Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Embed security into software development and enhance DevSecOps practices.
- Company: Fast-growing fintech company focused on secure, cloud-native platforms.
- Benefits: Competitive salary, remote work, and a chance to shape security in tech.
- Other info: Collaborate globally in a hybrid working model with excellent growth potential.
- Why this job: Join a dynamic team where security is integral to engineering.
- Qualifications: Experience in application security and familiarity with AWS and Python.
The predicted salary is between 120000 - 150000 £ per year.
We’re partnering with a fast-growing financial technology business building secure, cloud-native platforms in the digital asset space. The organisation operates globally and develops high-value systems where security, reliability, and engineering quality are critical. They’re now hiring a Senior Product Security Engineer to embed security deeper into their software development lifecycle.
This is not a pure penetration testing role. It’s for someone who enjoys working directly with engineers, improving secure design, and building scalable DevSecOps guardrails.
What You’ll Be Doing
- Embedding security into the SDLC and CI/CD pipelines
- Implementing and tuning SAST, SCA, and DAST tooling
- Performing code-level security reviews (Python-heavy backend environment)
- Leading threat modelling and secure design discussions
- Strengthening AWS cloud security controls
- Partnering with engineering teams to triage and remediate vulnerabilities
- Improving automation and reducing security bottlenecks across product teams
- Collaborating with an international security team in a hybrid working model
What We’re Looking For
- Strong experience in application / product security engineering
- Hands-on delivery of Secure SDLC and DevSecOps practices
- Experience embedding SAST / SCA / DAST into GitHub or GitLab pipelines
- Solid understanding of AWS cloud security
- Comfortable reviewing and writing Python
- Experience in fintech, regulated environments, or digital platforms preferred
- Engineering mindset — enabling teams rather than blocking them
This is an opportunity to join a technically strong team where security is treated as part of engineering, not an afterthought. If you’re interested in building secure systems in a modern financial technology environment, feel free to reach out.
Senior Product Security Engineer in Cheltenham employer: TechShack
Contact Detail:
TechShack Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Product Security Engineer in Cheltenham
✨Tip Number 1
Network like a pro! Reach out to folks in the fintech space, especially those working on security. Use LinkedIn or industry meetups to connect and chat about their experiences. You never know who might have a lead on that perfect role!
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your work in secure SDLC and DevSecOps practices. Include any projects where you've embedded security into CI/CD pipelines. This will give potential employers a taste of what you can bring to the table.
✨Tip Number 3
Prepare for interviews by brushing up on your technical knowledge. Be ready to discuss your experience with SAST, SCA, and DAST tools, and how you've implemented them in past roles. Practice explaining complex concepts in simple terms – it shows you can communicate effectively with engineering teams.
✨Tip Number 4
Don’t forget to apply through our website! We’re always on the lookout for talented individuals like you. Plus, it’s a great way to ensure your application gets seen by the right people. Let’s get you that Senior Product Security Engineer role!
We think you need these skills to ace Senior Product Security Engineer in Cheltenham
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience in application and product security engineering. We want to see how you've embedded security into the SDLC and CI/CD pipelines, so don’t hold back on those details!
Showcase Your Skills: When writing your application, emphasise your hands-on experience with SAST, SCA, and DAST tooling. We’re looking for someone who can demonstrate their understanding of AWS cloud security and Python, so make it clear how you’ve used these skills in past roles.
Be Authentic: Let your personality shine through! We value an engineering mindset that focuses on enabling teams rather than blocking them. Share examples of how you've collaborated with engineers to improve secure design and reduce security bottlenecks.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you don’t miss out on any important updates during the process!
How to prepare for a job interview at TechShack
✨Know Your Stuff
Make sure you brush up on your application and product security engineering knowledge. Familiarise yourself with Secure SDLC and DevSecOps practices, especially how to embed SAST, SCA, and DAST into GitHub or GitLab pipelines. Being able to discuss these topics confidently will show that you're the right fit for the role.
✨Showcase Your Collaboration Skills
This role involves working closely with engineering teams, so be prepared to share examples of how you've partnered with others in the past. Highlight any experiences where you triaged vulnerabilities or improved security processes without being a roadblock. This will demonstrate your engineering mindset and ability to enable teams.
✨Get Hands-On with Python
Since the role requires reviewing and writing Python code, make sure you can talk about your experience with it. Bring along examples of code you've worked on or discuss specific projects where you implemented secure coding practices. This will help you stand out as a candidate who can contribute immediately.
✨Understand AWS Security
Given the emphasis on strengthening AWS cloud security controls, it's crucial to have a solid understanding of AWS security best practices. Be ready to discuss how you've secured cloud environments in the past and any tools or strategies you've used to enhance security in those settings.