Lead Security Engineer

Security Engineering Lead

Location: London (Hybrid - 2 days per week onsite)

Salary: £110,000

About the Role

We are hiring for a Security Engineering Lead to join a global technology company delivering advanced analytics solutions across highly regulated industries.

This is a high-impact leadership role for an experienced security engineering professional who thrives in both strategic and hands-on environments. You will lead the design, implementation, and continuous improvement of the organisation's security engineering capabilities across cloud platforms, infrastructure, security tooling, and incident response.

As the technical lead for cybersecurity engineering, you will help shape the organisation's security roadmap while remaining close to the technology and operational detail. From strengthening detection capabilities and improving cloud security to driving automation and supporting critical incidents, you will play a key role in protecting the business as it scales.

You will work closely with IT, Engineering, Product Security, and Compliance teams to ensure security is Embedded across the technology landscape in a practical, scalable, and business-aligned way.

What You'll Be Responsible ForSecurity Engineering & Technical Leadership

  • Lead the development and execution of the organisation's security engineering strategy and technical roadmap.
  • Design and implement scalable security controls across cloud, infrastructure, endpoints, and identity platforms.
  • Act as the senior technical escalation point for cybersecurity engineering and operational security matters.
  • Mentor and develop security engineering capability across the team.
  • Work closely with engineering and infrastructure teams to embed security-by-design principles into systems and services.

Cloud & Infrastructure Security

  • Own and enhance the security posture of a predominantly AWS-based environment.
  • Secure and optimise Microsoft 365, Entra ID, and Microsoft Defender environments.
  • Implement and improve cloud security controls including IAM, logging, monitoring, encryption, network security, and posture management.
  • Drive automation and security tooling improvements to improve visibility, detection, and response.

Security Operations & Detection Engineering

  • Manage and optimise security tooling including SIEM, EDR, vulnerability management, and monitoring platforms.
  • Develop and improve detection engineering capabilities and threat monitoring use cases.
  • Partner with the external SOC provider to ensure effective alerting, triage, escalation, and response processes.
  • Lead vulnerability management activities from identification through remediation tracking and reporting.
  • Support and lead technical incident response activities, including investigation, containment, recovery, and lessons learned.

Security Standards & Continuous Improvement

  • Develop and maintain technical security standards, baselines, and engineering controls.
  • Partner with Information Security Compliance teams to ensure controls align with frameworks including ISO 27001, SOC 2, NIST, and Cyber Essentials.
  • Identify opportunities to improve operational resilience, reduce risk, and simplify security processes.
  • Contribute to security awareness initiatives and help promote a strong security culture across the organisation.

AI & Emerging Technology Security

  • Support the secure implementation of AI-enabled platforms, integrations, and workflows.
  • Help define practical guardrails and controls for emerging technologies and data usage.
  • Partner with engineering teams to ensure secure development and deployment practices are followed.

What We're Looking For Experience

  • Proven experience in a Security Engineering, Cybersecurity Engineering, or Security Operations leadership role.
  • Strong hands-on experience securing cloud-native environments.
  • Experience building or improving security engineering functions and processes.
  • Background working within regulated or high-assurance environments is highly desirable.
  • Experience operating within fast-paced, scaling technology businesses is advantageous.

Technical Expertise

  • Strong AWS security knowledge including IAM, networking, logging, GuardDuty, KMS, and Security Hub.
  • Experience securing Microsoft 365, Entra ID, and Microsoft Defender environments.
  • Hands-on SIEM and detection engineering experience.
  • Knowledge of vulnerability management tooling such as Qualys, Tenable, or equivalent.
  • Strong understanding of incident response and operational security practices.
  • Familiarity with infrastructure security, endpoint protection, identity security, and automation.
  • Understanding of AI/ML security risks and secure integration approaches is beneficial.

Leadership & Communication

  • Strong collaborator able to work effectively across Security, Engineering, IT, and Compliance teams.
  • Able to communicate technical security concepts clearly to both technical and non-technical stakeholders.
  • Experience mentoring, coaching, and developing technical talent.
  • Pragmatic, solutions-focused, and capable of balancing security with business objectives.

Certifications (Desirable)

We are open on the exact mix of certifications; examples include:

  • CISSP
  • AWS Security - Specialty
  • CCSP/CCSK
  • CISM
  • GIAC certifications (GCIH, GCIA, etc.)
  • Microsoft security certifications

We welcome applications from individuals of all backgrounds and are committed to fostering an inclusive and accessible recruitment process.

Apply Now
Apply Now

Job Details

Company
Spencer Rose
Location
City of London, London, United Kingdom
Hybrid / Remote Options
Posted