Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Protect Tripadvisor's cloud environment by monitoring threats and responding to security incidents.
- Company: Join Tripadvisor, a leading travel platform connecting people with unforgettable experiences.
- Benefits: Enjoy competitive pay, flexible work options, and support for your personal growth.
- Other info: Be part of a diverse team that values collaboration and continuous learning.
- Why this job: Make a real impact in cloud security while working with cutting-edge technology.
- Qualifications: Experience in AWS security and scripting languages like Python or Go is essential.
The predicted salary is between 48000 - 72000 £ per year.
About Tripadvisor
The Tripadvisor Group connects people to experiences worth sharing, and aims to be the world’s most trusted source for travel and experiences. We leverage our brands, technology, and capabilities to connect our global audience with partners through rich content, travel guidance, and two-sided marketplaces for experiences, accommodations, restaurants, and other travel categories. The subsidiaries of Tripadvisor, Inc. (Nasdaq: TRIP), include a portfolio of travel brands and businesses, including Tripadvisor, Viator, and TheFork.
We are looking for a hands‑on Senior Cloud Security Engineer to be the first line of defense for the Tripadvisor Experiences platform. This is a critical role that blends proactive security engineering with reactive incident response. You will live and breathe in our product’s cloud environment, monitoring for threats, responding to security incidents, automating defenses, and working closely with our engineering teams to build a more resilient platform.
What You’ll Do
- Product‑Focused Incident Response: Monitor, analyze, and investigate security alerts originating from our AWS infrastructure, application logs, and security tooling (WAF, SIEM, Cloud-Native tools). Lead the response to security incidents that directly impact the Tripadvisor Experiences application, such as potential data breaches, application-layer attacks, or infrastructure compromises. Manage and triage vulnerabilities reported through our bug bounty program and other external sources.
- Security Engineering & Automation: Build and maintain security monitoring and alerting capabilities within our production environment. Automate security operations tasks using scripting languages like Python or Go to improve our detection and response times. Configure, tune, and manage security tools like our Web Application Firewall (WAF), AWS GuardDuty, and Security Hub.
- Vulnerability Management & Collaboration: Operationalize findings from application security tools (SAST, DAST, SCA) by working with engineering teams to prioritize and remediate vulnerabilities in our codebase and dependencies. Conduct threat modeling for new features to identify and mitigate risks before they reach production. Act as a security subject‑matter expert for our product and engineering teams, providing guidance on secure coding practices and architecture.
Skills & Experience
- AWS Security Operations: Deep, hands‑on experience securing a production environment in AWS. You must be comfortable with its core security services (e.g., GuardDuty, Security Hub, WAF, CloudTrail).
- AWS Cloud Infrastructure: Comprehensive understanding of core AWS services beyond just security tools (e.g., VPC networking, EC2, RDS, S3, Lambda, EKS). You must be capable of understanding and spinning up a full infrastructure stack to effectively secure it.
- Infrastructure as Code: Strong proficiency with Terraform for managing and securing cloud infrastructure. You should be able to read, write, and review Terraform code, ensuring that the infrastructure you define is secure by design.
- Incident Response: Proven experience managing the full lifecycle of security incidents, from initial detection and analysis to containment, remediation, and post‑mortem.
- Scripting for Automation: Proficiency in at least one scripting language (e.g., Python, Go, Bash) to automate security operations and analysis tasks.
- Application Security Fundamentals: A solid understanding of common web application vulnerabilities (OWASP Top 10) and how to defend against them. Demonstrated ability to use AI tools to improve efficiency, quality, and decision‑making in day‑to‑day work. Proven ability to operate effectively with a global‑first mindset.
What We Offer
- Competitive compensation packages (routinely benchmarked against the latest industry data), including base salary and annual bonuses.
- ‘Work your way’ with flexibility to suit your lifestyle. Tripadvisor Group takes a remote‑friendly approach to collaboration across a worldwide team, with the option to join on‑site as often as you’d like or as required by your team.
- Flexible schedule. Work‑life balance is ingrained in our culture by design. Trust and accountability make it work.
- Donation matching. Give back? Give more! We match qualifying charitable donations annually.
- Tuition assistance. Want to level up your career? We love to hear it! Receive annual support for qualified programs.
- Lifestyle benefit. An annual benefit to spend on yourself. Use it on travel, wellness, or whatever suits you.
- Travel perks. We believe that travel is employee development, so we provide discounts and more.
- Employee assistance program. We’re here for you with resources and programs to help you through life’s challenges.
- Health benefits. We offer great coverage and competitive premiums.
Our Cultural Pillars
- Traveler first: We exist to create value for our customer, the traveler. We enable our suppliers and partners to unlock this value. Their collective behaviors and insights are what drives us.
- Execution is our edge: We act fast, experiment, learn from failure, iterate, and improve the solutions of tomorrow across every aspect of our business. Our execution is agile, data‑driven, prioritised, and built to scale. We assume no problem is someone else’s problem and finish what can be done today, knowing tomorrow will bring fresh challenges.
- We succeed together: The best outcomes are driven by empathic, humble, and diverse subject‑matter experts working toward shared goals. We collaborate relentlessly, challenge assumptions, give actionable feedback, and set each other up for success through empowered teams with a clear charter. We transparently take ownership of our growth, individually and as a team. We celebrate the quality of our effort, our learnings, and our collective achievements.
We strive to create an accessible and inclusive experience for all candidates. If you need a reasonable accommodation during the application or the recruiting process, please make sure to reach out to your individual recruiter or our team at . If you have any additional questions about careers at Tripadvisor, you can email us at . We have all the answers!
Senior Cloud Security Engineer (AWS) in London employer: Tripadvisor
Contact Detail:
Tripadvisor Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Cloud Security Engineer (AWS) in London
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, especially those already at Tripadvisor. A friendly chat can open doors and give you insider info on what they're looking for.
✨Tip Number 2
Show off your skills! If you’ve got a portfolio or GitHub with projects related to cloud security, share it. It’s a great way to demonstrate your hands-on experience and passion for the field.
✨Tip Number 3
Prepare for the interview by brushing up on AWS security tools and incident response strategies. Be ready to discuss real-world scenarios where you’ve tackled security challenges head-on.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who take that extra step!
We think you need these skills to ace Senior Cloud Security Engineer (AWS) in London
Some tips for your application 🫡
Tailor Your Application: Make sure to customise your CV and cover letter for the Senior Cloud Security Engineer role. Highlight your AWS security experience and any relevant projects you've worked on. We want to see how your skills align with what we're looking for!
Show Off Your Skills: Don’t hold back on showcasing your technical skills! Mention your proficiency in scripting languages like Python or Go, and your experience with tools like WAF and GuardDuty. We love seeing candidates who can demonstrate their hands-on experience.
Be Clear and Concise: When writing your application, keep it clear and to the point. Use bullet points where possible to make it easy for us to read. We appreciate a well-structured application that gets straight to the good stuff!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it’s super easy to do!
How to prepare for a job interview at Tripadvisor
✨Know Your AWS Security Inside Out
Make sure you’re well-versed in AWS security services like GuardDuty, Security Hub, and WAF. Brush up on how these tools work together to protect a production environment, as you'll likely be asked about your hands-on experience with them.
✨Showcase Your Incident Response Skills
Prepare to discuss specific incidents you've managed in the past. Be ready to explain your approach to detection, analysis, containment, and remediation. This will demonstrate your ability to handle real-world security challenges effectively.
✨Demonstrate Your Automation Proficiency
Since automation is key in this role, highlight your scripting skills in Python or Go. Bring examples of how you've automated security operations or improved response times in previous positions to the table.
✨Understand Application Security Fundamentals
Familiarise yourself with common web application vulnerabilities, especially the OWASP Top 10. Be prepared to discuss how you would defend against these vulnerabilities in the context of Tripadvisor's products.