Lead Security Engineer

Job Summary

We are seeking a Lead Security Engineer to lead and evolve our security engineering capability across cloud and on-premise environments. The role will focus on embedding security into engineering and platform design, implementing scalable security controls, and driving automation across modern infrastructure and software delivery practices.

Operating within Technology, the role will work closely with Platform Engineering, Infrastructure and Software Engineering teams, whilst maintaining a dotted-line relationship with ISO and compliance functions to ensure alignment with regulatory and governance requirements.

This is not a traditional audit or governance-led security role. The successful candidate will be expected to lead from the front technically, define engineering standards, influence platform and architectural decisions, and build scalable systems, tooling and processes that strengthen the organisation’s overall security posture across a fast-moving engineering environment.

Main Responsibilities

• Define and drive the security engineering roadmap across cloud and on-premise environments
• Lead the design and implementation of scalable security controls, standards and engineering best practices
• Partner with architecture, platform and software engineering teams to embed security into infrastructure, platforms and software delivery lifecycles
• Own the selection, implementation and operational maturity of security tooling and automation capabilities
• Act as the senior technical authority and escalation point for security engineering matters across the organisation
• Build and mature incident response, vulnerability management and remediation processes across infrastructure and applications
• • Drive security-by-design and automation-first practices across engineering and operational teams
• Work closely with ISO and compliance functions to ensure alignment with regulatory, governance and security requirements
• Continuously evaluate emerging threats, attack vectors, technologies and industry best practices to strengthen the organisation’s security posture
• Mentor and support security engineers whilst helping build a high-performing security engineering capability
• Contribute to long-term platform, infrastructure and operational resilience initiatives from a security perspective

Main Requirements

• 5+ years’ experience in a dedicated or heavily security-focused engineering role within complex, high-availability environments
• Strong background in security engineering across cloud and on-premise infrastructure environments
• Deep understanding of cloud and hybrid infrastructure security principles
• Experienced and knowledgeable in securing Kubernetes or similar containerised orchestration environments
• Strong knowledge of infrastructure, networking, IAM, secrets management and system hardening
• Hands-on experience with security tooling, automation and IaC environments
• Strong understanding of modern application and infrastructure attack vectors
• Experience operating within regulated or compliance-driven industries is advantageous
• Ability to influence engineering teams and senior stakeholders through technical leadership
• Strong problem-solving, communication and leadership capabilities

What’s in it for you?

• Dynamic and team-orientated work environment
• Opportunities for personal growth and learning
• Open, inclusive and supportive team culture where your ideas are valued
• 26 days paid holiday per year, in addition to local public holidays
• Competitive salary
• Hybrid working
• Life Assurance (4x annual salary)
• Private Medical Insurance
• Team building opportunities
• Flexible core hours between 10am – 4pm
• 24/7 Employee Assistance Programme
• Local discounts and more