Senior Security Engineer in London

Flagstone is an online savings platform, reinventing how individuals, businesses, and charities manage, protect, and grow their cash. A diverse group of people, bound by a collaborative spirit, and shared purpose. Our unique culture is our pride and joy and our competitive advantage.

To revolutionise the savings market, we need to be at our best. High performance takes more than talent – it takes a culture of kindness, respect, and growth. We’re building a diverse, inclusive community, where your voice is heard and valued, with close support and room to develop.

About the Team: Security Engineering is a team of five covering cloud security, detection, and security operations. They work directly in the Azure estate and are close to the infrastructure. The team runs Microsoft Sentinel, Defender XDR, and Defender for Cloud, and manages tooling through IaC. They run a quarterly penetration test programme and are continuously building out our detection and response capability.

Does this sound like you: You're a Senior Security Engineer who operates credibly across cloud security, detection tooling, and incident response, without being narrowly specialised. You own meaningful parts of the security stack, contribute hands on to Azure cloud hardening, and show up reliably when incidents need investigating or pen test cycles need coordinating.

What you’ll do:

• Maintain and improve our Microsoft Sentinel deployment - writing and tuning detection rules, managing data connectors, and reducing alert noise.
• Operate and optimise Defender XDR and Defender for Cloud, including policy management and posture recommendations.
• Harden our Azure environment across identity, access management, networking, storage, WAF configuration, and logging pipelines.
• Contribute to infrastructure-as-code (Terraform or Bicep) for security tooling deployments and configuration drift management.
• Investigate suspicious activity surfaced through Sentinel and Defender - triage, escalate, or contain as appropriate.
• Support incident response activities including containment, evidence gathering, and post-incident review.
• Participate in security risk assessments and threat modelling exercises across new and existing systems.
• Coordinate penetration test engagements (scope, logistics, findings review) and work with engineering teams to prioritise remediation.

What we’re looking for:

• Hands-on SIEM experience, ideally Microsoft Sentinel; equivalent platforms (Splunk, Chronicle, QRadar) considered.
• Practical Azure security experience across Defender for Cloud, Entra ID, Azure networking, and cloud security posture management.
• Experience writing infrastructure-as-code using Terraform or Bicep in a security engineering context.
• Ability to contribute to threat modelling and communicate security risk clearly to engineering and product audiences.
• Experience supporting or coordinating penetration testing programmes, including managing remediation cycles.
• Familiarity with AI security considerations and/or using AI tooling to augment security engineering workflows.
• A growth mindset and genuine curiosity to keep learning.

Nice to Have:

• SC-200 (Microsoft Security Operations Analyst) certification.
• KQL proficiency for detection rule authoring and threat hunting.
• Experience working in a similar fintech/financial services environment.

How we reward you: At Flagstone, the benefits extend beyond false gifts like “fruit and snacks”. Instead, we invest in your health, wealth, and professional development. Here’s a selection of our benefits:

• Competitive bonus scheme - designed to reward and recognise high performance.
• Flexible benefits budget - a pot to fund meaningful benefits for you.
• A range of salary sacrifice options to help you make tax efficient savings.
• Around the World scheme - 3 months work from anywhere scheme.
• Mental wellbeing support – Access therapy and mental health sessions.
• Learning and development – £1,000 personal development budget.
• Private health care - Enjoy all the benefits AXA has to offer.
• Medical cash plan - To help you with the costs of dental and optical expenses.
• Life insurance and Income Protection - four times your annual salary.
• Matched pension contributions up to 5%.
• 25 days holiday - plus bank holidays, well-being days and volunteering days.
• Enhanced Parental Leave – enhanced maternity, paternity and adoption pay.

All are welcome. At Flagstone, we’re assembling a diverse team that defies our industry’s norms. Think this role could suit you? We encourage you to apply, no matter your background.