Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Secure cloud environments and fix vulnerabilities in application code while collaborating with engineers.
- Company: Join MillTech, a leading FinTech innovator in currency operations technology.
- Benefits: Competitive salary, flexible remote work, medical insurance, and generous leave policies.
- Other info: Remote-first role with opportunities for professional growth and exciting projects.
- Why this job: Make a real impact on security in the fast-paced financial tech industry.
- Qualifications: 3-5 years in security engineering and strong coding skills in Python, Java, or TypeScript.
The predicted salary is between 60000 - 75000 £ per year.
About MillTech
MillTech is a FinTech company specialising in FX and cash management automation solutions. We build the technology that powers mission-critical currency operations in the world's largest financial market. Our platform and security teams work at the intersection of cloud infrastructure, security, and software delivery to keep those systems resilient, compliant, and fast.
Your mission
We’re looking for a Security Engineer to join our Platform & Security team. This is a hands-on, mid-level position for someone who is equally comfortable hardening cloud environments and rolling up their sleeves to fix vulnerabilities in application code. You’ll work across our AWS and Azure estates, embed security into our CI/CD pipelines, and contribute directly to development projects when CVEs need resolving quickly.
Your responsibilities in this role will include:
- Improve cloud security controls across AWS and Azure, including IAM policies, network segmentation, encryption standards, and logging.
- Integrate security tooling (SAST, DAST, dependency scanning) into CI/CD pipelines to shift security left in the development lifecycle.
- Triage, prioritise, and assist remediation of CVEs — contributing code fixes directly to development projects when needed, not just raising tickets.
- Collaborate with platform and backend engineers on infrastructure-as-code reviews, container security, and secrets management.
- Support cloud hardening initiatives, including CIS benchmark compliance and ongoing posture monitoring.
- Participate in security reviews of new features, architecture proposals, and third-party integrations.
- Contribute to incident response processes, including root cause analysis and post-incident improvements.
Required skills:
- 3–5 years’ experience in a security engineering, DevSecOps, or cloud security role.
- Solid working knowledge of AWS security services (GuardDuty, Security Hub, Config, IAM) and familiarity with Azure security controls.
- Practical experience with CI/CD tooling (e.g. GitHub Actions, Jenkins, GitLab CI) and embedding security checks into pipelines.
- Strong understanding of code management practices: branching strategies, pull request workflows, and dependency management.
- Ability to read, understand, and contribute to application code (Python, Java, TypeScript, or similar) to remediate vulnerabilities.
- Familiarity with container security (Docker, Kubernetes) and infrastructure-as-code.
- Knowledge of common vulnerability frameworks (CVE, CVSS, OWASP Top 10) and secure coding principles.
- Good communication skills — you can explain a risk to a developer and help them fix it, not just flag it.
Additional skills you may have:
- Experience in financial services or a regulated environment.
- AWS or Azure security certifications (e.g. AWS Security Specialty, AZ-500).
- Familiarity with identity platforms such as Keycloak or AWS Cognito.
- Experience with security observability and SIEM tooling.
Working Arrangements
This is a remote first role but you will be expected to visit our London office from time to time.
What we offer in return?
Our commitment is to help you flourish in this role, through support with your professional development, opportunities to be involved in key projects, and exposure to challenges that you may not be offered in a larger organisation. We will provide:
- A competitive salary with annual reviews;
- 25 days’ paid annual leave plus an additional day per year of service;
- Excellent staff development and training opportunities;
- Flexible working arrangements including remote working;
- Medical insurance;
- Life insurance, for UK based employees;
- Dental insurance;
- EV Scheme and Cycle to work scheme;
- Enhanced maternity and paternity leave;
- 1 day off for charity work per quarter and many other benefits!
How to apply?
We would love to hear from you if you think that you’re a good fit for this role. To apply you should complete the online application form and upload your CV before the date the offer for this role closes. If you have a public GitHub account, please include a link in your application. One of the team will then be in touch with you to discuss the next steps.
Security Engineer in London employer: MillTech
Contact Detail:
MillTech Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Engineer in London
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can refer you directly.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, especially those related to security engineering. This gives potential employers a taste of what you can do beyond just a CV.
✨Tip Number 3
Prepare for interviews by brushing up on common security scenarios and coding challenges. Practice explaining your thought process clearly, as communication is key in this role. We want to see how you tackle problems!
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen. Plus, it shows you’re genuinely interested in joining our team at MillTech. Don’t miss out on this opportunity!
We think you need these skills to ace Security Engineer in London
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your relevant experience in security engineering and cloud environments. We want to see how your skills align with the role, so don’t be shy about showcasing your AWS and Azure expertise!
Show Off Your Projects: If you’ve worked on any cool projects, especially those involving CI/CD pipelines or vulnerability remediation, include them! We love seeing practical examples of your work that demonstrate your hands-on experience.
Be Clear and Concise: When filling out the application form, keep your answers clear and to the point. We appreciate straightforward communication, so make it easy for us to see why you’re a great fit for the Security Engineer role.
Include Your GitHub Link: If you have a public GitHub account, don’t forget to include the link in your application. It’s a great way for us to check out your coding skills and see your contributions to open-source projects!
How to prepare for a job interview at MillTech
✨Know Your Stuff
Make sure you brush up on your knowledge of AWS and Azure security services. Be ready to discuss specific tools like GuardDuty and IAM policies, and how you've used them in past roles. This will show that you're not just familiar with the concepts but have practical experience.
✨Show Off Your Coding Skills
Since you'll need to contribute to application code, be prepared to talk about your experience with languages like Python or Java. Bring examples of how you've fixed vulnerabilities in the past, and maybe even share a GitHub link to showcase your work.
✨Understand the CI/CD Pipeline
Familiarise yourself with CI/CD tooling like GitHub Actions or Jenkins. Be ready to explain how you've integrated security checks into these pipelines before. This will demonstrate your ability to shift security left in the development lifecycle, which is crucial for the role.
✨Communicate Clearly
Good communication skills are key, especially when explaining risks to developers. Practice articulating complex security concepts in simple terms. This will help you stand out as someone who can bridge the gap between security and development teams.