Senior Security Engineer - Vulnerability Team

Embrace Innovation and CollaborationWhen we started, cloud computing and API integration were still emerging concepts. However, we boldly transitioned from outdated systems to modern technology, sparking a wave of true innovation that continues to thrive.At ClearBank, we foster an egalitarian environment devoid of rigid hierarchies and egos, focusing instead on a collaborative spirit that permeates our organization. We value each other’s insights and experiences, especially as they contribute to achieving our collective goals.Here at ClearBank, we take action. We tackle challenges together, understanding that collaboration leads to superior solutions. Our unique culture thrives on diverse perspectives, and we believe that the ability to respectfully disagree and commit is vital for our advancement. Ultimately, our strength lies in our teamwork—success is much sweeter when shared.What Awaits You:ClearBank is a place where innovation is encouraged, and challenging the status quo is welcomed. We offer you a high degree of autonomy and transparency, trusting you to make informed decisions that benefit the bank.If this excites you, consider joining our Security Engineering team as an Engineering Manager, reporting to the Director of Application Security. You will lead a team dedicated to mitigating cyber risks for ClearBank and promoting the adoption of security best practices. This cross-functional role involves collaborating with various teams across the organization. We maintain close partnerships with our technology leadership to integrate security throughout our deliverables. Our team operates primarily remotely, with members located throughout the UK.ClearBank is dedicated to leveraging state-of-the-art technologies, including AI, AKS, automation, and scalable solutions, to maintain a competitive advantage in the market. Our mission is to ensure these innovations are implemented securely, allowing the business to progress confidently.As the Security Engineering Manager, you will lead a team of security engineers, overseeing recruitment, retention, and their professional development. You will play a strategic role in information security alongside peers in SOC, GRC, and IAM, shaping the strategy to secure an international banking institution and establishing a robust and scalable security engineering practice.

Join Deliveroo as a Senior Engineering Manager in our Proactive Security team. In this pivotal role, you will lead a talented team of engineers dedicated to enhancing our security posture and proactively addressing cyber threats. You will spearhead innovative projects, providing both technical leadership and strategic direction to ensure the safety and integrity of our systems.

Abound is changing how consumer lending works in the UK and beyond. By combining advanced AI with Open Banking data, the company looks at a person’s complete financial situation, not just a credit score, to make lending decisions that are fairer and more accurate. Since launch, Abound has issued over £1.3bn in loans, with a credit performance that outpaces industry averages. The company became profitable within 2.5 years and has backing from major investors, including Citi and Deutsche Bank. With over £2bn in funding, Abound is recognized as one of Europe’s fastest-growing fintechs. Role overview This Senior Security Engineer position is based in London and sits within the Platform team. The role blends DevSecOps responsibilities, serving as a bridge between product engineering and Corporate IT. As a hands-on contributor, the Senior Security Engineer critically reviews security architecture across both production and internal IT environments. During the first 6 to 12 months, the focus will be on designing and implementing next-generation cloud security architecture in AWS and GCP. The role also involves building and maturing internal SOC capabilities, particularly around detection and response. What you will do Manage Microsoft Sentinel to strengthen SIEM/SOAR capabilities Automate RBAC for identity and access management across AWS, Microsoft Entra, and internal systems Embed security controls into GitLab CI/CD pipelines, including scanning, infrastructure-as-code reviews, and automated policy enforcement Support a shift-left approach by integrating security throughout the software development lifecycle Technology stack Cloud & Compute: AWS, ECS Fargate, Aurora, Lambda, GCP Data Lake: S3, DMS, Glue Security & Identity: Microsoft Defender (XDR), Microsoft Sentinel (SIEM/SOAR), Defender for Cloud (CSPM), Microsoft 365, Entra, Intune Cloud Security Tooling: GuardDuty, Security Hub, Inspector, Security Command Center Code & Infrastructure: Terraform, GitLab CI/CD

airapps is hiring a Security Engineer to help safeguard digital assets and infrastructure in the London Metropolitan Area. This role centers on identifying weaknesses, managing security risks, and ensuring strong security measures are in place. Key responsibilities Identify vulnerabilities throughout information systems Reduce and address security risks as they arise Implement and maintain effective security protocols Support efforts to comply with relevant industry standards Help strengthen the company’s overall security posture Location This position is based in the London Metropolitan Area.

ABOUT AvolutionJoin Avolution, a prestigious global leader in Enterprise Architecture Software with over 20 years of experience. Our established presence spans across London, Sydney, Northern Virginia, and Singapore, and we are recognized in the Gartner Magic Quadrant as an industry frontrunner. Become part of our intelligent, friendly team, where your skills and initiative will drive our growth while enjoying a culture rated as collegial, collaborative, flexible, and supportive by our employees.Key ResponsibilitiesCloud & Infrastructure SecurityDesign, manage, and enhance security configurations across Azure and AWS environments, ensuring seamless integration with Office 365.Implement and enforce industry best practices for identity and access management (IAM) in Azure AD (Entra ID) and AWS IAM.Monitor cloud workloads for vulnerabilities, misconfigurations, and threats utilizing tools such as Microsoft Defender.Collaborate with DevOps/Engineering teams to embed security controls into CI/CD pipelines, advocating for DevSecOps principles.Conduct thorough security assessments, including aiding in penetration testing and risk evaluations to identify and mitigate potential vulnerabilities.Endpoint & Identity SecurityEnhance device posture, compliance, and management utilizing Microsoft Intune and Defender for Endpoint.Develop and maintain solid conditional access, multi-factor authentication (MFA), and endpoint protection policies.Oversee secure identity lifecycle processes, enforcing least-privilege access and zero-trust principles.Security OperationsRespond promptly to security alerts, incidents, and vulnerabilities with thorough investigations and remediation actions.Perform regular risk assessments, security reviews, and internal audits.Manage and optimize security tools, including SIEM, EDR, vulnerability scanners, and the Microsoft Defender suite.Lead incident response efforts and coordinate with cross-functional teams.Compliance & GovernanceSupport ISO 27001:2022 recertification and ongoing compliance activities, including internal audits.Prepare for and assist in obtaining additional compliance certifications (e.g., SOC 2, GDPR) to facilitate company growth.Develop, maintain, and enhance security policies, procedures, and technical documentation.Track, report on, and address audit findings or compliance gaps.Collaboration & CulturePartner with globally distributed teams across EMEA, AMER, and APAC regions.Educate internal teams on security best practices and cultivate a security-first culture through training and awareness initiatives.

Role Overview Aircall is looking for a Security Engineer focused on Product Security to help protect our products and platform. This role is based in our London office. What You Will Do Work with teams across engineering, product, and other functions to spot vulnerabilities and address them early in the development process. Implement security measures that fit our product development lifecycle. Lead security initiatives that strengthen customer trust and protect sensitive data. Support efforts to keep our security standards high as our platform evolves. Impact This role directly shapes the security of Aircall’s products and the safety of customer data. The work supports our commitment to strong security practices and helps maintain trust with our users.

Join Us in Shaping the Future of Cyber Security.At Quantexa, we believe in the power of innovation and continuous improvement. Our mission is to forge meaningful relationships with our clients and drive impactful change across various industries. With a diverse workforce comprising over 50 nationalities and 20 languages spoken, we foster an inclusive environment where every voice matters. Here, you will find the autonomy and support needed to craft a career that aligns with your aspirations.The Role.We are seeking a proactive and technically skilled Cyber Security Engineer to join our Security Operations team. In this hands-on role, you will be instrumental in safeguarding Quantexa's digital assets. Your responsibilities will include the operational management, optimization, and monitoring of essential security platforms, focusing on Zscaler, cloud monitoring via Wiz, and endpoint detection and response through CrowdStrike.Collaborating closely with the broader Security Operations team, you will ensure that security alerts, findings, and detections are efficiently triaged, validated, documented, and remediated. Your contributions will directly enhance Quantexa's security posture by minimizing risk, bolstering detection capabilities, and ensuring timely responses to security incidents.This position is ideal for a curious and detail-oriented professional who thrives on working with cutting-edge security tools, embraces disciplined execution, and seeks opportunities for ongoing improvement.Your Responsibilities.Wiz (Cloud Security Posture Management)Daily monitoring and triaging of Wiz findings, validating alerts and assessing operational impact.Engaging in tuning and threat hunting within Wiz and other security tools.Identifying misconfigurations, excessive permissions, and exposed assets while escalating issues as necessary.Tracking remediation progress with engineering teams and ensuring the resolution of high-priority issues.Zscaler (Web Security Tunnel 2.0)Reviewing and triaging Zscaler alerts and policy violations according to documented response procedures.Investigating suspicious traffic, access attempts, and user activity to determine legitimacy.

At Intercom, we are revolutionizing customer service through the power of artificial intelligence. Our innovative AI agent, Fin, stands as the most advanced customer service AI available, enabling businesses to offer impeccable, round-the-clock support that enhances customer experiences. Fin seamlessly integrates with our Helpdesk to form the comprehensive Intercom Customer Service Suite, which is designed to handle complex queries that necessitate human intervention.Founded in 2011 and serving nearly 30,000 businesses globally, Intercom is raising the bar for customer service excellence. Our core values drive us to push boundaries, build with speed and intensity, and consistently deliver exceptional value to our clients.What’s the Opportunity?Join the Security Engineering Group at Intercom as we ensure that our Research and Development teams deliver secure software while maintaining safe development environments. As the Engineering Manager for the Application Security team, you will oversee the security and trust for over 25,000 businesses by setting high security standards for our products.What Will I Be Doing?In the role of Engineering Manager for a multi-disciplinary security engineering team, you will:Take responsibility for the security of Intercom's Software Development Lifecycle, implementing security controls to enable rapid development of secure applications.Lead security assessments of product features, collaborating with engineering teams to uncover and mitigate security vulnerabilities.Manage product security features, assisting customers in maintaining a robust security posture while using the Intercom platform.Oversee security incidents at Intercom, guiding investigations and implementing improvements to mitigate future risks.Collaborate with key stakeholders across InfoSec and engineering teams to define and realize our security vision, strategy, and roadmaps for the Intercom product.Lead a globally distributed team of product and security engineers to foster a collaborative culture that achieves high productivity, performance, and reliability.Contribute to the evolution of our engineering culture by engaging with our engineering organization programs.

About the Position Jane Street is seeking a skilled Identity Security Engineer with expertise in engineering hybrid Windows platforms to become a vital member of our expanding team. Our IT Security team is committed to safeguarding access to Jane Street's IT systems. In this role, you will be instrumental in enhancing the organization's security posture through a blend of hands-on technical work and collaborative efforts with cross-functional engineering teams to initiate transformative security projects. Key Responsibilities: Serve as a technical security authority, offering insights on EntraID, M365, Azure tools, and security best practices. Lead the implementation and validation of robust security controls to minimize attack pathways between on-premises and external platforms. Identify security vulnerabilities and recommend operational improvements to meet our security standards. Provide technical guidance and influence cross-functional technology teams to facilitate cloud adoption. We are looking for an individual ready to make an immediate impact, capable of prioritizing work in a fast-paced environment. This position is more than just execution; we will rely on your judgment and quick thinking to guide our remediation and mitigation strategies for our Windows infrastructure. Your decisions will have far-reaching implications across the firm. About You: Possess a solid understanding of Microsoft security policies and configurations across Microsoft cloud services (SaaS/PaaS), IAM, and Privilege Access Management. Exhibit a strong grasp of industry-standard SSO technologies and authentication protocols (OpenID Connect, SAML, OAuth, Kerberos, LDAP, etc.). Have experience designing, implementing, and supporting Microsoft security infrastructure in live environments. Provide security recommendations regarding certificate policies, templates, and key sizes to uphold secure cryptographic standards. Manage and secure Azure resources utilizing a code-driven methodology. Be eager to develop scalable and repeatable security practices through automation, including certificate enrollment and renewal processes. Fluent in English. If you are a recruiting agency interested in partnering with us, please reach out to agency-partnerships@janestreet.com.

Join our dynamic team at Lendable as a Cyber Security Engineer, where you will play a pivotal role in safeguarding our digital assets and ensuring the integrity of our systems. In this position, you will be responsible for the design, implementation, and maintenance of security protocols across our network and applications. You will work closely with cross-functional teams to identify vulnerabilities and develop strategies to mitigate risks.

Jobs for Humanity is hiring a Security Manager in London. This role centers on leading and improving security operations to protect both people and property across the organization. Role overview The Security Manager will oversee daily security activities, working to maintain a safe environment for employees and safeguard company assets. The position calls for a proactive approach to identifying and addressing potential risks. What you will do Supervise and enhance security operations throughout the organization Ensure the safety of staff and physical assets Implement and update security policies as needed Requirements Proven experience in security management Strong motivation and attention to detail Ability to take ownership of security operations

Application Deadline: We are actively conducting interviews and aim to fill this position promptly as soon as we find the right candidate.THE OPPORTUNITYApollo Research is searching for a Senior Security Engineer to take full ownership of security protocols and practices within our organization. As the first dedicated security hire, you will play a crucial role in maintaining the trust of our innovative AI lab partners and supporting our research mission. This position is embedded within the engineering team and reports directly to the CEO.YOUR RESPONSIBILITIES WILL INCLUDE- Establishing and leading Apollo's security program. You will create and manage the security roadmap, perform risk assessments, and adapt the program as the organization evolves, defining the security posture in relation to our size, threat model, and partner relationships.- Fostering trust with our AI lab partners. You will be the primary contact for security teams of our partners, building relationships with their CISOs, and ensuring our security practices are documented and meet the necessary standards for our partnerships.- Setting security strategies for engineering. You will define security principles and an AppSec strategy that the engineering team will adopt, creating efficient pathways for secure development.- Defining the use of AI tools and integrations at Apollo. You will determine approved tools, data handling procedures, and vetting processes for new technologies, ensuring a balance between security and the need for cutting-edge research tools.- Managing our security tooling stack and automating operations. You will select, implement, and oversee security controls such as EDR/MDR, endpoint management, email protection, and identity management, while automating processes wherever feasible.- Leading compliance and certification efforts. You will spearhead certification initiatives (ISO 27001, SOC 2) as required, integrating compliance into our security practices.- Managing IT administration across the organization. You will oversee Google Workspace and other IT resources.

Why Join Deliveroo?At Deliveroo, our mission is to revolutionize how people shop and dine by seamlessly connecting consumers, restaurants, shops, and delivery riders. We strive to make food and product accessibility more convenient and enjoyable, empowering individuals to purchase what they want, when and where they desire.As a forward-thinking, technology-driven organization, we are leading the charge in one of the fastest-growing industries globally. Our small team is making a significant impact as we tackle some of the most fascinating challenges. We prioritize speed, autonomy, and innovative ideas, continuously seeking fresh perspectives.About the RoleIn the role of Senior Security Engineer, you will spearhead the development and implementation of security measures that safeguard our internal networks, workforce identities, endpoints, and corporate systems. Collaborating with security teams across the US, EU, and APAC, you will aim to minimize risk and enhance our security controls.Operating with significant independence, you will define the technical strategy, make architectural decisions, and oversee the execution of complex security projects from start to finish. Your focus will be on balancing risk mitigation with user experience, ensuring that security measures are effective without hindering employee productivity.This position emphasizes Identity and Access Management (IAM), Endpoint Security (EDR), Network Security, logging and detection engineering, and secure SaaS enablement. You will collaborate closely with IT, Legal, Privacy, Engineering, and business stakeholders to ensure that security is integrated as a fundamental practice across the organization.Our security protocols are aligned with recognized frameworks such as the CIS Critical Security Controls and the NIST Cybersecurity Framework (CSF).

Join Checkatrade as a Senior Security Engineer and play a pivotal role in safeguarding our systems and data. In this position, you will be responsible for designing and implementing robust security measures, monitoring potential threats, and ensuring compliance with industry standards. We seek a proactive individual who thrives in a fast-paced environment and is dedicated to continuous improvement.

Join our dynamic team at Blockchain as an Infrastructure Security Engineer. In this pivotal role, you will be responsible for designing, implementing, and maintaining robust security architectures to safeguard our cutting-edge blockchain technologies. Your expertise will be essential in identifying vulnerabilities, managing security incidents, and ensuring compliance with industry standards.We are looking for a passionate individual who thrives in a fast-paced environment and is eager to contribute to the future of decentralized technologies.

Causaly develops an AI-powered platform designed to help researchers and decision-makers in biomedicine quickly find and interpret evidence from scientific publications, clinical trials, regulatory documents, and complex data sources. The company’s mission centers on building a high-precision Knowledge Graph and applying generative AI to advance biomedical knowledge. Leading biopharmaceutical organizations use Causaly’s technology to accelerate drug discovery, improve safety, and support informed decisions. With backing from investors such as ICONIQ, Index Ventures, Pentech, and Marathon, Causaly continues to expand its product offerings and market reach. Role overview The Senior Security Engineer position at Causaly is based in London and offers the chance to shape the company’s security strategy and processes. This role provides significant autonomy and involves working closely with the security team, as well as collaborating across engineering and product groups. The Security Engineer will take ownership of vulnerability management, advise teams on security matters, and support SecOps activities. Expect to define strategies, build and refine processes, and serve as a trusted advisor throughout the engineering organization. Key responsibilities Lead the vulnerability management program: set strategy, select tools, prioritize work, and track remediation for dependencies, containers, and cloud infrastructure. Develop and maintain a dependency security strategy, including policies for third-party library use and update schedules. Integrate and manage security tools within CI/CD pipelines, such as SAST, SCA, secrets detection, and container scanning. Act as a security consultant for product and engineering teams, supporting design reviews, architecture decisions, and secure coding practices. Define and maintain security standards and guidelines that are practical for development teams. Oversee and improve the Security Champions program to build security awareness and skills across engineering teams. Support SecOps with incident triage and response, providing security engineering expertise when needed.

About Anaplan Anaplan builds an AI-powered scenario planning and analytics platform that helps organizations make sharper business decisions. Over 2,400 global companies, including names like Coca-Cola, LinkedIn, Adobe, LVMH, and Bayer, rely on Anaplan to stay competitive and navigate changing markets. The team values diverse perspectives, sets ambitious goals, and celebrates progress of all sizes. Anaplan’s culture emphasizes customer success, leadership at every level, and disciplined execution. Employees find opportunities for growth, connection, and recognition. Role Overview: Senior Product Security Engineer Location: London, United Kingdom This role focuses on strengthening security across Anaplan’s products and operations. The Senior Product Security Engineer leads initiatives to reduce risk, partners with teams across the company, and helps shape the security strategy. Main Responsibilities Design, lead, and implement security programs that address key risks and deliver on security goals. Translate findings from security assessments into practical projects that improve security at scale. Work with both technical and non-technical teams to embed security controls and encourage secure practices throughout the company. Define and track metrics to show the impact and effectiveness of security programs. Manage stakeholder expectations, using problem-solving and negotiation skills to build trust across teams. Support innovation and proof-of-concept work within the security function, helping teams focus on the right priorities. Collaborate with cross-functional groups to advance security objectives. Partner with the CISO to prepare executive reports, status updates, and company-wide communications, ensuring visibility into important security milestones and risks.

At Menlo Security, we are dedicated to empowering secure connections, communications, and collaborations worldwide. Our mission has become increasingly vital in the current landscape shaped by COVID-19. We proudly serve a diverse clientele, including Fortune 500 companies, 9 out of the 10 largest global banks, and the Department of Defense.As we transition from a team of 400 towards our next growth phase, we seek passionate individuals who exhibit empathy and adaptability. The ideal candidate will possess a strong ethical foundation, exceptional organizational skills, and a commitment to service. A willingness to both give and receive constructive feedback is essential.Backed by industry-leading investors such as Vista Equity Partners, General Catalyst, JPMC, American Express, HSBC, and Ericsson Ventures, Menlo is poised for significant growth.Position Overview:The Senior Security Engineer will play a crucial role in safeguarding our organization’s digital assets, infrastructure, and data. Responsibilities include designing, implementing, and maintaining security systems and controls, managing security tools, conducting risk assessments, responding to incidents, and ensuring compliance with relevant security standards. This position involves close collaboration with various teams within Menlo to promote security best practices across all technological initiatives, thereby enhancing our security posture and resilience.Key Responsibilities:Security Operations & Monitoring:Oversee the SIEM platform and manage security alerts to identify, investigate, and respond to potential threats.Administer and optimize EDR solutions, specifically Crowdstrike, to ensure comprehensive endpoint protection.Lead incident response efforts, including investigation, containment, remediation, and post-incident analysis.Vulnerability & Risk Management:Oversee the vulnerability management program, including scanning, prioritization, and coordination of remediation efforts.Conduct risk assessments and formulate strategies for risk mitigation.

Role Overview Securitas is hiring a Site Security Manager in London. This role focuses on supervising and improving day-to-day security operations for client sites. The manager will work to maintain a safe environment for both people and property. What You Will Do Lead and support a team of security professionals on site Implement and maintain security protocols and procedures Work closely with clients to understand and address their security requirements Monitor operations to ensure high standards of safety and service Location London