Lead Security Engineer

We are seeking a Lead Security Engineer to lead and evolve our security engineering capability across cloud and on‑premise environments. The role will focus on embedding security into engineering and platform design, implementing scalable security controls and driving automation across modern infrastructure and software delivery practices. Operating within Technology, the role will work closely with Platform Engineering, Infrastructure and Software Engineering teams, whilst maintaining a dotted-line relationship with ISO and compliance functions to ensure alignment with regulatory and governance requirements. This is not a traditional audit or governance‑led security role. The successful candidate will be expected to lead from the front technically, define engineering standards, influence platform and architectural decisions and build scalable systems, tooling and processes that strengthen the organisation’s overall security posture across a fast‑moving engineering environment.

Main Responsibilities

• Define and drive the security engineering roadmap across cloud and on‑premise environments
• Lead the design and implementation of scalable security controls, standards and engineering best practices
• Partner with architecture, platform and software engineering teams to embed security into infrastructure, platforms and software delivery lifecycles
• Own the selection, implementation and operational maturity of security tooling and automation capabilities
• Act as the senior technical authority and escalation point for security engineering matters across the organisation
• Build and mature incident response, vulnerability management and remediation processes across infrastructure and applications
• Drive security‑by‑design and automation‑first practices across engineering and operational teams
• Work closely with ISO and compliance functions to ensure alignment with regulatory, governance and security requirements
• Continuously evaluate emerging threats, attack vectors, technologies and industry best practices to strengthen the organisation’s security posture
• Mentor and support security engineers whilst helping build a high‑performing security engineering capability
• Contribute to long‑term platform, infrastructure and operational resilience initiatives from a security perspective

Main Requirements

• 5+ years experience in a dedicated or heavily security‑focused engineering role within complex, high availability environments
• Strong background in security engineering across cloud and on‑premise infrastructure environments
• Deep understanding of cloud and hybrid infrastructure security principles
• Experienced and knowledgeable in securing Kubernetes or similar containerised orchestration
• Strong knowledge of infrastructure, networking, IAM, secrets management and system hardening
• Hands‑on experience with security tooling, automation and IaC environments
• Strong understanding of modern application and infrastructure attack vectors
• Experience operating within regulated or compliance‑driven industries is advantageous
• Ability to influence engineering teams and senior stakeholders through technical leadership
• Experience in a dynamic and team‑orientated work environment.

What’s in it for you?

• Opportunities for personal growth and learning
• An open, inclusive and supportive team where you will be valued, and your suggestions will be welcome.
• 26 days paid holiday per year. This is in addition to local public holidays.
• Hybrid Working
• Risk Benefits such as pension, Life Assurance (4x annual salary), Private Medical Insurance
• Flexible core hours between 10am – 4pm
• Receive support whenever you need it with our Employee Assistance Program, available 24/7.
• Local discounts and more…

Our team is committed to keeping remuneration and benefits under constant review to make sure what we offer stays relevant.