Senior Product Security Specialist - London - Payments

Product Security Engineer Specialist (12 Months +)

Global FinTech | Bank, London | 2 Days Onsite pw

Our partner, a Global Payments Leader, is expanding its Product Security team and is looking for a specialist to help embed security across the entire product lifecycle.

About the role

You will partner with engineering, product, and compliance teams to ensure products are secure by design. This role leads threat modelling, drives vulnerability management, and plays a key part in incident response and security readiness.

Key responsibilities

• Define and implement product security policies, standards, and tooling.
• Lead threat modelling for new and existing applications.
• Manage and prioritise the product vulnerability backlog and security SLAs.
• Coordinate bug bounty findings and drive timely remediation.
• Conduct root cause analysis to guide systemic fixes and developer training.
• Act as Investigation Lead or Incident Commander during security incidents and support tabletop exercises.

What you bring

• Deep expertise in secure SDLC, threat modelling, vulnerability management, and security architecture.
• Strong background in incident response, RCA, and bug bounty programme management.
• Experience integrating SAST, DAST, and SCA into CI/CD pipelines.
• Scanning result code reviews, XSS / SQLi and IDOR
• Strong communication skills and the ability to drive cross‐functional security initiatives.
• Experience with third‐party risk and regulatory security assessments.

Details

• Length: 12‐month contract
• Location: Bank, London (hybrid, 2 days onsite)
• Industry: Global FinTech
• If you’re driven to strengthen product security at scale within a high‐impact environment, we’d welcome your application.