Senior Software Engineer - Proactive Security

Join Our Team at Motorway!Motorway is the UK's leading online marketplace for used cars, connecting private sellers with thousands of trusted dealers across the nation. Launched in 2017, our innovative approach has transformed the car selling experience, and we are proud to be backed by top-tier technology investors, having secured £143 million in Series C financing.This is an exceptional opportunity to become part of a rapidly growing scale-up during a pivotal moment in our expansion, contributing to positive change in the automotive industry.Your Role:As a Senior Developer Experience Security Engineer, you will play a crucial role in enhancing the security and scalability of our developer experience at Motorway. Our team is focused on building a new container platform utilizing AWS Fargate, and we are dedicated to improving our observability, reliability, and developer-centric tools.You will bridge the gap between the Developer Experience and Security Operations teams, ensuring that security strategies are seamlessly integrated into our platform abstractions, tools, and configurations. Your mission is to make the secure path the easiest path for our engineers as they build, deploy, and operate software.Key Responsibilities:Design, implement, and maintain secure-by-default platform capabilities, including IAM patterns, network primitives, secrets management, runtime protections, and encryption, that are user-friendly for product teams.Develop automated security checks and guardrails to enhance our security posture.

Over 500 million downloads. 80 million monthly users. A decade of relentless innovation – and we’re just getting started.Flo is the leading health & fitness app globally, dedicated to transforming the future of female health. With a $200 million investment led by General Atlantic, we proudly became the first app in our sector to achieve a $1 billion valuation in 2024. Our journey continues unabated.With 7 million paid subscribers and the highest-rated user experience in the App Store’s health category, we have spent the last decade building trust on a grand scale. Now, we are pioneering the next generation of digital health technologies – AI-driven, privacy-centered, and clinically validated – to empower our users to better understand their bodies.Your RoleThe Challenge AheadAt Flo, we’re more than just an app; we’re a thriving global community. As the number one women’s health app, we experienced 8.6 million new installs in the last month, along with a 2.8 million increase in active users.This extraordinary growth demands top-tier engineering talent. We are on the lookout for a Senior Developer Experience Engineer to join our Velocity team, which focuses on enhancing our internal platform. Your objective will be to create the foundational tools that empower our engineering teams to deploy code more efficiently, securely, and at a scale that most engineers rarely encounter.Your Mission: VelocityThe Velocity team aims to minimize friction in the development process. We see our internal developers as our primary customers. Your responsibilities will include:Simplifying Complexity: Craft intuitive tools that facilitate self-service, allowing developers to concentrate on core product logic.Standardizing Excellence: Integrate best practices, security, observability, and scalability into our core infrastructure, ensuring they are fundamental, not just afterthoughts.Your ResponsibilitiesEnhancing Developer Experience: Develop self-service tools that grant product teams the autonomy they need without compromising system stability.Platform Engineering: Design and advance our core technology stack (AWS, EKS, Terraform, Ansible).Systems Resilience: Spearhead reliability initiatives, encompassing business continuity planning and a sustainable on-call strategy.Privacy at Scale: Bolster the infrastructure for industry-leading privacy features, such as our TIME-recognized "Anonymous Mode." Observability: Deploy cutting-edge monitoring solutions (metrics, logs, tracing) to ensure swift identification and resolution of issues.

Abound is changing how consumer lending works in the UK and beyond. By combining advanced AI with Open Banking data, the company looks at a person’s complete financial situation, not just a credit score, to make lending decisions that are fairer and more accurate. Since launch, Abound has issued over £1.3bn in loans, with a credit performance that outpaces industry averages. The company became profitable within 2.5 years and has backing from major investors, including Citi and Deutsche Bank. With over £2bn in funding, Abound is recognized as one of Europe’s fastest-growing fintechs. Role overview This Senior Security Engineer position is based in London and sits within the Platform team. The role blends DevSecOps responsibilities, serving as a bridge between product engineering and Corporate IT. As a hands-on contributor, the Senior Security Engineer critically reviews security architecture across both production and internal IT environments. During the first 6 to 12 months, the focus will be on designing and implementing next-generation cloud security architecture in AWS and GCP. The role also involves building and maturing internal SOC capabilities, particularly around detection and response. What you will do Manage Microsoft Sentinel to strengthen SIEM/SOAR capabilities Automate RBAC for identity and access management across AWS, Microsoft Entra, and internal systems Embed security controls into GitLab CI/CD pipelines, including scanning, infrastructure-as-code reviews, and automated policy enforcement Support a shift-left approach by integrating security throughout the software development lifecycle Technology stack Cloud & Compute: AWS, ECS Fargate, Aurora, Lambda, GCP Data Lake: S3, DMS, Glue Security & Identity: Microsoft Defender (XDR), Microsoft Sentinel (SIEM/SOAR), Defender for Cloud (CSPM), Microsoft 365, Entra, Intune Cloud Security Tooling: GuardDuty, Security Hub, Inspector, Security Command Center Code & Infrastructure: Terraform, GitLab CI/CD

Job Title: Engineer II Location: London / Bristol / Edinburgh (Hybrid options available) Salary: £45,600 - £62,700 Team: Developer Experience Reporting To: Senior Software Engineering Manager This position is based in the UK and candidates must possess the right to work in the UK. Currently, we are unable to offer visa sponsorship for this position. Our commitment to building a diverse, global team is paramount, and our sponsorship policy is assessed on a role-by-role basis. Please check back on our careers site for future opportunities that may include visa sponsorship. Kaluza is revolutionizing the energy sector with our Energy Intelligence Platform, simplifying the complexities of energy management. We assist energy companies in addressing contemporary challenges while propelling the transition to a sustainable, electrified future. Our platform facilitates millions of real-time decisions across households, devices, markets, and grids. By integrating predictive algorithms with user-centric design, Kaluza ensures that clean energy is reliable, affordable, and seamlessly integrates into daily life. With teams spread across Europe, North America, Asia, and Australia, and a joint venture with Mitsubishi Corporation in Japan, we empower leading companies such as OVO, AGL, and ENGIE, alongside innovators like Volvo and Volkswagen. Where will I be working? You will be part of the Developer Experience (DevEx) team within our expansive Kaluza Technology community. Our team comprises a diverse group of data-driven and product-oriented Software and Production Engineers who are at the forefront of technological innovation and operate at an impressive scale. Together, we pursue engineering excellence by implementing best practices throughout the community. In this role, you will be instrumental in designing and enhancing our Internal AI Engineering Platform. Your responsibilities will include creating the infrastructure—from Model Context Protocol (MCP) servers to collaborative workflows—that enables our software teams to operate more efficiently and securely. Your contributions will significantly influence Kaluza's ability to eradicate defects, enhance productivity, and set the benchmark for AI-driven development. Our tech stack is dynamic, and you may work with: AWS, Kubernetes, LLMs (Claude, GPT, etc.), MCP servers, LangChain/LangGraph, and contemporary monitoring tools.

Why Join Deliveroo?At Deliveroo, our mission is to revolutionize how people shop and dine by seamlessly connecting consumers, restaurants, shops, and delivery riders. We strive to make food and product accessibility more convenient and enjoyable, empowering individuals to purchase what they want, when and where they desire.As a forward-thinking, technology-driven organization, we are leading the charge in one of the fastest-growing industries globally. Our small team is making a significant impact as we tackle some of the most fascinating challenges. We prioritize speed, autonomy, and innovative ideas, continuously seeking fresh perspectives.About the RoleIn the role of Senior Security Engineer, you will spearhead the development and implementation of security measures that safeguard our internal networks, workforce identities, endpoints, and corporate systems. Collaborating with security teams across the US, EU, and APAC, you will aim to minimize risk and enhance our security controls.Operating with significant independence, you will define the technical strategy, make architectural decisions, and oversee the execution of complex security projects from start to finish. Your focus will be on balancing risk mitigation with user experience, ensuring that security measures are effective without hindering employee productivity.This position emphasizes Identity and Access Management (IAM), Endpoint Security (EDR), Network Security, logging and detection engineering, and secure SaaS enablement. You will collaborate closely with IT, Legal, Privacy, Engineering, and business stakeholders to ensure that security is integrated as a fundamental practice across the organization.Our security protocols are aligned with recognized frameworks such as the CIS Critical Security Controls and the NIST Cybersecurity Framework (CSF).

Join Checkatrade as a Senior Security Engineer and play a pivotal role in safeguarding our systems and data. In this position, you will be responsible for designing and implementing robust security measures, monitoring potential threats, and ensuring compliance with industry standards. We seek a proactive individual who thrives in a fast-paced environment and is dedicated to continuous improvement.

Application Deadline: We are actively conducting interviews and aim to fill this position promptly as soon as we find the right candidate.THE OPPORTUNITYApollo Research is searching for a Senior Security Engineer to take full ownership of security protocols and practices within our organization. As the first dedicated security hire, you will play a crucial role in maintaining the trust of our innovative AI lab partners and supporting our research mission. This position is embedded within the engineering team and reports directly to the CEO.YOUR RESPONSIBILITIES WILL INCLUDE- Establishing and leading Apollo's security program. You will create and manage the security roadmap, perform risk assessments, and adapt the program as the organization evolves, defining the security posture in relation to our size, threat model, and partner relationships.- Fostering trust with our AI lab partners. You will be the primary contact for security teams of our partners, building relationships with their CISOs, and ensuring our security practices are documented and meet the necessary standards for our partnerships.- Setting security strategies for engineering. You will define security principles and an AppSec strategy that the engineering team will adopt, creating efficient pathways for secure development.- Defining the use of AI tools and integrations at Apollo. You will determine approved tools, data handling procedures, and vetting processes for new technologies, ensuring a balance between security and the need for cutting-edge research tools.- Managing our security tooling stack and automating operations. You will select, implement, and oversee security controls such as EDR/MDR, endpoint management, email protection, and identity management, while automating processes wherever feasible.- Leading compliance and certification efforts. You will spearhead certification initiatives (ISO 27001, SOC 2) as required, integrating compliance into our security practices.- Managing IT administration across the organization. You will oversee Google Workspace and other IT resources.

At Menlo Security, we are dedicated to empowering secure connections, communications, and collaborations worldwide. Our mission has become increasingly vital in the current landscape shaped by COVID-19. We proudly serve a diverse clientele, including Fortune 500 companies, 9 out of the 10 largest global banks, and the Department of Defense.As we transition from a team of 400 towards our next growth phase, we seek passionate individuals who exhibit empathy and adaptability. The ideal candidate will possess a strong ethical foundation, exceptional organizational skills, and a commitment to service. A willingness to both give and receive constructive feedback is essential.Backed by industry-leading investors such as Vista Equity Partners, General Catalyst, JPMC, American Express, HSBC, and Ericsson Ventures, Menlo is poised for significant growth.Position Overview:The Senior Security Engineer will play a crucial role in safeguarding our organization’s digital assets, infrastructure, and data. Responsibilities include designing, implementing, and maintaining security systems and controls, managing security tools, conducting risk assessments, responding to incidents, and ensuring compliance with relevant security standards. This position involves close collaboration with various teams within Menlo to promote security best practices across all technological initiatives, thereby enhancing our security posture and resilience.Key Responsibilities:Security Operations & Monitoring:Oversee the SIEM platform and manage security alerts to identify, investigate, and respond to potential threats.Administer and optimize EDR solutions, specifically Crowdstrike, to ensure comprehensive endpoint protection.Lead incident response efforts, including investigation, containment, remediation, and post-incident analysis.Vulnerability & Risk Management:Oversee the vulnerability management program, including scanning, prioritization, and coordination of remediation efforts.Conduct risk assessments and formulate strategies for risk mitigation.

Join Zopa as a Platform Engineer focused on enhancing developer experience! In this role, you will be instrumental in optimizing our development platform, facilitating a seamless workflow for our engineering teams. Your expertise in platform technologies will empower developers to build and innovate more efficiently.

About Anaplan Anaplan builds an AI-powered scenario planning and analytics platform that helps organizations make sharper business decisions. Over 2,400 global companies, including names like Coca-Cola, LinkedIn, Adobe, LVMH, and Bayer, rely on Anaplan to stay competitive and navigate changing markets. The team values diverse perspectives, sets ambitious goals, and celebrates progress of all sizes. Anaplan’s culture emphasizes customer success, leadership at every level, and disciplined execution. Employees find opportunities for growth, connection, and recognition. Role Overview: Senior Product Security Engineer Location: London, United Kingdom This role focuses on strengthening security across Anaplan’s products and operations. The Senior Product Security Engineer leads initiatives to reduce risk, partners with teams across the company, and helps shape the security strategy. Main Responsibilities Design, lead, and implement security programs that address key risks and deliver on security goals. Translate findings from security assessments into practical projects that improve security at scale. Work with both technical and non-technical teams to embed security controls and encourage secure practices throughout the company. Define and track metrics to show the impact and effectiveness of security programs. Manage stakeholder expectations, using problem-solving and negotiation skills to build trust across teams. Support innovation and proof-of-concept work within the security function, helping teams focus on the right priorities. Collaborate with cross-functional groups to advance security objectives. Partner with the CISO to prepare executive reports, status updates, and company-wide communications, ensuring visibility into important security milestones and risks.

At Kroo Bank, we are pioneering the future of banking through innovative technology and exceptional digital services. As the fintech sector rapidly evolves, our bank is committed to adapting our roles and responsibilities to seize new business opportunities and meet emerging challenges. We prioritize updating our job descriptions to maintain our leadership in banking innovation.Your Contributions and Key Responsibilities:In the role of Senior Security Engineer, you will play a crucial role in the design and implementation of security measures for our mobile applications, services, and websites, ensuring adherence to the highest security standards. Your expertise will be pivotal in continually assessing and enhancing our security systems, ensuring our products and services are secure by design and compliant with both internal and external regulatory requirements. Key responsibilities include:Security Analysis and Improvement: Continuously evaluate our security systems for potential enhancements, ensuring our defenses lead in cybersecurity practices.Vulnerability Management: Proactively identify, assess, and resolve security vulnerabilities to uphold the integrity and confidentiality of customer data.Security Automation: Streamline security processes and procedures to boost efficiency and effectiveness, minimizing the risk of human error.Security Requirements and Solutions: Define and document system security requirements, offering well-considered recommendations to management.Development of Security Standards: Create and maintain best practices and security standards within the organization, guiding teams in secure coding practices.Secure Design: Collaborate with development teams to ensure robust security measures are integrated into the design of web and mobile front-ends, along with microservice architectures.Cloud Security and Secure Infrastructure: Assist teams in identifying and addressing gaps in infrastructure security, aligning with industry security posture standards.Cybersecurity Collaboration: Work closely with stakeholders across the organization to ensure security measures align with our overarching cybersecurity strategy and protect the bank’s technology infrastructure.Regulatory Compliance: Support teams in meeting compliance requirements for internal audits and external regulators to mitigate potential fines and reputational damage.

Join Samsara as a Senior Security Engineer on our Vulnerability Team, where you'll play a pivotal role in enhancing our security posture. In this position, you will be responsible for identifying vulnerabilities within our systems and implementing effective solutions to mitigate risks. Collaborate with cross-functional teams to ensure the security of our products and infrastructure, and contribute to our mission of bringing transparency and safety to the IoT space.

About Anaplan Anaplan builds an AI-powered scenario planning and analysis platform that helps businesses make confident decisions and stay ahead in the market. Our customers include Fortune 50 leaders such as Coca-Cola, LinkedIn, Adobe, LVMH, and Bayer. We value innovation, customer success, and collaboration. Our teams work globally, celebrating diversity and leadership at every level. At Anaplan, people set ambitious goals and take pride in both individual and shared achievements. Role Overview: Senior Product Security Engineer Location: London, United Kingdom The Senior Product Security Engineer will help shape and strengthen Anaplan’s security programs. This role focuses on designing, implementing, and measuring security initiatives that protect our platform and support our business goals. What You Will Do Design and implement security programs to reduce risk and meet key security objectives. Turn findings from security assessments into actionable initiatives and scalable programs. Work with both technical and non-technical teams to integrate security controls and encourage secure practices throughout the company. Set and track metrics to measure the effectiveness and impact of security efforts. Manage expectations and build trust with stakeholders at all levels, using strong problem-solving and negotiation skills. Improve the security innovation and proof-of-concept process, helping teams focus on the most important challenges. Coordinate with cross-functional teams to advance security goals. Collaborate with the CISO to prepare executive reports, provide status updates, and highlight progress on critical security milestones and risks.

About Our TeamJoin the Local Developer Experience (DevEx) team at Deliveroo, part of the Foundations group, where we empower engineers to rapidly develop, test, and deploy high-quality services with confidence. We enhance and innovate the local developer experience across the Deliveroo group through a streamlined, DevContainers-based development platform, facilitating agentic workflows alongside integrated IDE tools. Our mission is to elevate engineering standards in Quality, Velocity, and Efficiency by creating scalable framework-level tooling and developer workflows.About the RoleAs a Staff Platform Engineer, you will be recognized as a subject matter expert in at least one key technical domain and will be responsible for implementing solutions that yield significant group-wide outcomes. You will lead the technical direction for your team, eliminate complex technical obstacles across multiple teams, and mentor fellow engineers. Reporting to senior managers, you will collaborate with leadership to drive broad impact.Your ResponsibilitiesTechnical LeadershipDefine and implement technical solutions for critical business challenges, gaining an understanding of the context surrounding major organizational decisions.Oversee the technical architecture for both local and remote development workflows, including DevContainers, IDE remote backends, and seamless integration points with our engineering ecosystem.Design and continually refine the paved-path developer journeys, focusing on time-to-first-change, onboarding processes (MSC distribution, Tailscale setup), IDE remote flows, and user experience for daily developer tasks. Measure and iterate based on developer metrics and feedback.Lead the integration strategy for remote execution (e.g., BuildBuddy), enhance development efficiency on the company monorepo (Pedregal), and establish caching/invalidation methods to ensure swift, predictable developer workflows.Additionally, manage project timelines and risks while maintaining a sustainable team pace.Collaboration & LeadershipFacilitate alignment among non-adjacent teams and disciplines (Product, Security, Core Infrastructure, and Product Engineering) to tackle unstructured challenges. This includes coaching team members at all levels and nurturing emerging leaders within the team.

Role overview Nexthink is hiring a Senior Corporate Security Engineer in London. This position focuses on protecting information systems and sensitive data by designing, implementing, and managing security controls throughout the corporate environment. What you will do Lead the creation and rollout of security measures for corporate systems Oversee the ongoing management of security protocols to keep data safe Work with teams across the company to identify and assess security risks Support compliance with relevant industry standards Collaboration This role works closely with cross-functional groups, making sure security stays a shared priority and that risk assessments are both thorough and actionable.

AJ Bell seeks a Senior Information Security Engineer to strengthen the protection of company information systems and support compliance initiatives. The position is offered as a hybrid role, with the option to work from either the Manchester or London office and some flexibility for remote work. Key responsibilities Identify and assess security vulnerabilities within company systems Implement and maintain security controls to protect data and infrastructure Collaborate with teams across the business to promote effective security practices Assist in maintaining compliance with relevant regulations and internal policies Location This role is based in Manchester or London with a hybrid work arrangement, allowing for both office presence and remote work.

Causaly develops an AI-powered platform designed to help researchers and decision-makers in biomedicine quickly find and interpret evidence from scientific publications, clinical trials, regulatory documents, and complex data sources. The company’s mission centers on building a high-precision Knowledge Graph and applying generative AI to advance biomedical knowledge. Leading biopharmaceutical organizations use Causaly’s technology to accelerate drug discovery, improve safety, and support informed decisions. With backing from investors such as ICONIQ, Index Ventures, Pentech, and Marathon, Causaly continues to expand its product offerings and market reach. Role overview The Senior Security Engineer position at Causaly is based in London and offers the chance to shape the company’s security strategy and processes. This role provides significant autonomy and involves working closely with the security team, as well as collaborating across engineering and product groups. The Security Engineer will take ownership of vulnerability management, advise teams on security matters, and support SecOps activities. Expect to define strategies, build and refine processes, and serve as a trusted advisor throughout the engineering organization. Key responsibilities Lead the vulnerability management program: set strategy, select tools, prioritize work, and track remediation for dependencies, containers, and cloud infrastructure. Develop and maintain a dependency security strategy, including policies for third-party library use and update schedules. Integrate and manage security tools within CI/CD pipelines, such as SAST, SCA, secrets detection, and container scanning. Act as a security consultant for product and engineering teams, supporting design reviews, architecture decisions, and secure coding practices. Define and maintain security standards and guidelines that are practical for development teams. Oversee and improve the Security Champions program to build security awareness and skills across engineering teams. Support SecOps with incident triage and response, providing security engineering expertise when needed.

Job Title: Senior Engineer I Location: London, Bristol, or Edinburgh (Including Hybrid) Salary: £60,000 - £82,500 Team: Developer Experience Reporting To: Head of Engineering Closing date: Friday 30th March 2026 This role is based in the UK and requires an existing right to work in the UK. At this time, we are unable to offer visa sponsorship for this role. We are committed to cultivating a diverse, global team and our sponsorship policy is assessed on a role-by-role basis. We encourage you to regularly visit our careers site for updates on future opportunities where we may offer visa sponsorship. Kaluza is at the forefront of the energy revolution, transforming complex energy challenges into streamlined solutions. We empower energy companies to navigate contemporary challenges while driving the transition to a sustainable, electrified future. Our platform orchestrates millions of real-time decisions across homes, devices, markets, and grids. By merging predictive algorithms with user-centric design, Kaluza ensures clean energy is reliable, affordable, and seamlessly integrated into daily life. With teams across Europe, North America, Asia, and Australia, alongside a joint venture with Mitsubishi Corporation in Japan, we support industry leaders such as OVO, AGL, and ENGIE, as well as innovators like Volvo and Volkswagen. What will I be doing? In this impactful role, you will be instrumental in architecting and enhancing our Internal AI Engineering Platform. You will construct the infrastructure, from Model Context Protocol (MCP) servers to shared workflows, enabling our software teams to accelerate their development while ensuring system reliability and security. Your contributions will significantly influence Kaluza’s efforts to minimize defects, enhance productivity, and establish a benchmark for AI-driven development. AI Tooling Orchestration: Spearhead the trials and implementation of advanced engineering tools, including Claude Code, Kiro, and Opencode, ensuring their seamless integration into the developer workflow. Infrastructure & Connectivity: Design and maintain our MCP (Model Context Protocol) registry, creating a secure and scalable process for approving and deploying new servers and tools. Shared Workflows: Develop and uphold shared services and standards that standardize coding practices and automate repetitive architectural tasks across teams to facilitate AI workflows. Spec-Driven Development: (additional responsibilities to be defined).

Join Vanta as a Senior Fullstack Software Engineer specializing in Privacy & Data Security. In this role, you'll leverage your extensive experience in software development to enhance our platform's privacy features while ensuring data integrity and security. You will collaborate closely with cross-functional teams to design, develop, and implement robust solutions that protect user data.