Senior Security Engineer

RequirementsSignificant experience working as a Cloud Security Engineer in DevSecOps environments with an in-depth knowledge of Infrastructure as Code (Terraform), Containers and CI/CD concepts.Significant knowledge of AWS and implementing AWS Well Architected Security pillar.Breadth of knowledge of cloud-based IAM/PAM and authentication concepts.Strong proficiency in coding/scripting/development languages - Python, Terraform, Java ideallyExperience building and fine-tuning security tooling to be deployed in cloud environments.

I'm currently working with one of the most innovative, tech-driven Quant Finance firms who are looking to bring in a Senior Security Engineer to work directly alongside their newly appointed Head of Security Engineering and lead in the build-out of their cloud-native Infrastructure capability. Highly technical position where you will be responsible for not just assessing and threat modelling novel concepts and services to introduce across Security and the wider Tech functions; but leading in the actual design, configuration and implementation. Previous experience in Software Security / Cloud Security Engineering capacity with the ability to comfortably read, write and script in Python will be essential as an in-depth knowledge of deploying Infrastructure as Code, Containers, CI/CD concepts and policy as code will be a minimum requirement. This is genuinely an incredible opportunity to build something truly innovative, with the backing of one of the most respected leaders in Security, as well as an incredibly forward-thinking wider Tech division. You have the chance to put your stamp on one of the most ambitious Tech Transformations for one of the most renowned Quant Finance firms in the UK. ResponsibilitiesPerform hands-on security threat modelling, risk assessment and vulnerability remediation.Evaluate, architect, implement and support security focused tools and services.Work closely with Development teams to ensure security and privacy are built in by design, automating tasks wherever possible.Promote a security focused culture across the organization.