Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Drive security practices and strengthen compliance across engineering and business teams.
- Company: Join Xiatech, a culture-first tech company pushing boundaries in AI-powered solutions.
- Benefits: Flexible remote work, vibrant office environment, and opportunities for professional growth.
- Why this job: Make a real impact on security in a fast-scaling, innovative organisation.
- Qualifications: 4+ years in security or related roles, with hands-on experience in SaaS environments.
- Other info: Collaborative team atmosphere with excellent career development opportunities.
The predicted salary is between 36000 - 60000 £ per year.
We’re a culture-first organisation and put our people at the forefront of everything we do. We believe that a great working environment leads to a happy and productive team which is why we offer our staff the flexibility to work remotely or from our beautiful office in Fitzrovia, Central London.
Xiatech is the pioneer of Xfuze, the world’s first AI-powered composable Integration, Data Management, Analytics and Orchestration Platform that innovatively connects systems, creates a single view of data and delivers actionable insights in one cloud-native, SaaS solution. Business, technology and data teams use Xfuze to shorten time-to-insights, accelerate digital transformation, and extend the value of their legacy technology investments.
The Role
We are looking for a proactive Information Security Engineer to join our Engineering organisation, reporting directly to the CTO/CISO and working closely on a day to day basis with our DevOps team. As an Information Security Engineer at Xiatech, you will be responsible for driving our security framework and take ownership of implementing best-in-class security practices, strengthening compliance programs, and embedding a culture of security across both our engineering and business teams. This is an exciting opportunity to have a direct impact on security at Xiatech. We’re scaling fast, and this is your opportunity to directly shape the security posture of a company that’s pushing boundaries in technology and innovation. This role will be pivotal in strengthening Xiatech’s information security framework, driving governance, and ensuring compliance across systems, third parties, and staff awareness initiatives.
Key Responsibilities
- Monitoring & Incident Response: Detect, investigate, and respond to security alerts, including malware, phishing, and unauthorized access.
- Vulnerability Management: Run scans, analyse results, and work with IT to remediate system and application vulnerabilities.
- Security Tools: Manage and optimise firewalls, endpoint protection, and intrusion detection/prevention systems.
- Access Control: Oversee user provisioning, reviews, and enforcement of least-privilege principles.
- Cloud & DevOps Security: Embed security into CI/CD pipelines and cloud-based SaaS environments.
- Device Management: Ensure endpoint compliance using company tools (ManageEngine, SentinelOne) and manage device lifecycle.
- Audit & Evidence: Maintain records of audits, incidents, and vulnerability reports for compliance and certification requirements.
- Control Implementation: Support the rollout and monitoring of ISO 27001 controls.
- Policies & Awareness: Help refine security policies and deliver staff training and awareness initiatives.
- Stakeholder Collaboration: Work with Sales, Legal, and IT teams to provide accurate, security-related input and documentation, participate in RFPs, security questionnaires, etc.
Your Knowledge & Experience Must have
- 4+ years in a security role, or have recently moved to a security role after experience in support, devops or a similar role.
- Hands‑on experience in information security, ideally within a SaaS or product‑led environment, working closely with the engineering teams.
- Proven success leading or supporting ISO 27001 and/or SOC 2 Type I/II compliance programs.
- Strong knowledge of information security principles, best practices, and standards (e.g., ISO 27001, NIST).
- Strong practical knowledge of cloud security, access management, secrets handling, and incident response.
- Bachelor’s degree in Computer Science, Information Technology, or a related field (or equivalent work experience).
- Professional certifications such as CISA, CISM, CISSP or similar credentials are preferred (not mandatory – training will be offered if needed).
- Thrives both as a self‑starter who can take ownership and as a collaborative partner driving success with our team.
- Worked with DevOps, Support and Engineering teams to embed security best practices into CI/CD pipelines.
- Monitoring and alerting – ideally Grafana, Halo ITSM.
- Any of the following tools and platforms: SonarCloud, Appcheck, OneTrust/Tugboat, Github, Chronicle.
Your Personality
- Energetic & driven
- Resilient
- Insightful
- Creative
- Sound judgement
- Analytical
- Capacity to learn
If you would like the opportunity to join a disruptive UK‑based Software as a Service organisation who believe in using the latest leading‑edge technology to drive business growth and customer differentiation and success, please enquire now by emailing abbi@xiatech.co.uk.
If you receive an offer of employment, this will be conditional upon satisfactory completion of a right to work and identity check, a reference check and a basic criminal record check for any unspent convictions. Xiatech is proud to be an equal opportunity employer and prohibits discrimination and harassment of any kind.
Information Security Engineer in City of London employer: Xiatech
Contact Detail:
Xiatech Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Engineer in City of London
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can refer you directly.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects and contributions to security. This gives potential employers a tangible look at what you can bring to the table.
✨Tip Number 3
Prepare for interviews by brushing up on common security scenarios and best practices. Practice articulating your thought process when tackling security challenges, as this will demonstrate your expertise and problem-solving skills.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining our awesome team at Xiatech.
We think you need these skills to ace Information Security Engineer in City of London
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Information Security Engineer role. Highlight relevant experience, especially in security frameworks and compliance programs, as this will show us you’re a great fit for our team.
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to express your passion for information security and how your skills align with our mission at Xiatech. We love seeing genuine enthusiasm!
Showcase Your Achievements: Don’t just list your responsibilities; showcase your achievements! Whether it’s leading a compliance program or optimising security tools, we want to see how you’ve made an impact in your previous roles.
Apply Through Our Website: We encourage you to apply through our website for a smoother application process. It helps us keep everything organised and ensures your application gets the attention it deserves!
How to prepare for a job interview at Xiatech
✨Know Your Stuff
Make sure you brush up on your information security principles and best practices, especially around ISO 27001 and cloud security. Be ready to discuss your hands-on experience and how you've implemented security measures in previous roles.
✨Show Your Problem-Solving Skills
Prepare to share specific examples of how you've detected and responded to security incidents in the past. Highlight your analytical skills and how you've worked with teams to remediate vulnerabilities or improve security frameworks.
✨Emphasise Collaboration
Since this role involves working closely with DevOps and other teams, be ready to talk about your experience collaborating across departments. Share examples of how you've embedded security practices into CI/CD pipelines or worked on compliance programs.
✨Ask Insightful Questions
Prepare thoughtful questions about Xiatech's security culture and how they approach compliance and incident response. This shows your genuine interest in the role and helps you gauge if the company is the right fit for you.
