At a Glance
- Tasks: Join a team to enhance security through hands-on vulnerability management and incident response.
- Company: Dynamic tech company focused on building a robust Security Engineering function.
- Benefits: Flexible work options, top-notch Apple gear, wellness support, and tasty office snacks.
- Other info: Great career growth opportunities in a supportive and positive team environment.
- Why this job: Make a real impact in security while learning from experienced professionals.
- Qualifications: Foundational experience in security engineering or DevOps, with a collaborative mindset.
The predicted salary is between 60000 - 80000 £ per year.
We’re building a dedicated Security Engineering function.
You'll join alongside a Senior Security Engineer and together form the operational security backbone of the engineering organisation.
Your Mission
You’ll be hands‑on across vulnerability management, access controls, monitoring, and secure development support.
You’ll work closely with a Senior Security Engineer who’ll mentor you and help you grow, while partnering day‑to‑day with Infrastructure and Product engineering teams.
This is a hands‑on engineering role, not a dashboard‑watching SOC seat or a governance one: you’ll build, fix, and improve, while a separate team owns policy and risk frameworks.
You’ll learn fast and ship real security improvements from week one.
If you like fixing things, digging into alerts, and making systems harder to break, you’ll thrive here.
You will sit at the intersection of two domains: as a security engineer, your impact will be directly measured by how effectively you translate second‑line‑of‑defence guidance (from the Compliance and Regulatory team) into practice, while ensuring technical alignment and buy‑in from the Product and Engineering organisation you are part of.
Key Responsibilities
- Vulnerability & Incident Management
- Triage vulnerabilities from our bug bounty program, scanners, and dependency checks.
- Support incident response: develop fixes, track resolution, update tickets, and contribute to post‑mortems.
- Monitor and process security alerts from our SIEM and other monitoring tools.
- Identity & Access Management
- Implement and maintain SSO/MFA configurations for product and infrastructure systems, leveraging Okta and Google Workspace to manage downstream access rights.
- Implement roles and access rights per tool and system.
- Run periodic permission reviews and access audits.
- Manage production secrets and credential rotation.
- Secure Development Support and Tooling
- Run pre‑deployment security checks: static analysis, dependency scanning, container image scanning.
- Flag issues in code reviews when security patterns are violated.
- Help engineers understand and fix security findings.
- Assess adoption of AI coding tools across engineering teams: flag insecure usage patterns, identify data leakage risks, and help maintain internal AI usage guidelines.
- Monitoring & Detection
- Monitor SIEM alerts, investigate suspicious activity, and elevate when needed.
- Maintain and tune detection rules under guidance from the Senior Security Engineer.
- Help operate and maintain SIEM infrastructure (Elastic Search, log collection pipelines).
- Security Operations
- Support pentest coordination: prepare test environments, track remediation items.
- Maintain documentation on security procedures and runbooks.
- Must‑Haves
- Foundational experience in security engineering, SOC, or a Dev Ops/SRE role with a strong security focus, eager to deepen across the security stack.
- Solid understanding of web application security (OWASP Top 10, common attack vectors).
- Hands‑on experience with at least two of: vulnerability scanning tools, SIEM/log analysis, IAM systems (Okta, Google Workspace), or CI/CD security tooling.
- Comfortable scripting (Python, Bash, or similar) to automate repetitive security tasks.
- Collaborative mindset: you work across many teams and communicate security issues clearly and constructively.
Rather than binary allowed/forbidden calls, you assess and articulate risk through a severity and likelihood lens, bringing teams along instead of acting as a blocker.
- Nice‑to‑Haves
- Experience with AWS security (IAM policies, Security Hub, Guard Duty).
- Familiarity with Elastic Search / ELK stack.
- Exposure to infrastructure‑as‑code (Terraform) and container security.
- Knowledge of compliance frameworks (ISO 27001, SOC 2, PCI‑DSS): not as an auditor, but enough to understand why controls exist.
- Experience in fintech or a regulated environment.
Benefits
- Flexible on‑site and remote policy.
- Latest Apple equipment — the tools you need to excel.
- Access to Moka. care — for emotional and mental health wellbeing.
- Great office snacks — to fuel your day.
- A positive team to work with daily.
- Location‑specific benefits tailored to each market, including health insurance, wellness allowances, commuter support, meal vouchers, and gym memberships — ensuring you’re well supported wherever you’re based.
- #J-18808-Ljbffr
Associate Security Engineer employer: Spendesk
As an Associate Security Engineer, you'll be part of a dynamic and innovative team dedicated to enhancing security across our engineering organisation. We offer a flexible work environment that promotes collaboration and personal growth, with mentorship from experienced professionals to help you develop your skills. Our commitment to employee wellbeing is reflected in our comprehensive benefits package, including mental health support and location-specific perks, ensuring you thrive both personally and professionally.