Senior Security Engineer

Senior Security Engineer - Build, Secure, and Scale in a Cloud-Native Environment
Location: Hybrid (UK-based)
Salary: Competitive + Excellent Benefits
Employment Type: Full-time, Permanent

Are you a seasoned Security Engineer with a passion for protecting infrastructure at scale? A rapidly growing technology-driven organisation is looking for a Senior Security Engineer to play a pivotal role in safeguarding critical systems, networks, and data in a fast-paced and innovation-led environment.

You'll join a high-performing Platform Engineering team, working alongside cloud specialists, DevOps professionals, and software engineers to build secure, scalable platforms. This is more than a pure security role - it's an opportunity to be hands-on in architecture, engineering, and compliance, while leading the charge on modern, cloud-first security strategy.

Responsibilties:

• Designing and implementing robust security policies, controls, and infrastructure protection strategies.

• Leading vulnerability management efforts, penetration testing, and remediation plans.

• Monitoring and investigating security events, managing incident response processes end-to-end.

• Ensuring compliance with security standards such as ISO 27001 and supporting audits and certifications.

• Collaborating across teams to embed security into the core of platform and product development.

• Delivering internal security awareness initiatives to strengthen company-wide security culture.

• Evaluating and integrating new security tooling across a modern tech stack.

• Supporting business continuity and disaster recovery planning from a security lens.

You'll Bring:

• Strong background as a Security Engineer or similar role within fast-paced technical environments (ideally with experience in regulated or high-trust industries).

• Hands-on expertise in cloud security (preferably AWS), including securing hybrid and multi-region architectures.

• Practical knowledge of security tooling: IDS/IPS, SIEM, vulnerability scanners, encryption, SAST/DAST tools, OWASP ZAP, etc.

• Strong understanding of network security protocols and best practices.

• Scripting and automation experience (e.g. Python).

• Proven experience with incident response and threat mitigation.

• Familiarity with security compliance frameworks (ISO 27001, SOC 2, etc.).

• Security certifications (e.g. Security+, CISSP, or equivalent) are a plus.

You'll Thrive If You Are:

• Comfortable taking ownership and working autonomously in a high-accountability environment.

• Eager to learn and keep up with the latest in security practices and technologies.

• A confident communicator who can bridge the gap between technical and non-technical stakeholders.

• Passionate about secure-by-design principles and building secure systems from the ground up.