At a Glance
- Tasks: Shape security for an AI-native company and build innovative security frameworks.
- Company: Join Zinc, a forward-thinking tech company focused on data ownership.
- Benefits: Enjoy 24 days holiday, early finish Fridays, and a £1200 benefits allowance.
- Other info: Work from anywhere for 30 days and enjoy company retreats abroad.
- Why this job: Make a real impact on security in a fast-paced, AI-driven environment.
- Qualifications: 3+ years in security engineering with cloud security experience.
The predicted salary is between 70000 - 90000 £ per year.
We're hiring a Security Engineer to run our org-wide technical security posture as Zinc scales. We're an AI-native company. We use Claude, Cursor, Granola, and n8n across the business and we need someone who can build the security frameworks that let us move fast without taking on unacceptable risk. This is NOT a GRC or compliance role. We have ISO 27001. What we need is someone who builds security controls and capabilities, helping to establish things like our AI tool governance process, and embeds secure-by-design thinking into how we build and operate. If you want to write policies and sit in a compliance function, this isn't the right fit. If you want to shape how a genuinely AI-native business does security, keep reading.
Key Responsibilities
- Own and continuously improve our org-wide security posture
- Build our AI tool adoption security review and approval process
- Lead secure-by-design engineering practices across Tech, Ops, and Customer teams
- Maintain and develop our cloud security posture (AWS)
- Manage incidents, tooling, integrations, projects, vulnerability & threat hunting
- Conduct third-party tool risk assessments
- Manage the transition from our outgoing contractor CISO
- Influence security culture across the business without direct line authority
Skills, Knowledge and Expertise
Essential:
- Security engineering background - you identify and build controls, not just document them.
- Cloud security experience (AWS)
- Familiarity with security/architecture frameworks
- Secure-by-design engineering principles
- 3+ years in a security engineering role
- Ability to influence without authority and communicate security risk in plain language
Desirable:
- Experience securing AI tools and LLM-based systems
- Vulnerability or Threat Hunting inside SaaS environments
- ISO 27001 working knowledge (we're already certified)
- SaaS company experience
What we offer
- Zinc offers a chance to work on a product that brings a fresh perspective on data ownership in hiring
- 24 days holiday + Bank Holidays + your birthday off
- £1200 annual benefits allowance (ThanksBen, from month 2)
- Early finish Fridays (16:00)
- Yearly company retreat abroad (This year it's Turin)
- 30 days to Work from anywhere
- Enhanced Maternity, Paternity, and Adoption Leave (2 months full pay, then statutory)
- Statutory pension with NEST (3% employer, 5% employee)
- Zinc shares, issued through the EMI Scheme
- Unlimited access to MoreHappi coaching
- Company socials, quarterly team socials
- Free Monday lunches
- Nursery workplace benefit scheme (Yellownest)
- Option to lease an electric car through Electric Car Scheme
- Celebrated Zinc anniversaries
Senior Security Engineer in London employer: Zinc Work
Zinc is an exceptional employer for a Senior Security Engineer, offering a dynamic work environment where innovation meets security. With a strong focus on employee growth, we provide extensive benefits including 30 days of remote work flexibility, generous holiday allowances, and unique perks like early finish Fridays and annual retreats abroad. Join us to shape the future of security in an AI-native company that values your expertise and fosters a collaborative culture.
StudySmarter Expert Advice🤫
We think this is how you could land Senior Security Engineer in London
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your security projects and contributions. This is a great way to demonstrate your hands-on experience and secure-by-design thinking.
✨Tip Number 3
Prepare for interviews by brushing up on common security scenarios and challenges. Be ready to discuss how you've built controls and influenced security culture in past roles. We want to see your problem-solving skills in action!
✨Tip Number 4
Don't forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are genuinely interested in joining our AI-native team.
We think you need these skills to ace Senior Security Engineer in London
Some tips for your application 🫡
Show Your Security Savvy:Make sure to highlight your security engineering background in your application. We want to see how you've built controls and frameworks, not just documented them. This is your chance to showcase your hands-on experience!
Tailor Your Application:Don’t just send a generic CV! Tailor your application to reflect the specific skills and experiences that match our job description. Mention your cloud security experience and any familiarity with AI tools, as these are key for us.
Keep It Clear and Concise:When writing your application, use plain language to communicate your security expertise. We appreciate clarity and straightforwardness, especially when discussing complex topics like risk management and secure-by-design principles.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for this exciting opportunity to shape security in an AI-native business!
How to prepare for a job interview at Zinc Work
✨Know Your Security Frameworks
Make sure you’re well-versed in security and architecture frameworks, especially those relevant to cloud security like AWS. Brush up on how these frameworks can be applied in an AI-native environment, as this will show your understanding of the role's requirements.
✨Demonstrate Secure-by-Design Thinking
Prepare examples of how you've implemented secure-by-design principles in past projects. Be ready to discuss how you can embed these practices across different teams, showcasing your ability to influence without authority.
✨Showcase Your Incident Management Skills
Be prepared to talk about your experience managing security incidents and conducting vulnerability assessments. Highlight specific tools or methodologies you've used, as this will demonstrate your hands-on expertise in maintaining a robust security posture.
✨Communicate Clearly About Security Risks
Practice explaining complex security concepts in plain language. This is crucial for influencing security culture across the business, so think of ways to simplify your past experiences and make them relatable to non-technical stakeholders.
