Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join us as a Security Engineer to enhance F1's cloud security and manage vulnerabilities.
- Company: Be part of the dynamic Formula 1 team, driving innovation in technology and security.
- Benefits: Enjoy a 12-month FTC with opportunities for growth and collaboration in a fast-paced environment.
- Why this job: Work at the forefront of technology in a thrilling industry while making a real impact on security.
- Qualifications: Must have hands-on AWS experience, knowledge of CI/CD, and a passion for security.
- Other info: Collaborate with top experts and contribute to exciting projects in the world of Formula 1.
The predicted salary is between 42000 - 84000 £ per year.
Our team of hundreds of skilled experts keep Formula 1 moving. We’re on the lookout for a Security Engineer to work with us on a 12-month FTC! Reporting to the Cyber Security Manager, the main purpose of this role is to support the development and management of security technologies across F1’s growing technology landscape.
Main Duties & Responsibilities:
- Assess and maintain high standards of security maturity across Formula 1’s cloud infrastructure.
- Focus on new and existing infrastructure, managing technical vulnerabilities, supporting continued system maintenance, and minimizing technical debt.
- Ensure visibility and reporting of Cloud infrastructure against Formula 1’s compliance and security standards (such as ISO 27001 and CIS).
- Vulnerability Management and reporting across Formula 1’s cloud environment(s), including:
- Development of requirements, design, and implementation of cloud security tools (e.g., compliance and host security).
- A key focus on threat detection and risks across cloud environments.
- Identification, remediation, and reporting of security vulnerabilities.
- Reporting on compliance to F1’s security standards.
- Support in the delivery and management of security design and architecture reviews.
- Working closely with Infrastructure teams on security design and control strategies to reduce risks.
- The definition and operation of secure development/operations (DevOps) practices, including code scanning, Kubernetes, and container security.
- System and device hardening policies and reporting.
- Technology-focused threat assessments to identify threats/risks.
- Documentation of security requirements, patterns, and processes.
- Liaising closely with Formula 1’s cyber security, infrastructure, and digital teams on new and existing initiatives.
About You:
- Extensive hands-on experience with AWS cloud infrastructure – including AWS Security Services (CloudTrail, Guard Duty, WAF, IAM, Security Hub, etc.).
- Knowledge of CI/CD including DevSecOps patterns and principles.
- Infrastructure as code experience utilizing Terraform.
- Knowledge of container technologies.
- Extensive experience with AWS Security Services & Governance and Information Security Best Practices.
- Experience with other enterprise cloud platforms e.g., Azure.
- Kubernetes experience.
- Identity & Access Management deployment and administration (e.g., Okta, Entra ID).
- Web application security technologies – WAF, Bot Protection, DDoS Protection, etc.
- Adaptable, passionate, and a team player.
Division: Technical
Security Engineer - FTC employer: Formula One
Contact Detail:
Formula One Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Engineer - FTC
✨Tip Number 1
Familiarise yourself with the specific AWS Security Services mentioned in the job description, such as CloudTrail and Guard Duty. Being able to discuss your hands-on experience with these tools during an interview will demonstrate your suitability for the role.
✨Tip Number 2
Showcase your knowledge of compliance standards like ISO 27001 and CIS. Prepare examples of how you've previously ensured compliance in your past roles, as this will highlight your understanding of security maturity in cloud environments.
✨Tip Number 3
Brush up on your DevSecOps principles and CI/CD processes. Be ready to discuss how you've integrated security into development workflows, as this is a key aspect of the role and will set you apart from other candidates.
✨Tip Number 4
Network with professionals in the cybersecurity field, especially those with experience in cloud security. Engaging with industry experts can provide insights and potentially lead to referrals, increasing your chances of landing the job with us.
We think you need these skills to ace Security Engineer - FTC
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your extensive hands-on experience with AWS cloud infrastructure and security services. Include specific examples of your work with vulnerability management, compliance reporting, and any relevant projects that showcase your skills in cloud security.
Craft a Strong Cover Letter: In your cover letter, express your passion for cybersecurity and your adaptability as a team player. Mention how your experience aligns with the responsibilities outlined in the job description, particularly your knowledge of CI/CD and DevSecOps principles.
Showcase Relevant Skills: When detailing your skills, emphasise your familiarity with AWS Security Services, container technologies, and identity & access management tools. Be specific about your experience with tools like Terraform and Kubernetes, as these are crucial for the role.
Highlight Team Collaboration: Since the role involves liaising with various teams, include examples of past collaborations with infrastructure or digital teams. This will demonstrate your ability to work effectively in a team environment and contribute to security design and control strategies.
How to prepare for a job interview at Formula One
✨Showcase Your Cloud Expertise
Make sure to highlight your extensive hands-on experience with AWS cloud infrastructure during the interview. Be prepared to discuss specific AWS Security Services you've worked with, such as CloudTrail and Guard Duty, and how you've implemented them in past projects.
✨Demonstrate Your Vulnerability Management Skills
Prepare examples of how you've assessed and managed technical vulnerabilities in previous roles. Discuss your approach to vulnerability reporting and remediation, and be ready to explain how you ensure compliance with security standards like ISO 27001.
✨Familiarise Yourself with DevSecOps
Since the role involves CI/CD and DevSecOps principles, brush up on your knowledge of these practices. Be ready to talk about how you've integrated security into the development lifecycle and any tools you've used for code scanning and container security.
✨Collaborative Mindset is Key
Emphasise your ability to work closely with cross-functional teams, such as infrastructure and digital teams. Share examples of how you've collaborated on security design and architecture reviews, and how this teamwork has led to improved security outcomes.
