At a Glance
- Tasks: Lead security design and operations to protect our networks and systems.
- Company: Join Deliveroo, a tech-driven company transforming how we shop and eat.
- Benefits: Enjoy healthcare, generous leave, and support for charitable causes.
- Other info: Diverse workplace committed to equity and inclusion.
- Why this job: Make a real impact in a fast-paced, innovative environment.
- Qualifications: 5+ years in Security Engineering and hands-on IAM experience required.
The predicted salary is between 70000 - 90000 £ per year.
Why Deliveroo
Our mission is to transform the way you shop and eat, bringing the neighbourhood to your door by connecting consumers, restaurants, shops and riders. We are transforming the way the world eats and shops by making access to food and products more convenient and enjoyable. We give people the opportunity to buy what they want, as they want it, when and where they want it. We are a technology-driven company at the forefront of the most rapidly expanding industry in the world. We are still a small team, making a very large impact, looking to answer some of the most interesting questions out there. We move fast, value autonomy and ownership, and we are always looking for new ideas.
About the Role
As a Senior Corporate Security Engineer, you will lead the design and operation of security controls that protect our internal networks, workforce identities, endpoints and corporate systems. You will be working globally with security teams across US, EU and APAC, delivering against our goals and objectives - reducing risk and maturing controls.
As a Senior, you will operate with a high degree of autonomy. You will define technical direction, make architectural decisions, and deliver complex security initiatives end-to-end. You will be expected to balance risk reduction with usability, ensuring controls are robust without impeding employee productivity.
This role focuses on Identity and Access Management (IAM), Endpoint security (EDR), Network Security, logging and detection engineering, and secure SaaS enablement. You will work closely with IT, Legal, Privacy, Engineering and business stakeholders to embed security as a default practice across the organisation. Security controls will be aligned to recognised frameworks such as the CIS Critical Security Controls and the NIST Cybersecurity Framework (CSF).
Key Responsibilities
- Architecture & Control Implementation: Design, deploy, and maintain core corporate security controls, including phishing-resistant MFA, Just-In-Time (JIT) access, strict role-based access control (RBAC), zero-trust architectures, device and identity bound proofing and modern network isolation.
- Tooling Ownership: Serve as the technical owner for a broad suite of corporate security systems, managing deployments, configurations, and API integrations for tools across the corporate environment.
- Technical Leadership: Lead and implement the technical strategy for Endpoint Device trust, Data Loss Prevention, Intellectual property storage, and SaaS application security. Alongside wider corporate security technical controls.
- Automation & Engineering: Write scripts and build tools to automate security workflows, incident response tasks, and audit evidence collection for compliance.
- Cross-Functional Collaboration: Work with IT and business operations to integrate security tools into everyday workflows. Guide non-security teams to adopt secure baselines (e.g., CIS Benchmarks) as standard practice.
- Mentorship: Mentor junior and mid-level engineers, explain technical concepts clearly to non-technical staff, and help improve the team's engineering standards.
Minimum Qualifications
- Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or equivalent practical experience.
- 5+ years’ experience in Security Engineering, Corporate Security, Detection & Response, or a related field.
- Hands-on experience administering IAM platforms (e.g. Okta, GoogleWorkspace).
- Deep hands-on experience with GoogleWorkspace products.
- Practical hands-on experience with Cloud platforms (e.g AWS, GCP).
- Relevant and practical experience with Infrastructure-as-code (e.g Terraform).
- Experience implementing modern authentication standards (FIDO2, WebAuthn, SAML, OAuth 2.0, OpenID Connect).
- Practical experience securing macOS, Windows and Linux endpoints using MDM and EDR/XDR tooling.
- Experience operating SIEM and/or SOAR platforms and tuning detection logic.
- Experience with vulnerability management and patch governance.
- Ability to write production-quality automation scripts.
- Demonstrated experience leading cross-functional technical initiatives.
Desirable Skills
- Experience with SASE or Zero Trust Network Access platforms.
- Hands on experience deploying applications into K8 and Docker environments.
- Data Loss Prevention (DLP) and SaaS security governance.
- Advanced detection engineering or SOAR playbook development.
- Experience supporting ISO 27001 or SOC 2 audits.
- Relevant certifications (e.g. CISSP, CISM, GIAC).
Workplace & Benefits
At Deliveroo we know that people are the heart of the business and we prioritise their welfare. Benefits differ by country, but we offer many benefits in areas including healthcare, well-being, parental leave, pensions, and generous annual leave allowances, including time off to support a charitable cause of your choice. Benefits are country-specific, please ask your recruiter for more information.
Diversity
At Deliveroo, we believe a great workplace is one that represents the world we live in and how beautifully diverse it can be. That means we have no judgement when it comes to any one of the things that make you who you are - your gender, race, sexuality, religion or a secret aversion to coriander. All you need is a passion for (most) food and a desire to be part of one of the fastest-growing businesses in a rapidly growing industry.
We are committed to diversity, equity and inclusion in all aspects of our hiring process. We recognise that some candidates may require adjustments to apply for a position or fairly participate in the interview process. If you require any adjustments, please don't hesitate to let us know. We will make every effort to provide the necessary adjustments to ensure you have an equitable opportunity to succeed.
Senior Security Engineer in London employer: Dormont Manufacturing Co
Deliveroo is an exceptional employer that prioritises the well-being of its employees, offering a range of benefits including healthcare, generous leave allowances, and support for charitable causes. With a dynamic work culture that values autonomy and innovation, employees have the opportunity to make a significant impact while collaborating with diverse teams across the globe. The company fosters professional growth through mentorship and encourages a commitment to diversity, equity, and inclusion, making it a rewarding place to build a career in the fast-paced food delivery industry.
StudySmarter Expert Advice🤫
We think this is how you could land Senior Security Engineer in London
✨Get Involved in the Cybersecurity Community
Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!
✨Show Off Your Skills with Capture the Flag Competitions
Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including Dormont Manufacturing Co, love seeing candidates who actively engage in these challenges.
✨Tailor Your Online Presence
Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!
✨Apply Directly Through Dormont Manufacturing Co
Don’t forget to head straight to our website and check out any openings for cybersecurity roles at Dormont Manufacturing Co. Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.
We think you need these skills to ace Senior Security Engineer in London
Some tips for your application 🫡
Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!
Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!
Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at Dormont Manufacturing Co insight into your practical problem-solving abilities and makes your application memorable.
Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to Dormont Manufacturing Co that you’re committed to staying ahead in the game.
How to prepare for a job interview at Dormont Manufacturing Co
✨Sharpen Your Technical Skills
For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.
✨Prepare for Scenario-Based Questions
Expect the interviewers at Dormont Manufacturing Co to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.
✨Highlight Your Certifications
Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at Dormont Manufacturing Co.
✨Show Your Passion for Cybersecurity
Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.