Enable job alerts via email!

Cyber Security Engineer *INSURANCE EXPERIENCED*

MN Climate Innovation Finance Authority (MNCIFA)

London

Hybrid

GBP 125,000 - 150,000

Full time

2 days ago
Be an early applicant

Generate a tailored resume in minutes

Land an interview and earn more. Learn more

Start fresh or import an existing resume

Job summary

MNCIFA is seeking a Cyber Security Engineer with a strong application security background in financial services. This hands-on role requires expertise in securing SDLC and cloud-native platforms, focusing on threat modelling and integrating security tools. With a competitive daily rate of £600, the engineer will actively contribute to enhancing security posture and managing vulnerabilities.

Qualifications

  • Strong hands-on experience in AppSec with a background in software engineering.
  • Deep knowledge of GCP or Azure security.
  • Experience with container security and cloud infrastructure.

Responsibilities

  • Lead threat modelling, secure design reviews, and AppSec assessments.
  • Integrate SAST, DAST, and container scanning in CI/CD.
  • Triage and drive remediation of vulnerabilities across cloud and app layers.

Skills

Application Security
Threat Modelling
Cloud Security
Vulnerability Remediation
Communication

Education

Software Engineering or DevOps background

Tools

Terraform
Python
Kubernetes

Job description

Job Title:
Cyber Security Engineer - MUST HAVE INSURANCE EXPERIENCE

Department:
Cyber Security

Reports To:
Head of Security Architecture & Engineering

Salary: £600 Per Day Inside IR35

Location: Central London (3 days per week on site, 2 days per week remote)

The Role

We're looking for a hands-on Application Security Engineer with a strong engineering mindset and a background in financial services, insurance, or fintech. You'll be embedded with product and engineering teams, driving secure development practices and owning security controls across our SDLC and cloud-native platforms.

This is a technical role, not for architects or managers - you'll be writing code, integrating tools, running threat modelling sessions, and solving real-world security problems.

What You'll Do
  • Lead threat modelling, secure design reviews, and AppSec assessments.
  • Integrate and automate SAST, DAST, SCA, and container scanning in CI/CD.
  • Triage and drive remediation of vulnerabilities across cloud and app layers.
  • Deliver security controls via code (Terraform, YAML, scripting).
  • Support and improve cloud security posture (GCP/Azure).
  • Run internal pen testing and security assessments.
  • Build and manage a Security Champions network.
  • Be a visible, vocal SME on all things AppSec.
What You'll Bring
  • Strong hands-on experience in AppSec with a background in software engineering or DevOps.
  • Deep knowledge of GCP (preferred) or Azure security.
  • Experience with Kubernetes, container security, and cloud infra.
  • Proficiency in IaC (Terraform), scripting (Python, etc.), and CI/CD pipelines.
  • Excellent communication skills - clear, concise, and credible with engineers.
  • Exposure to regulated environments (FS, insurance, fintech) is a big plus.
Not for You If...

You're an architect, people manager, or hands-off strategist. This is for engineers who deliver.

Eames Consulting is acting as an Employment Business in relation to this vacancy.
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
TrustpilotImage showing a rating of 4.5 out of 5 stars on Trustpilot for JobLeads, indicating a high level of customer satisfaction.
Rated “Excellent” based on 16,602 reviews
Follow us
JobLeads Youtube ProfileJobLeads Linkedin ProfileJobLeads Instagram ProfileJobLeads Facebook ProfileJobLeads Twitter AccountJobLeads Xing Profile
Company
Services
Free resources
Support

© JobLeads 2007 - 2025 | All rights reserved