Senior Security Engineer - Enterprise Security in London

We're hiring a Senior Security Engineer to lead and raise the bar for enterprise security at Spotify. In this role, you'll be hands‐on across core security domains, IAM, endpoint management, networking, and shaping how we secure an increasingly AI‑enabled enterprise. You'll build tooling and automation, define policies and guardrails, and partner closely with teams across IT, infrastructure, legal, and beyond to keep Spotify moving fast without compromising on security.

The ideal candidate brings solid professional experience in enterprise security, strong technical foundations, and a genuine comfort with AI, both as a tool to augment their own work and as a surface area to secure. Just as importantly, you're an excellent communicator who can translate security priorities into language that resonates across a global, cross‑functional organization.

What You’ll Do

• Drive the evolution of Spotify's enterprise security program by identifying gaps, proposing improvements, and implementing changes that balance strong security with a frictionless employee experience.
• Design and build security automation, integrations, and internal tooling to scale enterprise security and reduce manual toil.
• Collect and analyze high‑quality security data to improve detection capabilities and generate data‑driven insights that shape the direction of the enterprise security program.
• Define and implement security hardening, guardrails and policies for enterprise applications and SaaS platforms.
• Partner with Site Reliability, IT, and other Security teams to provide expert guidance on enterprise security best practices and drive meaningful improvements to systems and processes.
• Investigate, propose and implement changes to Spotify’s Enterprise Security posture across domains including: IAM, Single Sign‑on, Endpoint Management, and Networking.
• Lead governance and oversight of enterprise security tooling, including password managers and enterprise browsers.
• Champion and enforce enterprise security best practices across endpoints, enterprise products, and network infrastructure, advising bandmates and teams along the way.
• Collaborate closely with IT, infrastructure, legal and communications to ensure a coordinated approach to enterprise security.
• Mentor and support the growth of engineers around you, raising the security bar across the organization.

Who You Are

• You have several years of experience in enterprise security at fast moving technology companies.
• Alternatively, you have deep expertise in enterprise systems engineering and are ready to transition into a security-focused career.
• You have demonstrated experience applying enterprise security principles across IAM, SSO, networking, and device management, and you understand how these domains interrelate to form a cohesive security foundation.
• You can think like an attacker and understand how to identify risks and implement countermeasures against threats that span identity, endpoint, network, and cloud boundaries.
• You have a solid understanding of the risks introduced by agentic AI in an enterprise context and you are eager to get hands‑on identifying and mitigating these risks in our environment.
• You actively leverage AI tooling to augment your own work and are eager to explore how emerging AI capabilities can be applied to enterprise security challenges.
• You can critically evaluate tools, practices and procedures, and you're willing to advocate for improvements and change when you see opportunities or risk.
• You have an understanding of the current threat landscape, and want to be part of a team creating and implementing state of the art security solutions in a SaaS‑driven enterprise environment.
• You communicate complex security topics clearly to both technical and non‑technical audiences, and you're skilled at building alignment across a global, cross‑functional organization.
• You thrive in a flexible environment with broad scope and you're energized by the freedom to innovate and challenge conventional security thinking.

Where You’ll Be

We offer you the flexibility to work where you work best! For this role, you can be within the EMEA region as long as we have a work location (excluding France due to on‑call restrictions). This team operates within the Central European and GMT time zone for collaboration.

Spotify is an equal opportunity employer. You are welcome at Spotify for who you are, no matter where you come from, what you look like, or what’s playing in your headphones. Our platform is for everyone, and so is our workplace. The more voices we have represented and amplified in our business, the more we will all thrive, contribute, and be forward‑thinking! So bring us your personal experience, your perspectives, and your background. It’s in our differences that we will find the power to keep revolutionizing the way the world listens.

At Spotify, we are passionate about inclusivity and making sure our entire recruitment process is accessible to everyone. We have ways to request reasonable accommodations during the interview process and help assist in what you need. If you need accommodations at any stage of the application or interview process, please let us know – we’re here to support you in any way we can.