Research Engineer/Research Scientist – Model Transparency

Join Wiz, a pioneering force in cloud security, as a Cloud Security Research Engineer. In this pivotal role within our Product team, you will be instrumental in fortifying our customers' cloud infrastructures against cyber threats. Your innovations will not only enhance our security offerings but also contribute significantly to customer success and the advancement of cloud security technologies.

Who are we?At Ki Insurance, we are at the forefront of innovation in the insurance industry. We're not just insuring everyday things; we're insuring space shuttles, global tours, wind farms, and even the legs of footballers!Our mission is clear: to digitally disrupt and revolutionize a market that has been around for 335 years. In collaboration with Google and UCL, we've developed a platform that leverages algorithms, machine learning, and large language models, allowing insurance brokers to receive quotes in seconds instead of days.Ki proudly stands as the largest global algorithmic insurance carrier and has rapidly become the fastest-growing syndicate in the Lloyd's of London market, achieving an impressive $100 million in profit within just three years.Our teams come from diverse backgrounds and collaborate in an agile, cross-functional manner to create the best customer experience possible. With ambitious goals ahead, we’re looking for brilliant minds to challenge the status quo and help us reach new heights.Where do you fit in?As a Senior Cloud Security Engineer, you will closely collaborate with engineering teams across Cloud Services, Infrastructure, and Product teams to integrate risk-aware technical security controls into our services, products, and development workflows.Your responsibilities will include designing, implementing, and managing robust security measures across our cloud platforms. You will work in tandem with cross-functional teams to devise security strategies, automate security processes, and proactively detect and address potential threats. This position will also involve developing cloud-native security tools, automating our processes, and leveraging infrastructure as code.Moreover, this role will utilize AI to responsibly build automation and agentic AI workflows, enhancing productivity while ensuring data protection and appropriate security controls are upheld.What will you be doing? Cloud Security Architecture & Design:Design and implement security architectures for cloud systems, including GCP, Azure, AWS, or hybrid environments.Develop secure cloud architectures for AI/LLM workloads and AI-enabled services, focusing on isolation patterns, secure networking, and hardened runtime configurations.Ensure security configurations and infrastructure are reproducible through infrastructure-as-code (IaC), specification-driven development (SDD), and automated deployment pipelines.Automate cloud security processes utilizing agentic AI tools.Implement robust security measures across our cloud platforms.Provide insights and suggestions for improvements on Ki's current architecture.Security Governance & Policy:Establish and enforce security policies, standards, and guidelines for cloud services.Ensure compliance with regulatory requirements such as ISO 27001, SOC 2, SOX ITGC, NIST, GDPR, and others.Conduct security assessments and audits to identify vulnerabilities and remediate them accordingly.

Join Zaizi as a National Security Cloud Engineer, where you will leverage your expertise in automating software delivery pipelines within expansive systems that utilize open-source technologies. At Zaizi, we are passionate about tackling intricate challenges through innovative thinking and cutting-edge technologies.Our workplace is characterized by an inclusive, modern, and collaborative culture, fostering creativity and innovation. We are in search of enthusiastic and solution-oriented individuals who thrive in dynamic environments. If you are eager to challenge yourself and contribute to a forward-thinking team, we would love to hear from you!

Join Flohealth as a Cloud Security Engineer, where you will play a pivotal role in safeguarding our cloud environments. Your expertise in cloud security principles and practices will be fundamental in developing and implementing robust security measures.In this role, you'll collaborate with cross-functional teams to assess and enhance our security posture, ensuring compliance with industry standards. Your contributions will directly impact the security and integrity of our data and services.

Join Starling Bank, the UK's pioneering digital bank, on a transformative mission to revolutionize banking! We harness technology to empower individuals to save, spend, and manage their finances more effectively.As a fully licensed bank in the UK, we embody the innovative spirit and agility of a tech company. Our approach is fairer, simpler, and designed to demystify money for everyone. With over 3,000 employees across London, Southampton, Cardiff, and Manchester, we foster a vibrant work culture.At Starling, our technologists play a crucial role in shaping our future, thriving in a dynamic environment focused on building and innovating cutting-edge fintech solutions. We embrace a flat organizational structure that encourages decision-making and collaboration across all levels. Our open culture ensures that support is readily available from your team and the wider business, promoting collective success!To excel at Starling, you should be self-motivated and take full ownership of your work. This includes everything from developing new solutions to sharing knowledge and enhancing processes for optimal customer outcomes. Our values—Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness—are central to our mission.Hybrid WorkingWe offer a hybrid work model. While we encourage team interactions in the office, we prefer candidates to be within a commutable distance to one of our locations.Our Engineering EnvironmentStarling engineers are driven by the desire to deliver exceptional features. We welcome engineers of all experience levels who are passionate about coding and customer service. Our team is diverse and thrives on tackling various challenges together to transform banking for the better.As a Cloud Security Engineer at Starling, you will develop and maintain tooling and infrastructure across AWS and GCP, supporting internal operations and collaborating with various teams to deliver essential services for our business.

Ebury empowers ambitious businesses to unlock global growth, and we extend the same philosophy to our team members. We promote innovation, collaboration, and problem-solving, creating an inclusive environment where everyone feels valued, supported, and empowered to thrive.If you are a collaborative individual eager to transform how businesses operate on a global scale, we invite you to connect with us. Discover how Ebury can fast-track your career and help you shape the future.Senior Security Engineer - Cloud InfrastructureHybrid (4 days in office) in LondonEbury is making significant investments in its cloud infrastructure security to ensure the integrity and safety of our global financial services. As a Senior Security Engineer specializing in Cloud Infrastructure, you will be responsible for enhancing and managing the security posture of our cloud environments across AWS and GCP, focusing on network security, perimeter defense, and attack surface management.This hands-on position requires extensive expertise in cloud-native security controls, network architecture, and proactive defensive security operations. You will design, implement, and maintain security infrastructure that identifies and mitigates threats before they affect our operations. Collaborating closely with platform, infrastructure, and security operations teams, you will embed security best practices into our cloud foundations.Key ResponsibilitiesManage cloud security posture and attack surface: Ensure comprehensive visibility and control across AWS and GCP environments. Implement cloud-native security monitoring, detection, and alerting mechanisms to proactively identify and mitigate threats, establishing and enforcing security baselines through policy-as-code.Design and oversee web application firewall infrastructure: Maintain WAF configurations across AWS and GCP, creating and fine-tuning detection rules in line with application threat models and emerging attack patterns. Develop operational processes for rule management and incident response integration, collaborating with application teams to implement protections without disrupting availability.Architect network segmentation and isolation: Design and implement strategies ensuring proper separation between development, staging, and production environments. Define consistent patterns across multi-cloud infrastructure, apply zero-trust principles to workload communication, and document reference architectures for engineering teams.

Join the dynamic Engineering team at Engine by Starling, where we prioritize security as a fundamental engineering discipline rather than a mere checkbox exercise. As a Cloud Security Engineer, you will play a pivotal role in shaping the security architecture of our multi-tenant core banking platform. Your responsibilities will include writing code, automating security measures, and ensuring that our infrastructure across AWS and GCP is secure by design and compliant by default.Your MissionIn this multifaceted role, you will lead initiatives to strengthen both our infrastructure and application platforms. Your primary focus will be on solving intricate security challenges through code, emphasizing three key areas:Identity & Network Security: Develop robust IAM controls and zero-trust network architectures. You will enhance our edge-defense strategies and trust redirection to ensure that every request is authenticated and encrypted.Unified Vulnerability Orchestration: Create a custom dashboard for security data. You will engineer API integrations between scanning engines, dependency trackers, and internal portals to establish a cohesive, automated vulnerability management ecosystem.Compliance as Code: Bridge the gap between technical execution and regulatory compliance. You will develop automated systems that provide real-time evidence for compliance frameworks such as SOC 2, ISO 27001, and PCI, minimizing manual oversight.About the TeamYou will be an integral member of our expanding Security Engineering team, collaborating closely with our Infrastructure, Cross-Cutting, Information Security, and GRC teams. At Engine, we believe that security should be woven into every technical process, not treated as an afterthought. You will engage with engineers across the organization to create a resilient platform that can adapt to evolving threats.Who You AreWe are primarily seeking experienced Cloud Security Engineers, but we also welcome talented Software Engineers with strong programming skills who are eager to tackle security challenges.Engine engineers are driven by the impact of their work and the delivery of high-quality solutions, regardless of their original tech stack. Whether you are a security specialist or a developer with a security-first mindset, your role within the team will be shaped by your unique strengths and interests.Your ResponsibilitiesInstead of performing manual compliance checks, you will develop systems that automate this process.Security as Code: Design and maintain custom security tools in Go to automate evidence collection for SOC 2, ISO 27001, and the remediation of security alerts.

Application Deadline: We are actively conducting interviews and aim to fill this position promptly as soon as we find the right candidate.THE OPPORTUNITYApollo Research is searching for a Senior Security Engineer to take full ownership of security protocols and practices within our organization. As the first dedicated security hire, you will play a crucial role in maintaining the trust of our innovative AI lab partners and supporting our research mission. This position is embedded within the engineering team and reports directly to the CEO.YOUR RESPONSIBILITIES WILL INCLUDE- Establishing and leading Apollo's security program. You will create and manage the security roadmap, perform risk assessments, and adapt the program as the organization evolves, defining the security posture in relation to our size, threat model, and partner relationships.- Fostering trust with our AI lab partners. You will be the primary contact for security teams of our partners, building relationships with their CISOs, and ensuring our security practices are documented and meet the necessary standards for our partnerships.- Setting security strategies for engineering. You will define security principles and an AppSec strategy that the engineering team will adopt, creating efficient pathways for secure development.- Defining the use of AI tools and integrations at Apollo. You will determine approved tools, data handling procedures, and vetting processes for new technologies, ensuring a balance between security and the need for cutting-edge research tools.- Managing our security tooling stack and automating operations. You will select, implement, and oversee security controls such as EDR/MDR, endpoint management, email protection, and identity management, while automating processes wherever feasible.- Leading compliance and certification efforts. You will spearhead certification initiatives (ISO 27001, SOC 2) as required, integrating compliance into our security practices.- Managing IT administration across the organization. You will oversee Google Workspace and other IT resources.

At Engine by Starling, we prioritize security as a vital component of our engineering practice. As a Senior Cloud Security Engineer, you will play a critical role in shaping the security architecture of our multi-tenant core banking platform. Your responsibilities will include writing code, automating security defenses, and ensuring our infrastructure across AWS and GCP is secure by design and compliant by default.Your MissionIn this dynamic role, you will lead initiatives to strengthen both our infrastructure and application platforms. You'll tackle complex security challenges through code, focusing on three key areas:Identity & Network Security: Develop robust IAM controls and implement zero-trust network architectures. You will refine edge-defense strategies ensuring every request is validated and encrypted.Unified Vulnerability Orchestration: Create a custom dashboard for security data by engineering API integrations between scanning tools, dependency trackers, and internal portals to establish a streamlined, automated vulnerability ecosystem.Compliance as Code: Align technical execution with regulatory requirements. Build automated systems that deliver real-time evidence for compliance frameworks such as SOC 2, ISO 27001 & PCI, reducing manual overhead.Your TeamYou will be a vital member of our expanding Security Engineering team, collaborating closely with our Infrastructure, Cross-Cutting, Information Security, and GRC teams. At Engine, we believe security should be integral to every technical process, not an afterthought. You will work collaboratively with engineers across the organization to create a resilient platform against evolving threats.About YouWe are seeking experienced Cloud Security Engineers, but we also welcome talented Software Engineers with strong programming skills who are eager to apply their expertise to security challenges. Engine engineers are driven by impact and high-quality outcomes, irrespective of their original tech stack. Whether you are a security specialist or a developer with a

ABOUT AvolutionJoin Avolution, a prestigious global leader in Enterprise Architecture Software with over 20 years of experience. Our established presence spans across London, Sydney, Northern Virginia, and Singapore, and we are recognized in the Gartner Magic Quadrant as an industry frontrunner. Become part of our intelligent, friendly team, where your skills and initiative will drive our growth while enjoying a culture rated as collegial, collaborative, flexible, and supportive by our employees.Key ResponsibilitiesCloud & Infrastructure SecurityDesign, manage, and enhance security configurations across Azure and AWS environments, ensuring seamless integration with Office 365.Implement and enforce industry best practices for identity and access management (IAM) in Azure AD (Entra ID) and AWS IAM.Monitor cloud workloads for vulnerabilities, misconfigurations, and threats utilizing tools such as Microsoft Defender.Collaborate with DevOps/Engineering teams to embed security controls into CI/CD pipelines, advocating for DevSecOps principles.Conduct thorough security assessments, including aiding in penetration testing and risk evaluations to identify and mitigate potential vulnerabilities.Endpoint & Identity SecurityEnhance device posture, compliance, and management utilizing Microsoft Intune and Defender for Endpoint.Develop and maintain solid conditional access, multi-factor authentication (MFA), and endpoint protection policies.Oversee secure identity lifecycle processes, enforcing least-privilege access and zero-trust principles.Security OperationsRespond promptly to security alerts, incidents, and vulnerabilities with thorough investigations and remediation actions.Perform regular risk assessments, security reviews, and internal audits.Manage and optimize security tools, including SIEM, EDR, vulnerability scanners, and the Microsoft Defender suite.Lead incident response efforts and coordinate with cross-functional teams.Compliance & GovernanceSupport ISO 27001:2022 recertification and ongoing compliance activities, including internal audits.Prepare for and assist in obtaining additional compliance certifications (e.g., SOC 2, GDPR) to facilitate company growth.Develop, maintain, and enhance security policies, procedures, and technical documentation.Track, report on, and address audit findings or compliance gaps.Collaboration & CulturePartner with globally distributed teams across EMEA, AMER, and APAC regions.Educate internal teams on security best practices and cultivate a security-first culture through training and awareness initiatives.

Abound is changing how consumer lending works in the UK and beyond. By combining advanced AI with Open Banking data, the company looks at a person’s complete financial situation, not just a credit score, to make lending decisions that are fairer and more accurate. Since launch, Abound has issued over £1.3bn in loans, with a credit performance that outpaces industry averages. The company became profitable within 2.5 years and has backing from major investors, including Citi and Deutsche Bank. With over £2bn in funding, Abound is recognized as one of Europe’s fastest-growing fintechs. Role overview This Senior Security Engineer position is based in London and sits within the Platform team. The role blends DevSecOps responsibilities, serving as a bridge between product engineering and Corporate IT. As a hands-on contributor, the Senior Security Engineer critically reviews security architecture across both production and internal IT environments. During the first 6 to 12 months, the focus will be on designing and implementing next-generation cloud security architecture in AWS and GCP. The role also involves building and maturing internal SOC capabilities, particularly around detection and response. What you will do Manage Microsoft Sentinel to strengthen SIEM/SOAR capabilities Automate RBAC for identity and access management across AWS, Microsoft Entra, and internal systems Embed security controls into GitLab CI/CD pipelines, including scanning, infrastructure-as-code reviews, and automated policy enforcement Support a shift-left approach by integrating security throughout the software development lifecycle Technology stack Cloud & Compute: AWS, ECS Fargate, Aurora, Lambda, GCP Data Lake: S3, DMS, Glue Security & Identity: Microsoft Defender (XDR), Microsoft Sentinel (SIEM/SOAR), Defender for Cloud (CSPM), Microsoft 365, Entra, Intune Cloud Security Tooling: GuardDuty, Security Hub, Inspector, Security Command Center Code & Infrastructure: Terraform, GitLab CI/CD

Join Us in Shaping the Future of Cyber Security.At Quantexa, we believe in the power of innovation and continuous improvement. Our mission is to forge meaningful relationships with our clients and drive impactful change across various industries. With a diverse workforce comprising over 50 nationalities and 20 languages spoken, we foster an inclusive environment where every voice matters. Here, you will find the autonomy and support needed to craft a career that aligns with your aspirations.The Role.We are seeking a proactive and technically skilled Cyber Security Engineer to join our Security Operations team. In this hands-on role, you will be instrumental in safeguarding Quantexa's digital assets. Your responsibilities will include the operational management, optimization, and monitoring of essential security platforms, focusing on Zscaler, cloud monitoring via Wiz, and endpoint detection and response through CrowdStrike.Collaborating closely with the broader Security Operations team, you will ensure that security alerts, findings, and detections are efficiently triaged, validated, documented, and remediated. Your contributions will directly enhance Quantexa's security posture by minimizing risk, bolstering detection capabilities, and ensuring timely responses to security incidents.This position is ideal for a curious and detail-oriented professional who thrives on working with cutting-edge security tools, embraces disciplined execution, and seeks opportunities for ongoing improvement.Your Responsibilities.Wiz (Cloud Security Posture Management)Daily monitoring and triaging of Wiz findings, validating alerts and assessing operational impact.Engaging in tuning and threat hunting within Wiz and other security tools.Identifying misconfigurations, excessive permissions, and exposed assets while escalating issues as necessary.Tracking remediation progress with engineering teams and ensuring the resolution of high-priority issues.Zscaler (Web Security Tunnel 2.0)Reviewing and triaging Zscaler alerts and policy violations according to documented response procedures.Investigating suspicious traffic, access attempts, and user activity to determine legitimacy.

Join the pioneering force in cloud security at Wiz, where we empower businesses to excel in the cloud. Recognized as the fastest-growing startup ever, we are on a mission to enhance the security of cloud environments, enabling organizations to accelerate their growth. Trusted by security teams globally, we boast a solid track record of success and a culture that champions exceptional talent.Our diverse team, comprising Wizards from over 20 countries, collaborates to safeguard the infrastructure of hundreds of clients, including more than half of the Fortune 100. We scan and secure over 230 billion files each day. As a leading player in a rapidly expanding market, this is your opportunity to make a profound impact. At Wiz, you’ll have the creative freedom to innovate and fully utilize your skills to contribute to our remarkable growth. Join us in crafting secure cloud environments that empower top companies to move swiftly.SUMMARYWe are seeking a skilled AI Security Researcher to become an integral part of Wiz’s risk-driven approach to cloud security. This position demands extensive technical research into intricate cloud and AI-native environments to uncover the most critical, unaddressed risks.WHAT YOU’LL DOConduct in-depth technical research to identify and report new risks and attack vectors specific to modern cloud- and AI-native architectures.Identify and communicate the most significant unaddressed risk areas, collaborating with Product and Engineering teams to translate research into actionable product features.Establish essential foundational product capabilities through compelling proofs of risk (demonstrating impact) and technical proofs of concept (showing solutions).Collaborate closely with Product and Engineering teams to guarantee comprehensive risk coverage and support the development of innovative security solutions.

Join Our Team at Motorway!Motorway is the UK's leading online marketplace for used cars, connecting private sellers with thousands of trusted dealers across the nation. Launched in 2017, our innovative approach has transformed the car selling experience, and we are proud to be backed by top-tier technology investors, having secured £143 million in Series C financing.This is an exceptional opportunity to become part of a rapidly growing scale-up during a pivotal moment in our expansion, contributing to positive change in the automotive industry.Your Role:As a Senior Developer Experience Security Engineer, you will play a crucial role in enhancing the security and scalability of our developer experience at Motorway. Our team is focused on building a new container platform utilizing AWS Fargate, and we are dedicated to improving our observability, reliability, and developer-centric tools.You will bridge the gap between the Developer Experience and Security Operations teams, ensuring that security strategies are seamlessly integrated into our platform abstractions, tools, and configurations. Your mission is to make the secure path the easiest path for our engineers as they build, deploy, and operate software.Key Responsibilities:Design, implement, and maintain secure-by-default platform capabilities, including IAM patterns, network primitives, secrets management, runtime protections, and encryption, that are user-friendly for product teams.Develop automated security checks and guardrails to enhance our security posture.

Join Our Team as an Azure Cloud EngineerAppvia is seeking a talented Azure Cloud Engineer to join our expanding Azure practice in London. This position requires eligibility for UK Security Clearance.Location: London, UK (Hybrid - approximately 1-2 days per week in the office)Contract: Permanent, Full-timeSalary Package: £50,000 – £60,000 + 10% bonus + 10% shares + comprehensive benefitsAbout AppviaAt Appvia, we specialize in cloud platform engineering and AI enablement, empowering organizations to design, build, and operate modern cloud platforms at scale. Our collaborations with public and private sector entities focus on modernizing infrastructure, enhancing developer productivity, and instilling robust platform engineering practices. Our expertise spans across AWS, Azure, Data & AI, and software delivery, assisting clients in adopting cloud-native methodologies that facilitate reliable and scalable digital services.Your RoleAs a mid-level Azure Cloud Engineer, you will bridge traditional cloud engineering, Site Reliability Engineering (SRE), and platform engineering, ensuring the reliability, automation, and daily operation of modern Azure environments. Collaborate closely with senior platform engineers to maintain, improve, and automate cloud infrastructures, while supporting development teams working on Azure. A pivotal aspect of your role will involve utilizing Terraform and Azure Kubernetes Service (AKS) to ensure platform stability, security, and scalability, contributing to ongoing enhancements in automation and delivery.This position is designed as a growth pathway into Platform Engineering, providing opportunities to deepen your expertise in infrastructure automation, Kubernetes, and contemporary DevOps practices while learning from seasoned consultants and engineers.Interview ProcessInitial discovery conversation with Talent AcquisitionTechnical assessment interview with the Engineering teamFinal interview with Engineering LeadershipWho You AreYou are an engineer passionate about resolving infrastructure and reliability challenges while continuously enhancing automation and operational protocols. You likely possess:Experience with Microsoft Azure environmentsFamiliarity with Terraform or similar Infrastructure-as-Code toolsExperience with containerization and AKSA keen interest in DevOps, platform engineering, and cloud automationExcellent communication skills and the ability to collaborate effectively with engineering teamsYour curiosity, pragmatism, and ambition to evolve into a more senior platform engineering role will make you a valuable addition to our team.

* Fully remote from the UK * Innovative Ideas. Real People. At Orca Security, we believe that in the right environment and with the right team, talent knows no boundaries. Our collaborative spirit, combined with our ambition to continuously push limits, has swiftly propelled us to unicorn status, establishing us as a global frontrunner in cloud security innovation. If you're eager to join an extraordinary team that motivates one another daily, now is the perfect moment to find your place within our group. We are on the lookout for passionate and talented individuals like you to become a part of our R&D organization and contribute to our mission of reshaping the future of cloud security. Are you ready to take the plunge and swim with our pod? Position Highlights Rapid Growth: Over the last seven years, we have accomplished milestones that typically take other companies a decade or more. During this time, we’ve significantly expanded our workforce, broadened our customer base, and quickly enhanced our product capabilities. Disruptive Innovation: Our founders recognized that traditional security solutions were inadequate for the cloud, prompting them to forge a new path. We are relentless pioneers who have developed agentless technology and continue to lead as the most comprehensive and innovative cloud security company. Robust Financial Backing: With a valuation of $1.8 billion, Orca is a cybersecurity unicorn that dominates the cloud security sector. We are supported by a remarkable group of investors, including Capital G, ICONIQ, GGV, and SVCI—a collective of CISOs who invest their own funds following thorough due diligence. Respectful and Transparent Culture: Our executives take pride in their accessibility and believe in sharing knowledge with all employees. Every team member plays a crucial role in shaping the future of our industry. About the Role As a Senior Software Engineer on the DSEC (Data & AI Security) team at Orca Security, you will be part of a vital group dedicated to safeguarding customer data and AI assets at scale. The team is responsible for scanning and analyzing a wide array of data stores and AI services—from managed databases and container images to object storage buckets and virtual machines (VMs)—to uncover sensitive data, keys, personally identifiable information (PII), and misconfigurations. You will also have the opportunity to map, model, and assess cloud AI services, providing customers with clear visibility and security insights across their data and AI landscape. This role is ideal for those who are excited about building the infrastructure that supports our Data Security Posture Management (DSPM) and AI security capabilities. You will be instrumental in helping shape the future of cloud security.

About The Dot CollectiveWe are an innovative consultancy operating across the UK and EU, dedicated to engineering excellence and empowering individuals to create significant impacts.Our projects utilize modern technology stacks and follow agile scrum methodologies.About YouAre you excited about the transformative power of data? Do you thrive on making substantial contributions in a short timeframe? If so, you might be the perfect fit for our team.

About the RoleJoin Woozle Research as an Associate Director in our dynamic London or Glasgow office. This pivotal leadership role is designed for seasoned professionals eager to influence high-caliber primary research utilized by leading hedge funds, private equity firms, and consultancies worldwide.Your key responsibilities include leading a team of Analysts and Associates, ensuring our deliverables consistently surpass client expectations, and nurturing lasting partnerships with investors and decision-makers.If you are passionate about guiding teams, enhancing client relationships, and delivering impactful market insights, we want to hear from you!

Join Us in Empowering the UK's Small Businesses At Funding Circle, we believe that small businesses are the backbone of the economy, and our mission is to provide them with the support they need to thrive. Our innovative platform leverages advanced data analytics to facilitate rapid access to funding, ensuring that our clients can secure the resources they need in mere minutes.Combining the agility of a fintech startup with the reliability of a publicly traded company, we offer Circlers the independence to take initiative while making a significant impact on the industry.We take pride in our high-performance culture, where collaboration and support are at the forefront. We uplift one another, challenge the status quo, and succeed together because we understand that unity accelerates progress and innovation.Your Contribution Matters: Last year alone, our platform enabled businesses to generate £7.2 billion for the UK economy Join us in making a difference![Explore Our Impact Report] | [Check Our Trustpilot]Your Role Location: London (Hybrid) | Work Schedule: 2 days in-office | Salary: Competitive + BenefitsLead the definition, advocacy, and integration of secure software development lifecycle (SSDLC) practices and secure coding standards throughout engineering teams via collaboration, training, and the use of tools.Conduct threat modeling exercises for cloud-native applications, microservices, and various infrastructure components.Oversee internal and external penetration testing engagements for Funding Circle's applications, services, and cloud infrastructure.Work closely with Cloud Platform Engineers, DevX, and Product Engineering to embed security requirements into system designs and technology choices from the beginning.Serve as a subject matter expert in DevSecOps, application security, and cloud security (AWS), offering guidance and mentorship to fellow engineers.Drive the implementation of security automation across cloud infrastructure configuration, vulnerability management, and compliance monitoring.Design, implement, and promote the adoption of robust security architectures, controls, and best practices within our AWS cloud environment.