsibilities include identifying vulnerabilities, recommending or implementing remediations, and ensuring security best practices are integrated throughout product and software engineering processes. Collaboration with Engineering, Product, and Infrastructure teams is central to this role, supporting secure software delivery as the company expands. What you will do Evaluate the security of microservices and cloud-based applications Conduct assessments of trading systems and blockchain architectures Facilitate or implement remediation efforts to address identified risks Work closely with cross-functional teams to deliver secure products Requirements Expertise in securing microservices and cloud applications Strong understanding of product and software engineering processes Experience with trading systems and blockchain security Ability to collaborate effectively with technical and product teams Our core values Pursue excellence Be selective to achieve effectiveness Maintain high alignment with loose coupling Encourage transparent disagreement Foster independent decision-making Assemble dream teams

Role Overview NBCUniversal is hiring a Production & Event Security Manager based in London. This position oversees security operations for a range of productions and events, focusing on the safety of both personnel and guests. What You Will Do Develop and implement security protocols for productions and events Coordinate with local law enforcement and external partners Lead and manage a team of security professionals Allocate and oversee security resources Ensure compliance with all relevant safety regulations

Join Our TeamAs a Junior Software Engineer specializing in Data Products at Yapily, you will be instrumental in developing and expanding our cutting-edge data platform. This entry-level role is ideal for individuals with a solid foundation in Java or Python who are enthusiastic about diving into the field of Data Engineering.Your contributions will be vital in crafting high-performance data pipelines, robust billing infrastructure, and intuitive self-service data APIs. This position provides a unique opportunity to engage with the Google Cloud Platform (GCP) stack, allowing you to learn how to create data systems that enable engineering teams to transform raw data into actionable insights.Key ResponsibilitiesData Pipeline Support: Collaborate in the design and upkeep of scalable data ingestion and processing systems using ETL/ELT methodologies.API Development: Assist in the creation and documentation of APIs for a seamless data experience for various stakeholders.Database Management: Work with SQL and NoSQL databases, optimizing schemas and crafting efficient queries to handle high-volume transactions.Cloud Resource Management: Learn to deploy and maintain software utilizing GCP services such as Pub/Sub, BigQuery, and Cloud Storage.Billing Infrastructure: Support the development of a reliable billing architecture in an event-driven environment.Cross-Functional Collaboration: Work alongside BI, infrastructure, and product teams to gather data requirements and deliver technical solutions.Quality Assurance: Engage in testing, monitoring, and logging to ensure system resilience.Continuous Learning: Participate in code reviews and agile ceremonies to enhance your technical skills and product knowledge.

Join the forefront of cloud networking and security!Cato Networks is revolutionizing enterprise networking and security by delivering a unified global service through the cloud. Under the leadership of industry trailblazer Shlomo Kramer, founder of Check Point and Imperva, Cato has pioneered a groundbreaking product category recognized by Gartner as 'SASE', projected to reach a market value of $28.5 billion by 2028.Seize this opportunity to be part of a dynamic team at Cato Networks as we build an advanced enterprise network and secure cloud platform, positioning ourselves as the global market leader. Don't miss out on this chance!At Cato Networks, we are fundamentally transforming the network into a secured cloud service, and we are in search of a stellar Product Manager to play a pivotal role in shaping the future of our security offerings. As a Product Manager, you will be an integral part of a team focused on driving product strategy, defining features and requirements, and spearheading the launch of innovative security capabilities.

Join our dynamic team at Pace Consulting as a Product Security Specialist, focusing on the critical field of cyber security for medical devices. In this role, you will be responsible for ensuring the security and integrity of medical products throughout their lifecycle. This position demands a proactive approach to identifying vulnerabilities and implementing effective solutions to safeguard sensitive patient data and comply with regulatory standards.

Abound is changing how consumer lending works in the UK and beyond. By combining advanced AI with Open Banking data, the company looks at a person’s complete financial situation, not just a credit score, to make lending decisions that are fairer and more accurate. Since launch, Abound has issued over £1.3bn in loans, with a credit performance that outpaces industry averages. The company became profitable within 2.5 years and has backing from major investors, including Citi and Deutsche Bank. With over £2bn in funding, Abound is recognized as one of Europe’s fastest-growing fintechs. Role overview This Senior Security Engineer position is based in London and sits within the Platform team. The role blends DevSecOps responsibilities, serving as a bridge between product engineering and Corporate IT. As a hands-on contributor, the Senior Security Engineer critically reviews security architecture across both production and internal IT environments. During the first 6 to 12 months, the focus will be on designing and implementing next-generation cloud security architecture in AWS and GCP. The role also involves building and maturing internal SOC capabilities, particularly around detection and response. What you will do Manage Microsoft Sentinel to strengthen SIEM/SOAR capabilities Automate RBAC for identity and access management across AWS, Microsoft Entra, and internal systems Embed security controls into GitLab CI/CD pipelines, including scanning, infrastructure-as-code reviews, and automated policy enforcement Support a shift-left approach by integrating security throughout the software development lifecycle Technology stack Cloud & Compute: AWS, ECS Fargate, Aurora, Lambda, GCP Data Lake: S3, DMS, Glue Security & Identity: Microsoft Defender (XDR), Microsoft Sentinel (SIEM/SOAR), Defender for Cloud (CSPM), Microsoft 365, Entra, Intune Cloud Security Tooling: GuardDuty, Security Hub, Inspector, Security Command Center Code & Infrastructure: Terraform, GitLab CI/CD

airapps is hiring a Security Engineer to help safeguard digital assets and infrastructure in the London Metropolitan Area. This role centers on identifying weaknesses, managing security risks, and ensuring strong security measures are in place. Key responsibilities Identify vulnerabilities throughout information systems Reduce and address security risks as they arise Implement and maintain effective security protocols Support efforts to comply with relevant industry standards Help strengthen the company’s overall security posture Location This position is based in the London Metropolitan Area.

ABOUT AvolutionJoin Avolution, a prestigious global leader in Enterprise Architecture Software with over 20 years of experience. Our established presence spans across London, Sydney, Northern Virginia, and Singapore, and we are recognized in the Gartner Magic Quadrant as an industry frontrunner. Become part of our intelligent, friendly team, where your skills and initiative will drive our growth while enjoying a culture rated as collegial, collaborative, flexible, and supportive by our employees.Key ResponsibilitiesCloud & Infrastructure SecurityDesign, manage, and enhance security configurations across Azure and AWS environments, ensuring seamless integration with Office 365.Implement and enforce industry best practices for identity and access management (IAM) in Azure AD (Entra ID) and AWS IAM.Monitor cloud workloads for vulnerabilities, misconfigurations, and threats utilizing tools such as Microsoft Defender.Collaborate with DevOps/Engineering teams to embed security controls into CI/CD pipelines, advocating for DevSecOps principles.Conduct thorough security assessments, including aiding in penetration testing and risk evaluations to identify and mitigate potential vulnerabilities.Endpoint & Identity SecurityEnhance device posture, compliance, and management utilizing Microsoft Intune and Defender for Endpoint.Develop and maintain solid conditional access, multi-factor authentication (MFA), and endpoint protection policies.Oversee secure identity lifecycle processes, enforcing least-privilege access and zero-trust principles.Security OperationsRespond promptly to security alerts, incidents, and vulnerabilities with thorough investigations and remediation actions.Perform regular risk assessments, security reviews, and internal audits.Manage and optimize security tools, including SIEM, EDR, vulnerability scanners, and the Microsoft Defender suite.Lead incident response efforts and coordinate with cross-functional teams.Compliance & GovernanceSupport ISO 27001:2022 recertification and ongoing compliance activities, including internal audits.Prepare for and assist in obtaining additional compliance certifications (e.g., SOC 2, GDPR) to facilitate company growth.Develop, maintain, and enhance security policies, procedures, and technical documentation.Track, report on, and address audit findings or compliance gaps.Collaboration & CulturePartner with globally distributed teams across EMEA, AMER, and APAC regions.Educate internal teams on security best practices and cultivate a security-first culture through training and awareness initiatives.

Join Us in Shaping the Future of Cyber Security.At Quantexa, we believe in the power of innovation and continuous improvement. Our mission is to forge meaningful relationships with our clients and drive impactful change across various industries. With a diverse workforce comprising over 50 nationalities and 20 languages spoken, we foster an inclusive environment where every voice matters. Here, you will find the autonomy and support needed to craft a career that aligns with your aspirations.The Role.We are seeking a proactive and technically skilled Cyber Security Engineer to join our Security Operations team. In this hands-on role, you will be instrumental in safeguarding Quantexa's digital assets. Your responsibilities will include the operational management, optimization, and monitoring of essential security platforms, focusing on Zscaler, cloud monitoring via Wiz, and endpoint detection and response through CrowdStrike.Collaborating closely with the broader Security Operations team, you will ensure that security alerts, findings, and detections are efficiently triaged, validated, documented, and remediated. Your contributions will directly enhance Quantexa's security posture by minimizing risk, bolstering detection capabilities, and ensuring timely responses to security incidents.This position is ideal for a curious and detail-oriented professional who thrives on working with cutting-edge security tools, embraces disciplined execution, and seeks opportunities for ongoing improvement.Your Responsibilities.Wiz (Cloud Security Posture Management)Daily monitoring and triaging of Wiz findings, validating alerts and assessing operational impact.Engaging in tuning and threat hunting within Wiz and other security tools.Identifying misconfigurations, excessive permissions, and exposed assets while escalating issues as necessary.Tracking remediation progress with engineering teams and ensuring the resolution of high-priority issues.Zscaler (Web Security Tunnel 2.0)Reviewing and triaging Zscaler alerts and policy violations according to documented response procedures.Investigating suspicious traffic, access attempts, and user activity to determine legitimacy.

About the Position Jane Street is seeking a skilled Identity Security Engineer with expertise in engineering hybrid Windows platforms to become a vital member of our expanding team. Our IT Security team is committed to safeguarding access to Jane Street's IT systems. In this role, you will be instrumental in enhancing the organization's security posture through a blend of hands-on technical work and collaborative efforts with cross-functional engineering teams to initiate transformative security projects. Key Responsibilities: Serve as a technical security authority, offering insights on EntraID, M365, Azure tools, and security best practices. Lead the implementation and validation of robust security controls to minimize attack pathways between on-premises and external platforms. Identify security vulnerabilities and recommend operational improvements to meet our security standards. Provide technical guidance and influence cross-functional technology teams to facilitate cloud adoption. We are looking for an individual ready to make an immediate impact, capable of prioritizing work in a fast-paced environment. This position is more than just execution; we will rely on your judgment and quick thinking to guide our remediation and mitigation strategies for our Windows infrastructure. Your decisions will have far-reaching implications across the firm. About You: Possess a solid understanding of Microsoft security policies and configurations across Microsoft cloud services (SaaS/PaaS), IAM, and Privilege Access Management. Exhibit a strong grasp of industry-standard SSO technologies and authentication protocols (OpenID Connect, SAML, OAuth, Kerberos, LDAP, etc.). Have experience designing, implementing, and supporting Microsoft security infrastructure in live environments. Provide security recommendations regarding certificate policies, templates, and key sizes to uphold secure cryptographic standards. Manage and secure Azure resources utilizing a code-driven methodology. Be eager to develop scalable and repeatable security practices through automation, including certificate enrollment and renewal processes. Fluent in English. If you are a recruiting agency interested in partnering with us, please reach out to agency-partnerships@janestreet.com.

Join our dynamic team at Lendable as a Cyber Security Engineer, where you will play a pivotal role in safeguarding our digital assets and ensuring the integrity of our systems. In this position, you will be responsible for the design, implementation, and maintenance of security protocols across our network and applications. You will work closely with cross-functional teams to identify vulnerabilities and develop strategies to mitigate risks.

About WheelyWheely is revolutionizing premium transportation across major cities in Europe, the US, and the Middle East. By integrating advanced technology with the art of five-star chauffeuring, we provide an exceptional experience trusted by over 100,000 active riders and 1,200 corporate accounts.As a profitable, rapidly expanding scale-up with $43 million raised and over $100 million in annual revenue, we have recently launched in New York City and are swiftly extending our reach across the US and EMEA. If you are passionate about your work and eager to contribute to our next phase of growth, we invite you to apply.We are in search of a Junior Product Manager primarily focused on enhancing our Customer Service stream. In this pivotal role, you will drive improvements in our Customer Service team, making it more efficient, proactive, and personalized while ensuring a consistently high quality in all interactions.

Application Deadline: We are actively conducting interviews and aim to fill this position promptly as soon as we find the right candidate.THE OPPORTUNITYApollo Research is searching for a Senior Security Engineer to take full ownership of security protocols and practices within our organization. As the first dedicated security hire, you will play a crucial role in maintaining the trust of our innovative AI lab partners and supporting our research mission. This position is embedded within the engineering team and reports directly to the CEO.YOUR RESPONSIBILITIES WILL INCLUDE- Establishing and leading Apollo's security program. You will create and manage the security roadmap, perform risk assessments, and adapt the program as the organization evolves, defining the security posture in relation to our size, threat model, and partner relationships.- Fostering trust with our AI lab partners. You will be the primary contact for security teams of our partners, building relationships with their CISOs, and ensuring our security practices are documented and meet the necessary standards for our partnerships.- Setting security strategies for engineering. You will define security principles and an AppSec strategy that the engineering team will adopt, creating efficient pathways for secure development.- Defining the use of AI tools and integrations at Apollo. You will determine approved tools, data handling procedures, and vetting processes for new technologies, ensuring a balance between security and the need for cutting-edge research tools.- Managing our security tooling stack and automating operations. You will select, implement, and oversee security controls such as EDR/MDR, endpoint management, email protection, and identity management, while automating processes wherever feasible.- Leading compliance and certification efforts. You will spearhead certification initiatives (ISO 27001, SOC 2) as required, integrating compliance into our security practices.- Managing IT administration across the organization. You will oversee Google Workspace and other IT resources.