Salary: £45,000 - 70,000 per year Requirements: Strong expertise in vulnerability management, threat modelling and secure SDLC Solid incident response and root cause analysis experience Background in bug bounty or coordinated disclosure processes Strong stakeholder engagement and communication skills Experience with CI/CD pipeline security tools Knowledge of third-party risk and regulatory considerations Responsibilities: Define and implement product security policies, tooling and standards across the SDLC Lead threat modelling for new and existing applications Own the product vulnerability backlog, prioritising and tracking remediation Liaise on bug bounty findings and ensure timely fixes Conduct root cause analysis for security incidents and systemic issues Act as Incident Commander or Investigation Lead during security events Partner with CI/CD teams to integrate SAST, DAST, SCA and other security controls Collaborate with product, engineering and compliance stakeholders to deliver security initiatives Technologies: CI/CD Security Support More: We are a leading Payments company located in London, seeking a Senior Product Security Engineer to join our evolving cyber security function. This role is pivotal in embedding security across the full product lifecycle, promoting secure-by-design principles within our engineering teams. As part of our team, we offer a dynamic work environment with opportunities for professional growth. This position requires you to be onsite two days a week and is contracted for six months. last updated 5 week of 2026