At a Glance
- Tasks: Lead the charge in enhancing our cyber resilience and security controls.
- Company: Join World of Books Group, a certified B Corp and leader in pre-loved books.
- Benefits: Enjoy competitive salary, flexible remote work, and a modern toolchain.
- Other info: Be part of a high-trust team where you set your own direction.
- Why this job: Shape the future of security in a mission-driven company with real impact.
- Qualifications: 5+ years in security engineering with hands-on experience in cloud security and identity management.
The predicted salary is between 70000 - 90000 £ per year.
This is a role for someone who wants to shape rather than maintain.
World of Books Group is a certified B Corp and one of the world's largest sellers of pre‑loved books, operating across the UK, US, and Hungary. Our technology estate spans cloud platforms, e‑commerce marketplaces, in‑house engineering, and a broad SaaS footprint – and we're looking for the person who will make it safer.
As Lead Security Engineer, you'll design, build, and operate the controls that underpin our cyber resilience programme. You'll report directly to the Group Information Security Manager and work with real autonomy – shaping the roadmap, choosing the tools, and driving the engineering work that moves our security maturity forward. This is a genuinely hands‑on role. You'll treat AI and automation as force multipliers, influence across IT, Engineering, Product, and Finance without holding formal authority, and leave decisions documented in a way that outlasts individuals.
What You'll Focus On
- Asset and Application Visibility: establishing continuous, automated discovery and ownership of our hardware, software, cloud, and SaaS estate
- Zero Trust Enforcement: identity‑aware access controls across remote and internal services
- Data Loss Prevention: phased DLP coverage against our highest‑risk data flows
- Identity Lifecycle: strengthening JML processes in Entra ID and key SaaS platforms
Your wider remit will grow to include detection engineering, vulnerability management, AI security governance, third‑party risk, and security tooling strategy – you'll help set the sequence.
What We're Looking For
Essential:
- 5+ years in security engineering or architecture, with clear progression in technical depth
- Hands‑on delivery across at least three of: cloud security (GCP/AWS), identity and access management (Entra ID), SIEM and detection engineering, DLP, zero trust
- Sound judgment under uncertainty – you can make and defend security decisions with incomplete data
- Practical AI and automation fluency – you use it habitually to multiply your impact
- A track record of influencing engineering, product, and leadership stakeholders
- Comfortable in a small, high‑trust team where you set your own direction
Nice to have:
- Experience with Rapid7 InsightVM / InsightIDR, SentinelOne, Cloudflare, OneTrust, Microsoft Purview, or KnowBe4
- Background in e‑commerce, marketplace, or retail technology
- Familiarity with NIST CSF, ISO 27001, OWASP LLM Top 10, or similar frameworks
- Infrastructure‑as‑code (Terraform), scripting (Python, PowerShell), or detection‑as‑code workflows
What We Offer
- Competitive salary, plus Group benefits
- Remote / hybrid working, UK‑based, with flexible London office presence
- A clear mandate to drive change – not maintain the status quo
- A modern toolchain: Rapid7 (MDR), SentinelOne, OneTrust, and AI tooling at org level
- A business with genuine mission – B Corp certified, sustainability‑led, and growing
What Success Looks Like in Year One
- A current, trusted view of the full asset and application estate with clear ownership
- A progressing zero trust enforcement capability, with measurable reduction in implicit‑trust paths
- Meaningful reduction in manual audit effort across security controls
- Trusted cross‑functional relationships – you're seen as someone who unblocks, not gates
Lead Security Engineer employer: World of Books Group
World of Books Group is an exceptional employer that champions innovation and sustainability, offering a unique opportunity for the Lead Security Engineer to shape the future of cyber resilience in a dynamic, remote-friendly environment. With a commitment to employee growth, a modern toolchain, and a culture that values autonomy and collaboration, you'll be empowered to make impactful decisions while working alongside a passionate team dedicated to making a difference in the world of pre-loved books.
StudySmarter Expert Advice🤫
We think this is how you could land Lead Security Engineer
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect on LinkedIn. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects and achievements in security engineering. This gives potential employers a taste of what you can bring to the table.
✨Tip Number 3
Prepare for interviews by brushing up on common security scenarios and challenges. Be ready to discuss how you've tackled similar issues in the past and how you can apply that experience to the Lead Security Engineer role.
✨Tip Number 4
Don't forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you're genuinely interested in joining our mission at World of Books Group.
We think you need these skills to ace Lead Security Engineer
Some tips for your application 🫡
Show Your Passion for Security:When you're writing your application, let your enthusiasm for security engineering shine through! We want to see how you can shape our security landscape, so share your experiences and what drives you in this field.
Tailor Your Application:Make sure to customise your CV and cover letter to highlight the skills and experiences that align with the Lead Security Engineer role. We’re looking for specific examples of your hands-on delivery in areas like cloud security and zero trust enforcement.
Be Clear and Concise:Keep your application straightforward and to the point. We appreciate clarity, so avoid jargon unless it’s relevant. Make it easy for us to see how your background fits with what we need!
Apply Through Our Website:Don’t forget to submit your application through our website! It’s the best way for us to receive your details and ensures you’re considered for the role. We can’t wait to hear from you!
How to prepare for a job interview at World of Books Group
✨Know Your Stuff
Make sure you brush up on your security engineering knowledge, especially around cloud security and identity management. Be ready to discuss specific tools like Rapid7 or SentinelOne, and how you've used them in past roles.
✨Show Your Hands-On Experience
This role is all about being hands-on, so come prepared with examples of projects where you've designed and implemented security controls. Highlight your experience with automation and AI, as these are key to multiplying your impact.
✨Demonstrate Your Influence
Since you'll be working across various teams without formal authority, think of instances where you've successfully influenced stakeholders. Share stories that showcase your ability to drive change and build trusted relationships.
✨Be Ready for Scenario Questions
Expect questions that test your judgment under uncertainty. Prepare to discuss how you would handle incomplete data when making security decisions, and be ready to explain your thought process clearly.
