Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead security design and operations for cutting-edge platforms at the London Metal Exchange.
- Company: Join the world leader in industrial metals trading with a dynamic team.
- Benefits: Enjoy competitive salary, health benefits, and opportunities for professional growth.
- Why this job: Make a real impact on global security while working with innovative technologies.
- Qualifications: 5+ years in security engineering or DevSecOps with strong analytical skills.
- Other info: Diverse and inclusive workplace with excellent career advancement opportunities.
The predicted salary is between 36000 - 60000 £ per year.
**Shift Pattern:** Standard 40 Hour Week (United Kingdom)
**Scheduled Weekly Hours:** 40
**Corporate Grade:** D - Assistant Vice President
**Reporting Line:** (UK Division) Information Technology
**Location:** UK-London
**Worker Type:** Permanent
**About the London Metal Exchange and LME Clear:** The London Metal Exchange is the world centre for industrial metals trading. Most of the world’s global non-ferrous futures business is conducted on the LME’s three trading platforms totalling $18 trillion, 178 million lots and 4 billion tonnes with a market open interest high of 1.8 million lots in 2024. All trades are cleared and settled by LME Clear.
**Overall Purpose of Role:** This role is an experienced-level position within the Information Security team at the London Metal Exchange (LME), responsible for leading the secure design, delivery, and operation of infrastructure, applications, and identity and access management (IAM) across LME’s platforms. The Senior Security Engineer serves as a subject matter expert, resolving complex technical and operational challenges by interpreting and applying security policies, guidelines, and best practices. The successful candidate will have ownership of one or more critical security processes, platforms, or products, and will be contributing to shaping LME’s security posture. This includes driving automation, secure configuration management, and the integration and migration of security controls into cloud and on-prem environments. The role also involves representing the Information Security function in cross-functional projects, contributing to workflow redesign, and influencing strategic security initiatives.
**Key Responsibilities:**
- Security Engineering & Automation: Lead the deployment, configuration, and lifecycle management of enterprise security platforms such as SIEM, XDR, DLP, Email Security, and Endpoint Protection. Design and implement automation frameworks for security tooling, configuration, and updates using Python, PowerShell, Bash, or equivalent. Drive Infrastructure as Code (IaC) adoption using Terraform and Ansible, ensuring secure, scalable, and repeatable deployments. Define and enforce secure configuration baselines across Windows, Linux, and Kubernetes environments, aligning with regulatory and internal standards.
- Identity & Access Security: Engineer and manage identity and access solutions using SailPoint, Keycloak Active Directory and CyberArk, enforcing least privilege and RBAC across hybrid environments. Automate Identity Access Management workflows and integrate identity governance into CI/CD pipelines and cloud-native platforms. Own and continuously improve access review processes, onboarding/offboarding workflows, and privileged access controls. Ensure compliance with identity-related policies and contribute to the evolution of IAM strategy and tooling.
- DevOps Integration: Lead the integration of security controls into CI/CD pipelines, including SAST/DAST, API security Testing, secrets management, and policy enforcement. Collaborate with engineering and DevOps teams to embed security into build, release, and deployment processes. Design and implement secure, resilient infrastructure solutions that align with business and operational requirements.
- Operational Support: Provide expert-level support for incident response, threat detection, and forensic analysis supporting tools such as SIEM, XDR and XSOAR. Support Red/Blue team exercises and coordinate engineering involvement during penetration testing efforts, understanding how to translate findings into actionable improvements of LME’s security controls stack. Maintain and evolve security documentation, standards, and operational procedures. Participate in on-call rotations and ensure continuity of security operations across critical infrastructure.
**Qualifications Required:** University degree in Computer Science, Engineering, Information Systems, or a related STEM field. Preferred certifications: CISSP, GIAC, Microsoft SC-200, AWS/Azure Security Specialty, CyberArk Defender, SailPoint IdentityNow, or equivalent.
**Required Knowledge and Experience:** 5+ years of hands-on experience in security engineering, DevSecOps, or infrastructure security. Proven expertise in IAM platforms and protocols (SailPoint, CyberArk, LDAP, OAuth, SAML). Security automation and scripting (Python, PowerShell, Bash). Cloud platforms and CI/CD tools (AWS, Azure, Bitbucket, GitHub Actions). Security tooling (ArcSight SIEM, XSOAR, SonarQube, HSMs, EDR, DLP). Operating systems and container orchestration (Windows, Linux, Kubernetes). Network and security protocols (zScaler, Squid, TCP/IP, HTTPS, DNS, Firewalls, VPNs).
**Personal Qualities:** Strong analytical and problem-solving skills with a proactive approach to complex challenges. Ability to lead and coordinate multiple concurrent security projects across teams. Effective communicator with excellent documentation and reporting habits. Detail-oriented, adaptable, and committed to continuous improvement in a regulated, fast-paced environment. Passionate about security engineering, automation, and protecting critical infrastructure.
The LME is committed to creating a diverse environment and is proud to be an equal opportunity employer. In recruiting for our teams, we welcome the unique contributions that you can bring in terms of education, ethnicity, race, sex, gender identity, expression and reassignment, nation of origin, age, languages spoken, colour, religion, disability, sexual orientation and beliefs. In doing so, we want every LME employee to feel our commitment to showing respect for all and encouraging open collaboration.
Security Engineer in London employer: London Metal Exchange Limited
Contact Detail:
London Metal Exchange Limited Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Engineer in London
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with current employees at the London Metal Exchange. A friendly chat can sometimes lead to opportunities that aren’t even advertised!
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your security projects, automation scripts, or any relevant work. This gives potential employers a tangible look at what you can do.
✨Tip Number 3
Prepare for interviews by brushing up on common security scenarios and challenges. Think about how you’d tackle real-world problems they might throw your way. Practice makes perfect!
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining the team!
We think you need these skills to ace Security Engineer in London
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Security Engineer role. Highlight your relevant experience in security engineering, automation, and any specific tools mentioned in the job description. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about security engineering and how your background makes you a great fit for our team. Don't forget to mention any specific projects or achievements that showcase your expertise.
Showcase Your Technical Skills: In your application, be sure to highlight your technical skills, especially those related to IAM platforms, security automation, and cloud environments. We love seeing candidates who can demonstrate their hands-on experience with the tools we use!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands. Plus, it shows us you're serious about joining our team at StudySmarter!
How to prepare for a job interview at London Metal Exchange Limited
✨Know Your Security Tools
Familiarise yourself with the specific security tools mentioned in the job description, like SIEM, XDR, and IAM platforms. Be ready to discuss your hands-on experience with these tools and how you've used them to solve real-world security challenges.
✨Showcase Your Automation Skills
Since automation is key for this role, prepare examples of how you've implemented automation frameworks using Python or PowerShell. Highlight any Infrastructure as Code (IaC) projects you've led, especially with Terraform or Ansible, to demonstrate your technical prowess.
✨Understand the Business Context
Research the London Metal Exchange and its operations. Understanding their business model and how security plays a role in protecting their trading platforms will help you tailor your responses and show that you're genuinely interested in the company.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills. Think about past incidents you've managed or security challenges you've faced, and be ready to explain your thought process and the outcomes of your actions.