Principle Platform Engineer in London

Principle Platform Engineer in London

London Full-Time 80000 - 100000 £ / year (est.) No working from home possible
CSS Labs

At a Glance

  • Tasks: Design and build backend services for a cutting-edge cybersecurity platform.
  • Company: Join CSS Labs, a pioneering tech company focused on deep-tech cybersecurity.
  • Benefits: Competitive salary, flexible work options, and opportunities for professional growth.
  • Other info: Collaborate in a dynamic startup environment with excellent career advancement potential.
  • Why this job: Be at the forefront of cybersecurity innovation and make a real impact.
  • Qualifications: 8+ years in software engineering with expertise in Python and PostgreSQL.

The predicted salary is between 80000 - 100000 £ per year.

CSS Labs is building Praesidius, a deep-tech cybersecurity platform for behaviour-triggered lateral movement prevention in enterprise environments.

Praesidius is designed for the assume-breach era: the operating assumption is that an attacker may already be inside the perimeter, and the job of the platform is to make their next move economically and operationally impossible.

The product uses virtual decoy assets called phantoms.

Phantoms have no legitimate business purpose.

Any interaction with a phantom is treated as malicious by construction.

Signals are observed by watchdog agents, correlated by an on-prem control plane, and converted into containment actions through customer tooling such as Microsoft Defender for Endpoint, Microsoft Entra ID, Active Directory, Cisco Meraki and other security, identity, network and virtualisation platforms.

The immediate company milestone is to take Praesidius from concept and prototype into an enterprise proof of concept with academic/semi-academic support and enterprise design partner engagement.

The first funded build is the on-prem version of the platform: a single-node customer-deployable system that proves discovery, phantom placement, malicious-touch detection, provenance mapping, response recommendation/execution and audit evidence generation.

What this person will build

Backend services for zones, assets, phantoms, alerts, response state, contracts, audit events and evidence generation.

  • APIs used by the portal, watchdog, connector layer and detection engine.
  • A Postgre SQL-backed data model that can evolve towards the full Merkle Ledger, Trust Contract and Audit architecture.
  • A secure event pipeline from watchdog/connector signals through alert generation and response workflows.
  • The first hash-chained audit log and evidence export primitives needed for enterprise review.
  • Core responsibilities
  • Translate the Praesidius engineering specification into a pragmatic POC architecture and implementation plan.
  • Design and build backend services, APIs and internal module boundaries for the on-prem control plane.
  • Own the Postgre SQL schema for assets, zones, phantoms, alerts, response state, policies, audit records and early trust-contract objects.
  • Build robust ingestion and processing paths for watchdog events, phantom interactions, connector data and response actions.
  • Implement authentication, authorisation and RBAC foundations in collaboration with the CTO and frontend engineer.
  • Implement the first audit-chain primitives: structured audit entries, predecessor hashing, chain head signing hooks and evidence export APIs.
  • Create engineering standards for code quality, testing, error handling, logging, security review and documentation.
  • Work with the infrastructure engineer to package the control plane as an on-prem Docker Compose deployment with a clear path to Kubernetes later.
  • Work with the detection engineer to ensure alert and response workflows are deterministic, recoverable and explainable.
  • Support investor, design partner and Catapult/Innovate UK technical conversations where backend architecture or implementation credibility is relevant.
  • Required experience
  • 8+ years of professional software engineering experience, including ownership of production backend systems.
  • Expert-level Python engineering experience. Fast API, Pydantic, asyncio, SQLAlchemy or equivalent frameworks are highly relevant.
  • Strong Postgre SQL experience, including schema design, migrations, indexing, transactional semantics and operational performance.
  • Experience designing secure APIs and backend systems that need to be reliable, observable and auditable.
  • Experience with Docker-based deployments and practical Linux systems engineering.
  • Strong understanding of distributed-system trade-offs, even though the first POC is intentionally single-node.
  • Ability to write clear technical documentation, decision records and implementation plans.
  • Comfortable working in a small founding team where architecture, code, debugging, customer context and hiring input all overlap.
  • Cybersecurity product experience in EDR, XDR, SIEM, SOAR, Zero Trust, identity security, network security or deception technology.
  • Experience implementing cryptographic data structures, signed records, PKI integrations or tamper-evident audit systems.
  • Experience with Microsoft security ecosystems such as Defender for Endpoint, Microsoft Graph, Entra ID or Sentinel.
  • Experience building on-prem enterprise software, appliances or products that run inside customer-controlled environments.
  • Previous founding engineer or technical lead experience in an early-stage company
  • #J-18808-Ljbffr
CSS Labs

Contact Details:

CSS Labs Recruitment Team

StudySmarter Expert Advice🤫

We think this is how you could land Principle Platform Engineer in London

Get Involved in the Cybersecurity Community

Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!

Show Off Your Skills with Capture the Flag Competitions

Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including CSS Labs, love seeing candidates who actively engage in these challenges.

Tailor Your Online Presence

Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!

Apply Directly Through CSS Labs

Don’t forget to head straight to our website and check out any openings for cybersecurity roles at CSS Labs. Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.

We think you need these skills to ace Principle Platform Engineer in London

Backend Services Development
API Design and Implementation
PostgreSQL Schema Design
Python Engineering
FastAPI
Pydantic
asyncio

Some tips for your application 🫡

Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!

Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!

Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at CSS Labs insight into your practical problem-solving abilities and makes your application memorable.

Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to CSS Labs that you’re committed to staying ahead in the game.

How to prepare for a job interview at CSS Labs

Sharpen Your Technical Skills

For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.

Prepare for Scenario-Based Questions

Expect the interviewers at CSS Labs to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.

Highlight Your Certifications

Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at CSS Labs.

Show Your Passion for Cybersecurity

Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.