Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: As a Senior Security Engineer, you'll secure our systems and applications while leading security initiatives.
- Company: Join Numan, a fast-growing health tech company transforming how people manage their health.
- Benefits: Enjoy 25 days holiday, health insurance, flexible working, and a personal training budget.
- Why this job: Be part of a mission-driven team that values innovation, collaboration, and personal growth.
- Qualifications: Experience in security engineering with strong knowledge of application security and GCP best practices.
- Other info: Diversity is key at Numan; we celebrate unique perspectives and strive for an inclusive workplace.
The predicted salary is between 48000 - 84000 £ per year.
About Numan
Founded in 2018, we’ve already grown to be a 200+ team distributed across the globe united by a singular mission: empowering people to take control of their health.
Numan is transforming health: we’ve built a cutting-edge platform that integrates diagnostics, medication, supplements, digital programmes, and doctor consultations. Giving people the tools they need to maximise life.
To deliver on our transformative mission, we are guided by our 5 company values:
- Patients first.
- Deliver sustainable results at speed.
- Own the quality.
- Succeed together.
- Care deeply.
The Role
As Senior Security Engineer, you will play a critical part in ensuring the security of our systems, infrastructure, and applications. You will be responsible for implementing and maintaining security best practices across the organisation, with a focus on threat modeling, code security, and CI/CD security, with additionally assisting in GCP cloud security, endpoint security, security operations, and incident management.
You’ll be:
- Conducting threat modeling exercises for new and existing systems, applications, and infrastructure to identify vulnerabilities and develop mitigation strategies.
- Integrating security controls and best practices into our SDLC to ensure security is built into the development process.
- Leading the security champions program by training and collaborating with security champions to drive vulnerability management and security initiatives.
- Designing, collaborating with our Infrastructure team to implement, and manage security controls within our GCP cloud environment, including IAM, network security, data security, and logging/monitoring.
- Developing and maintaining endpoint security policies and solutions to protect against malware, phishing, and other threats.
- Leading and participating in security operations and incident response efforts, ensuring incidents are handled effectively and efficiently.
- Contributing to the development and delivery of security awareness training programs for employees.
- Working closely with development, operations, and compliance teams to integrate security into all aspects of the business.
We’re looking for someone who has:
- Experience in a security engineering role, with a strong understanding of application and product security principles and best practices.
- Proven experience conducting threat modeling exercises using methodologies such as STRIDE or DREAD.
- Hands-on experience integrating security tools and controls into CI/CD pipelines (e.g., GitHub).
- Strong knowledge of GCP security services and best practices, including IAM, networking, compute, and storage.
- Some experience with endpoint security solutions, such as antivirus, EDR, and DLP.
- Familiarity with security monitoring tools and techniques, such as SIEM, log analysis, and intrusion detection.
- Experience with incident response processes and procedures.
- Excellent written and verbal communication skills, with the ability to explain complex technical concepts to a variety of audiences.
- An investigative mindset and a natural curiosity with a “detective” mindset to proactively identify potential security threats and vulnerabilities.
- The curiosity and drive to solve complex puzzles.
It’s a bonus if you have:
- Experience with scripting languages (e.g., Python).
- Knowledge of container security and Kubernetes.
- Experience with startups and working in small teams.
Our benefits include…
- Share options.
- 25 days holiday, plus bank holidays (increasing to 30 the longer you stay with Numan).
- Health insurance with Vitality.
- Enhanced maternity and parental leave.
- Employee assistance programme (access to therapy, financial planning and discounts).
- Generous pension (includes both employee and employer contributions).
- Flexible working options, including a dog friendly office in Farringdon.
- Personal training and development budget via Learnerbly.
- Wellhub membership, giving you access to over 2,000 locations in the UK.
- Free office snacks including breakfast items, soft drinks, tea and coffee.
- Cycle to work scheme.
- Discount to Numan products for your friends and family.
- Paid volunteering days.
- An additional 2 weeks off once you reach your 5th anniversary with Numan.
Diversity at Numan
At Numan, people are at the heart of who we are. We recognise and value the unique perspectives and experiences that individuals from all backgrounds bring.
We promote innovation and creativity, enabling us to tackle things from various viewpoints and are committed to equal opportunities and continuously strive to create a workplace where everyone feels respected, heard, and valued.
Embracing diversity isn’t just our goal; it’s our strength, driving us towards a more inclusive future. #J-18808-Ljbffr
Senior Security Engineer employer: Numan
Contact Detail:
Numan Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Security Engineer
✨Tip Number 1
Make sure to familiarize yourself with the specific security methodologies mentioned in the job description, like STRIDE and DREAD. Being able to discuss these frameworks in detail during your interview will show that you have the relevant experience and understanding needed for the role.
✨Tip Number 2
Highlight any hands-on experience you have with GCP security services. Since this role involves managing security controls within a GCP environment, being able to share specific examples of your work with IAM, networking, and data security will set you apart from other candidates.
✨Tip Number 3
Demonstrate your collaborative skills by preparing examples of how you've worked with development and operations teams in the past. This role emphasizes integration across various teams, so showcasing your ability to communicate complex security concepts effectively will be crucial.
✨Tip Number 4
If you have experience with scripting languages like Python or knowledge of container security and Kubernetes, make sure to mention it. These skills are considered a bonus and can give you an edge in the selection process, especially in a tech-forward company like Numan.
We think you need these skills to ace Senior Security Engineer
Some tips for your application 🫡
Understand the Role: Make sure to thoroughly read the job description for the Senior Security Engineer position. Understand the key responsibilities and required skills, such as threat modeling, CI/CD security, and GCP cloud security.
Tailor Your CV: Customize your CV to highlight relevant experience in security engineering, particularly focusing on application and product security principles. Include specific examples of past projects where you conducted threat modeling or integrated security into development processes.
Craft a Compelling Cover Letter: Write a cover letter that reflects your passion for security and aligns with Numan's mission of empowering people to take control of their health. Mention how your values resonate with theirs, especially around delivering sustainable results and caring deeply.
Showcase Communication Skills: Since excellent written and verbal communication skills are essential for this role, ensure your application clearly conveys complex technical concepts in an understandable way. Use clear language and structure to demonstrate your ability to communicate effectively.
How to prepare for a job interview at Numan
✨Showcase Your Security Expertise
Be prepared to discuss your experience in security engineering, particularly your understanding of application and product security principles. Highlight specific projects where you've implemented security best practices and how they contributed to the overall security posture.
✨Demonstrate Threat Modeling Skills
Since threat modeling is a key responsibility, be ready to explain your approach using methodologies like STRIDE or DREAD. Share examples of past exercises you've conducted and the vulnerabilities you identified, along with the mitigation strategies you developed.
✨Familiarize Yourself with GCP Security
Given the focus on GCP cloud security, brush up on your knowledge of GCP security services, including IAM, networking, and data security. Be prepared to discuss how you've integrated security controls into cloud environments in previous roles.
✨Communicate Clearly and Effectively
Excellent communication skills are essential for this role. Practice explaining complex technical concepts in simple terms, as you'll need to collaborate with various teams. Prepare to discuss how you've trained others in security practices and led initiatives in your past positions.
