Enable job alerts via email!

Cyber Security Engineer *INSURANCE EXPERIENCED*

Rymer, Echols, Slay & Nelson-Archer, P.C.

London

Hybrid

GBP 125,000 - 150,000

Full time

2 days ago
Be an early applicant

Generate a tailored resume in minutes

Land an interview and earn more. Learn more

Start fresh or import an existing resume

Job summary

A leading cybersecurity firm is seeking a Cyber Security Engineer to enhance their security measures in a regulatory environment. This role involves hands-on application security, managing threat models, and integrating security practices into development processes. With a firm focus on financial services, you'll be integral in building a robust security posture, utilizing cloud platforms and scripting to mitigate risks effectively. The position offers a mix of on-site and remote work, thereby providing flexibility to qualified candidates.

Qualifications

  • Strong hands-on experience in AppSec and background in software engineering or DevOps.
  • Deep knowledge of cloud security specifically GCP or Azure.
  • Experience running internal pen tests.

Responsibilities

  • Lead threat modelling and security assessments.
  • Integrate and automate security tools in CI/CD.
  • Deliver security controls via code.

Skills

Application Security
Threat Modelling
Cloud Security
CI/CD
Vulnerability Remediation
Scripting (Python)

Tools

Terraform
Kubernetes
GCP
Azure
CI/CD Tools

Job description

Job Title:
Cyber Security Engineer - MUST HAVE INSURANCE EXPERIENCE

Department:
Cyber Security

Reports To:
Head of Security Architecture & Engineering

Salary: £600 Per Day Inside IR35

Location: Central London (3 days per week on site, 2 days per week remote)

The Role

We're looking for a hands-on Application Security Engineer with a strong engineering mindset and a background in financial services, insurance, or fintech. You'll be embedded with product and engineering teams, driving secure development practices and owning security controls across our SDLC and cloud-native platforms.

This is a technical role, not for architects or managers - you'll be writing code, integrating tools, running threat modelling sessions, and solving real-world security problems.

What You'll Do
  • Lead threat modelling, secure design reviews, and AppSec assessments.
  • Integrate and automate SAST, DAST, SCA, and container scanning in CI/CD.
  • Triage and drive remediation of vulnerabilities across cloud and app layers.
  • Deliver security controls via code (Terraform, YAML, scripting).
  • Support and improve cloud security posture (GCP/Azure).
  • Run internal pen testing and security assessments.
  • Build and manage a Security Champions network.
  • Be a visible, vocal SME on all things AppSec.
What You'll Bring
  • Strong hands-on experience in AppSec with a background in software engineering or DevOps.
  • Deep knowledge of GCP (preferred) or Azure security.
  • Experience with Kubernetes, container security, and cloud infra.
  • Proficiency in IaC (Terraform), scripting (Python, etc.), and CI/CD pipelines.
  • Excellent communication skills - clear, concise, and credible with engineers.
  • Exposure to regulated environments (FS, insurance, fintech) is a big plus.
Not for You If...

You're an architect, people manager, or hands-off strategist. This is for engineers who deliver.

Eames Consulting is acting as an Employment Business in relation to this vacancy.
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
TrustpilotImage showing a rating of 4.5 out of 5 stars on Trustpilot for JobLeads, indicating a high level of customer satisfaction.
Rated “Excellent” based on 16,602 reviews
Follow us
JobLeads Youtube ProfileJobLeads Linkedin ProfileJobLeads Instagram ProfileJobLeads Facebook ProfileJobLeads Twitter AccountJobLeads Xing Profile
Company
Services
Free resources
Support

© JobLeads 2007 - 2025 | All rights reserved