Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join a dynamic team to enhance cybersecurity controls and tackle real-world security challenges.
- Company: Leading global trading firm with a focus on innovation and security.
- Benefits: Competitive salary, hands-on experience, and opportunities for professional growth.
- Why this job: Make a tangible impact in a fast-paced environment while developing your cybersecurity skills.
- Qualifications: 1–5 years in Cybersecurity with a strong technical background and analytical mindset.
- Other info: Collaborative culture with a focus on practical solutions, not just compliance.
The predicted salary is between 36000 - 60000 £ per year.
A leading global trading firm is expanding its Cybersecurity function and is looking to hire a Security Engineer – Risk & Controls. This is a rare opportunity to join a high-performing technology environment, working closely with engineering, compliance, and risk teams to help the firm operate securely across global markets. This role is ideal for someone who thrives on solving practical security problems in complex, high-speed environments, not just ticking boxes.
Responsibilities will include:
- Assess new markets and regulatory developments (e.g., SEBI, SEC, MAS) to identify the cybersecurity controls needed for the firm to operate securely.
- Partner with compliance engineering, technology, and finance teams to design, implement, and validate effective security controls.
- Think like an attacker, anticipate real threats, evaluate control weaknesses, and strengthen the firm’s security posture.
- Ensure fundamental security controls are well-designed and properly implemented across the environment.
- Contribute to a pragmatic, engineering-led security function that enables business growth while reducing real-world risk.
Successful candidates must have:
- 1–5 years’ experience in Cybersecurity, Information Security, or Technology Risk roles.
- A background that began in a technical security discipline (e.g., security operations, incident response, vulnerability management, or penetration testing) and has evolved toward risk and controls.
- Someone who can think deeply about security, who can articulate what a technology-driven trading firm needs to worry about and what controls should be in place, rather than just reciting frameworks.
- Strong technical foundations, ideally with a degree in Computer Science, Engineering, or a related field.
- Experience working in mid-sized or scaling technology organizations (roughly 1,000–3,000 employees) or having joined an earlier-stage company and helped it grow through that phase.
- A hands-on, analytical mindset, focused on effective, well-designed controls rather than compliance checklists.
- Excellent collaboration skills and the ability to partner across technical and business teams.
What This Role Is Not:
- Not a strategic or management-level position, it’s hands-on implementation work in a complex, technical environment.
- Not a compliance-driven or audit-heavy role (ISO/SOX/NIST) — this is about practical, engineering-led control design.
London (4–5 days on-site)
Security Engineer – Risk & Controls in London employer: Iceberg
Contact Detail:
Iceberg Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Engineer – Risk & Controls in London
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at local meetups. We all know that sometimes it’s not just what you know, but who you know that can help you land that Security Engineer gig.
✨Tip Number 2
Show off your skills! If you’ve got a portfolio of projects or contributions to open-source security tools, make sure to highlight them. We want to see how you think like an attacker and tackle real-world problems.
✨Tip Number 3
Prepare for those interviews by brushing up on your technical knowledge and understanding of risk controls. We recommend practising common cybersecurity scenarios and thinking through how you’d approach them in a high-speed environment.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search.
We think you need these skills to ace Security Engineer – Risk & Controls in London
Some tips for your application 🫡
Show Your Technical Skills: Make sure to highlight your technical background in cybersecurity. We want to see how your experience in security operations or incident response has shaped your understanding of risk and controls. Don’t just list your skills; explain how you’ve applied them in real-world scenarios.
Think Like an Attacker: In your application, demonstrate your ability to think critically about security threats. We’re looking for candidates who can anticipate risks and articulate what controls are necessary. Share examples of how you've identified vulnerabilities and strengthened security measures in past roles.
Collaborate and Communicate: Since this role involves working closely with various teams, it’s essential to showcase your collaboration skills. Talk about experiences where you partnered with engineering, compliance, or finance teams to implement security controls effectively. Clear communication is key!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensure it gets the attention it deserves. Plus, you’ll find all the details about the role and our company culture there!
How to prepare for a job interview at Iceberg
✨Know Your Cybersecurity Fundamentals
Brush up on your technical knowledge related to cybersecurity, especially in areas like security operations and incident response. Be ready to discuss how these fundamentals apply to risk and controls in a trading environment.
✨Understand the Regulatory Landscape
Familiarise yourself with key regulations such as SEBI, SEC, and MAS. Be prepared to explain how these regulations impact cybersecurity controls and what specific measures you would recommend for compliance.
✨Think Like an Attacker
During the interview, demonstrate your ability to anticipate threats and evaluate control weaknesses. Share examples of how you've approached security challenges in the past, focusing on practical solutions rather than theoretical frameworks.
✨Showcase Collaboration Skills
Highlight your experience working with cross-functional teams, particularly in technology and compliance. Be ready to discuss how you’ve successfully partnered with others to design and implement effective security controls.
