Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join us as a Security Engineer to enhance F1's cloud security and manage vulnerabilities.
- Company: Be part of the dynamic Formula 1 team, where technology meets high-speed racing.
- Benefits: Enjoy a 12-month FTC with opportunities for growth and collaboration in a cutting-edge environment.
- Why this job: Work in a fast-paced culture that values innovation and teamwork while making a real impact.
- Qualifications: Must have hands-on AWS experience, knowledge of CI/CD, and a passion for security.
- Other info: Collaborate with top experts in the field and contribute to exciting projects in motorsport technology.
The predicted salary is between 36000 - 60000 £ per year.
Our team of hundreds of skilled experts keep Formula 1 moving. We’re on the lookout for a Security Engineer to work with us on a 12-month FTC! Reporting to the Cyber Security Manager, the main purpose of this role is to support the development and management of security technologies across F1’s growing technology landscape.
Main Duties & Responsibilities:
- Assess and maintain high standards of security maturity across Formula 1’s cloud infrastructure.
- Focus on new and existing infrastructure, managing technical vulnerabilities, support continued system maintenance, and minimise technical debt.
- Ensure visibility and reporting of Cloud infrastructure against Formula 1’s compliance and security standards (such as ISO 27001 and CIS).
- Vulnerability Management and reporting across Formula 1’s cloud environment(s), including:
- Development of requirements, design, and implementation of cloud security tools (E.g. compliance and host security).
- A key focus on threat detection and risks across cloud environments.
- Identification, remediation, and reporting of security vulnerabilities.
- Reporting on compliance to F1’s security standards.
- Support in the delivery and management of security design and architecture reviews.
- Working closely with Infrastructure teams on security design and control strategies to reduce risks.
- The definition and operation of secure development / operations (DevOps) practices, inc. code scanning, Kubernetes, container security.
- System and device hardening policies and reporting.
- Technology focused threat assessments to identify threats/risks.
- Documentation of security requirements, patterns, and processes.
- Liaising closely with Formula 1’s cyber security, infrastructure, and digital teams on new and existing initiatives.
About You:
- Extensive hands-on experience with AWS cloud infrastructure – inc. AWS Security Services (CloudTrail, Guard Duty, WAF, IAM, Security Hub etc.).
- Knowledge of CI/CD including DevSecOps patterns and principles.
- Infrastructure as code experience utilising Terraform.
- Knowledge of container technologies.
- Extensive experience with AWS Security Services & Governance and Information Security Best Practices.
- Experience with other enterprise cloud platforms e.g. Azure.
- Kubernetes experience.
- Identity & Access Management deployment and administration (e.g. Okta, Entra ID).
- Web application security technologies – WAF, Bot Protection, DDOS Protection, etc.
- Adaptable, passionate and a team-player.
Division: Technical
For more detail, salary and company information, use the apply link.
Security Engineer - FTC employer: Formula 1
Contact Detail:
Formula 1 Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Engineer - FTC
✨Tip Number 1
Familiarise yourself with AWS Security Services, as this role requires extensive hands-on experience. Consider setting up a personal project or lab environment to practice using services like CloudTrail, Guard Duty, and IAM.
✨Tip Number 2
Brush up on your knowledge of CI/CD and DevSecOps principles. You might want to explore online courses or tutorials that focus on integrating security into the development pipeline, which is crucial for this position.
✨Tip Number 3
Gain practical experience with Infrastructure as Code using Terraform. Try to create and manage cloud resources through code, as this will not only enhance your skills but also demonstrate your capability in the interview.
✨Tip Number 4
Network with professionals in the cybersecurity field, especially those who work with cloud technologies. Engaging in relevant forums or attending industry events can provide insights and potentially lead to referrals for the job.
We think you need these skills to ace Security Engineer - FTC
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience with AWS cloud infrastructure and security services. Emphasise any hands-on experience you have with vulnerability management, compliance standards like ISO 27001, and DevSecOps practices.
Craft a Strong Cover Letter: In your cover letter, express your passion for cybersecurity and how your skills align with the role. Mention specific projects or experiences that demonstrate your ability to manage security technologies and work collaboratively with teams.
Showcase Technical Skills: Clearly outline your technical skills related to the job description, such as your experience with Terraform, Kubernetes, and identity management tools. Use bullet points for clarity and ensure you provide examples of how you've applied these skills in previous roles.
Highlight Team Collaboration: Since the role involves working closely with various teams, include examples of past collaborations. Describe how you contributed to team projects, particularly in areas related to security design and architecture reviews.
How to prepare for a job interview at Formula 1
✨Showcase Your Cloud Expertise
Make sure to highlight your extensive hands-on experience with AWS cloud infrastructure during the interview. Be prepared to discuss specific AWS Security Services you've worked with, such as CloudTrail and Guard Duty, and how you've implemented them in past projects.
✨Demonstrate Your Knowledge of Security Standards
Familiarise yourself with compliance standards like ISO 27001 and CIS. Be ready to explain how you have ensured compliance in previous roles, particularly in relation to vulnerability management and reporting within cloud environments.
✨Discuss Your DevSecOps Experience
Since the role involves CI/CD and DevSecOps principles, be prepared to share your experiences with these methodologies. Talk about how you've integrated security into the development process and any tools you've used for code scanning or container security.
✨Prepare for Technical Questions
Expect technical questions related to threat detection, risk assessment, and security design. Brush up on your knowledge of Kubernetes, Terraform, and identity management solutions like Okta, as these are crucial for the role.
