Senior Security Engineer

Job Description

Senior Security Engineer - Build, Secure, and Scale in a Cloud Environment
Location: Hybrid (UK-based)
Salary: Competitive + Excellent Benefits
Employment Type: Full-time, Permanent

Are you a seasoned Security Engineer with a passion for protecting infrastructure at scale? A rapidly growing technology-driven organisation is looking for a Senior Security Engineer to play a pivotal role in safeguarding critical systems, networks, and data in a fast-paced and innovation-led environment.

You'll join a high-performing Platform Engineering team, working alongside cloud specialists, DevOps professionals, and software engineers to build secure, scalable platforms. This is more than a pure security role - it's an opportunity to be hands-on in architecture, engineering, and compliance, while leading the charge on modern, cloud-first security strategy.

Responsibilities:

• Designing and implementing robust security policies, controls, and infrastructure protection strategies.
• Leading vulnerability management efforts, penetration testing, and remediation plans.
• Monitoring and investigating security events, managing incident response processes end-to-end.
• Ensuring compliance with security standards such as ISO 27001 and supporting audits and certifications.
• Collaborating across teams to embed security into the core of platform and product development.
• Delivering internal security awareness initiatives to strengthen company-wide security culture.
• Evaluating and integrating new security tooling across a modern tech stack.
• Supporting business continuity and disaster recovery planning from a security perspective.

You'll Bring:

• Strong background as a Security Engineer or similar role within fast-paced technical environments (ideally with experience in regulated or high-trust industries).
• Hands-on expertise in cloud security (preferably AWS), including securing hybrid and multi-region architectures.
• Practical knowledge of security tooling: IDS/IPS, SIEM, vulnerability scanners, encryption, SAST/DAST tools, OWASP ZAP, etc.
• Strong understanding of network security protocols and best practices.
• Scripting and automation experience (e.g., Python).
• Proven experience with incident response and threat mitigation.
• Familiarity with security compliance frameworks (ISO 27001, SOC 2, etc.).
• Security certifications (e.g., Security+, CISSP, or equivalent) are a plus.

You'll Thrive If You Are:

• Comfortable taking ownership and working autonomously in a high-accountability environment.
• Eager to learn and keep up with the latest in security practices and technologies.
• A confident communicator who can bridge the gap between technical and non-technical stakeholders.
• Passionate about secure-by-design principles and building secure systems from the ground up.