Job Description
Senior Security Engineer - Build, Secure, and Scale in a Cloud Environment
Location: Hybrid (UK-based)
Salary: Competitive + Excellent Benefits
Employment Type: Full-time, Permanent
Are you a seasoned Security Engineer with a passion for protecting infrastructure at scale? A rapidly growing technology-driven organisation is looking for a Senior Security Engineer to play a pivotal role in safeguarding critical systems, networks, and data in a fast-paced and innovation-led environment.
You'll join a high-performing Platform Engineering team, working alongside cloud specialists, DevOps professionals, and software engineers to build secure, scalable platforms. This is more than a pure security role - it's an opportunity to be hands-on in architecture, engineering, and compliance, while leading the charge on modern, cloud-first security strategy.
Responsibilities:
* Designing and implementing robust security policies, controls, and infrastructure protection strategies.
* Leading vulnerability management efforts, penetration testing, and remediation plans.
* Monitoring and investigating security events, managing incident response processes end-to-end.
* Ensuring compliance with security standards such as ISO 27001 and supporting audits and certifications.
* Collaborating across teams to embed security into the core of platform and product development.
* Delivering internal security awareness initiatives to strengthen company-wide security culture.
* Evaluating and integrating new security tooling across a modern tech stack.
* Supporting business continuity and disaster recovery planning from a security perspective.
You'll Bring:
* Strong background as a Security Engineer or similar role within fast-paced technical environments (ideally with experience in regulated or high-trust industries).
* Hands-on expertise in cloud security (preferably AWS), including securing hybrid and multi-region architectures.
* Practical knowledge of security tooling: IDS/IPS, SIEM, vulnerability scanners, encryption, SAST/DAST tools, OWASP ZAP, etc.
* Strong understanding of network security protocols and best practices.
* Scripting and automation experience (e.g., Python).
* Proven experience with incident response and threat mitigation.
* Familiarity with security compliance frameworks (ISO 27001, SOC 2, etc.).
* Security certifications (e.g., Security+, CISSP, or equivalent) are a plus.
You'll Thrive If You Are:
* Comfortable taking ownership and working autonomously in a high-accountability environment.
* Eager to learn and keep up with the latest in security practices and technologies.
* A confident communicator who can bridge the gap between technical and non-technical stakeholders.
* Passionate about secure-by-design principles and building secure systems from the ground up.
#J-18808-Ljbffr