Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Senior Cyber Security Engineer

£49.4 - £57.9 per hourEstimated

About Us

The Financial Times is one of the world’s leading news organisations, globally recognised for its authority, integrity and accuracy, with a mission to deliver quality information and services worldwide. At the FT, curiosity thrives and ambitious thinking is rewarded. Here, you’re given the chance to reach millions, create work that matters and deliver impartial journalism in a polarised world. In our warm, collaborative culture, you’ll connect with a diverse community of experts who support your growth, career aspirations and wellbeing Your future at the FT will be filled with opportunities that challenge and inspire you. With no fixed path, you’ll discover new skills and forge a career that can take you anywhere. Build a newsworthy career at the FT.

Our Commitment to Diversity, Equity and Inclusion

We believe in the power of unique perspectives and want all voices in our organisation to be heard, respected and valued. A supportive workplace is one where employees feel they can be themselves and operate to their full potential. We are committed to removing barriers for everyone, with a focus on addressing those faced by underrepresented groups.

The Role Overview

We’re looking for a Senior Cyber Security Engineer to help mature application and cloud security across the FT’s cloud-native, AWS-hosted technology estate. This role has an approximate 50/50 focus across application security and cloud security, working closely with product, platform and engineering teams to make secure delivery easier by default.

You’ll shape and improve developer-friendly guardrails across GitHub-based CI/CD pipelines, AWS environments and infrastructure-as-code workflows. This includes improving SAST, software composition analysis, secret scanning, IaC scanning, vulnerability management and AWS misconfiguration management so that findings are actionable, low-noise and owned by the right teams.

Day to day, you’ll run practical threat-modelling sessions, review application and cloud designs, improve security playbooks, support vulnerability and misconfiguration remediation, and build automation that reduces toil. We’re looking for someone who has demonstrably improved security outcomes in real engineering environments, not just someone with theoretical knowledge of tools or frameworks.

Depending on team structure, you may also mentor or line-manage one or two security engineers, while remaining hands-on and close to the technical work.

What you’ll bring to the role

Application and cloud security experience: practical experience across both application security and cloud security, ideally in AWS-hosted, cloud-native environments.

Developer-friendly security mindset: you know how to work with engineers, explain risk clearly and design controls that help teams move securely without unnecessary friction.

Vulnerability management at scale: experience improving how application vulnerabilities, dependency risks, bug bounty findings, penetration test findings and advisories are identified, prioritised, owned and remediated across engineering teams.

Cloud misconfiguration & vulnerability management: experience identifying and reducing infrastructure-as-code and AWS vulnerabilities & misconfigurations at scale through pragmatic guardrails, tooling and clear remediation paths.

Threat modelling: confidence running lightweight, practical threat-modelling sessions that lead to useful engineering decisions and risk reduction.

CI/CD and code security: hands-on experience with security tooling such as SAST, software composition analysis, secret scanning and IaC scanning.

Automation mindset: ability to write scripts or small tools, ideally in Python, to reduce toil, improve visibility and surface meaningful risk.

Security leadership: ability to mentor other security engineers and influence engineers across the wider organisation. Depending on team structure, this may include line management.

AI security awareness: experience of leveraging AI to improve and scale appsec and cloud sec controls would be useful, but is not essential.

Key Responsibilities

Improve application security guardrails Tune and evolve SAST, software composition analysis, secret scanning and related controls so they are actionable, low-noise and useful to engineering teams.

Improve cloud and IaC security guardrails Help identify, prioritise and reduce AWS and infrastructure-as-code misconfigurations and vulnerabilities at scale.

Drive vulnerability management Improve how application vulnerabilities, dependency risks, bug bounty findings, penetration test findings and third-party advisories are triaged, prioritised and remediated.

Drive cloud misconfiguration management Help teams understand, own and remediate cloud security issues using pragmatic, developer-friendly workflows.

Run practical threat modelling Facilitate lightweight threat-modelling sessions for new products, features, services and architectural changes.

Build automation and tooling Create or improve scripts, integrations, dashboards and workflows that reduce manual effort and make risk easier to understand.

Support secure architecture decisions Provide application and cloud security input into design reviews, AWS architecture decisions and larger technical changes.

Partner with engineering teams Work closely with product, platform and software engineering teams to embed security into design, delivery and operational practices.

Support incidents and lessons learned Provide application and cloud security expertise during incidents and feed lessons learned back into patterns, tooling and guidance.

Mentor others Coach security engineers and engineering teams on practical security approaches. Depending on team structure, this may include line management of one or two security engineers.

Required Experience, Essential: 

  • Strong practical experience in application security and cloud security, ideally with a balanced focus across both.
  • Hands-on AWS security experience, including common misconfiguration patterns and practical remediation approaches.
  • Experience improving vulnerability management across engineering teams, including prioritisation, ownership, remediation tracking and noise reduction.
  • Experience in improving cloud or IaC misconfiguration management at scale in a developer-friendly way.
  • Experience integrating, tuning or improving security tooling in CI/CD workflows, such as SAST, software composition analysis, secret scanning or IaC scanning.
  • Experience running practical threat-modelling sessions that influence design, delivery or remediation decisions.
  • Ability to write scripts or small tools, ideally in Python, to automate security workflows or improve visibility.
  • Strong communication and collaboration skills, with the ability to influence engineers and technical leaders without relying on gatekeeping.
  • Evidence of improving application security, cloud security or vulnerability management practices in a real engineering environment.
  • Familiarity with Agile or Scrum ways of working.

Desirable

  • Experience with leveraging AI for AppSec and CloudSec.
  • AWS Certified Security – Speciality or equivalent practical AWS security experience.
  • Terraform or CloudFormation expertise.
  • Incident-management or incident-response experience.
  • Experience with Splunk or similar logging/SIEM platforms.
  • Experience with security metrics, dashboards or reporting that helped drive measurable risk reduction.
  • Experience mentoring or line-managing security engineers.

 

What’s in it for You?

Our benefits vary by location but we are committed to providing best-in-class perks across all our offices. These include generous annual leave, medical cover, inclusive parental leave packages, subsidised gym memberships and opportunities to give back to the community. Full details of our benefits are available  here .

We currently operate a hybrid model which requires staff to work onsite 50% of the time, subject to role requirements & regular review. While flexible working requests will be considered, not all patterns are suitable for all roles. We believe this balanced approach supports flexibility and protects our culture, making collaboration and communication easier, building stronger relationships and team cohesion, and supporting peer learning.  We reserve discretion on reasonable notice to change this approach either generally or for specific individuals or teams. 

 

Accessibility

We are a disability confident employer and Valuable 500 signatory.

Please let us know if you require any reasonable adjustments/personalisation as part of the application process or to enable you to attend an interview. If you would like to discuss your requirements or have any questions, email View email address on job-boards.eu.greenhouse.io and a member of our team will be happy to help.

Further information

At the FT, we embrace innovation and the use of technology and appreciate that individuals may leverage AI tools as part of their job application process. Whilst we are happy for you to use AI to assist with your application, it is essential that all information provided is authentic and accurately represents your skills, experience, and qualifications.

Candidates should be aware that the use of AI throughout the application process may be monitored to ensure a fair and transparent hiring process for all.

 

 

Vacancy posted 1 day ago
Similar jobs that could be interesting for youBased on the Senior Cyber Security Engineer in London vacancy
  • £55k - £74k per annumEstimated
     ...d like to ask you: Are you FIS? About the role: The Cyber Security Engineer is responsible for supporting the enterprise’s payment HSM infrastructure...  ..., encryption, key management and HSMs. Cybersecurity Analyst Senior will be involved in state-of-the-art tools to protect data at... 
    Senior
    Full-time
    Hybrid working
    Remote
    Flexible hours

    FIS

    London
    more than 2 months ago
  • £12 per hour

    Company: MICHAEL JAMES ASSOCIATES Job Type: Permanent Salary: £12.00 - £12.00
    Senior
    Permanent
    Hybrid working

    MICHAEL JAMES ASSOCIATES

    London
    10 days ago
  • £66k - £87k per annumEstimated
     ...interviews actively and aim to fill this role as soon as we find someone suitable.   THE OPPORTUNITY   We're looking for a senior Security Engineer to own security at Apollo Research from end to end. You'll be the first dedicated security hire at Apollo. Security at Apollo... 
    Senior

    apolloresearch

    London
    14 days ago
  • £50k per annum

     ...Leading Security Installation organisation seeks an experienced Senior Security Engineer to install, service and maintain intruder alarms, CCTV and access control systems across customer sites, ensuring full compliance with Company and BS EN/PD standards. This multi‑skilled... 
    Senior
    Permanent
    Full-time
    Rotating shifts
    North London
    a month ago
  • £76k - £98k per annumEstimated
     ...quality returns for our investors. The Security Assurance team is responsible for...  ...environment. The team works closely with Security Engineers, Software Engineers, Infrastructure...  ...manage multiple assessments, and provide senior-level technical judgement during security... 
    Senior
    Full-time
    Hybrid working

    Qube Research & Technologies

    London
    1 day ago
  • £75k - £97k per annumEstimated
     ..., we are scaling rapidly and expanding our product suite and market presence. About the Role We are looking for a Senior or Staff Security Engineer to join our security team and own our vulnerability management program, collaborate with several Engineering and Product... 
    Senior
    Full-time

    Casualy

    London
    25 days ago
  • £68k - £88k per annumEstimated
     ...As a founding member of the Security Operations team in EMEA, you will...  ...time difference requires an engineer who can operate independently,...  ...online. You will serve as the senior-most security engineering point...  ...frameworks (NIST IR Lifecycle, Cyber Kill Chain, MITRE ATT&CK) to... 
    Senior
    Visa support
    On-site
    Immediate start
    Monday to Friday
    Shift work

    Roblox

    London
    1 day ago
  • £81k - £105k per annumEstimated
     ...Our team of thinkers, builders, creators and problem solvers are over 1,000 strong, across 20 markets around the world.   Senior Security Engineer We are hiring a Senior Security Engineer based in London to join our Cloud Architecture team, focused on security configuration... 
    Senior
    Permanent
    Hybrid working
    On-site

    WPP Media

    London
    1 day ago
  • £50k - £67k per annumEstimated
     ...on this exciting journey! Don’t look back and submit your application before the opportunity passes you by.. Job title: Senior Security Engineer      Department: Information Security      Reporting to: Information Security Manager Who we are We’re part of... 
    Senior
    Odd job
    Hybrid working

    DigiOutsource

    North London
    more than 2 months ago
  • £64k - £83k per annumEstimated
     ...| 2 days in the office | Competitive Salary + Benefits Define, champion, and embed secure software development lifecycle (SSDLC) practices and secure coding standards across engineering teams through collaboration, training, and tooling. Perform threat modelling exercises... 
    Senior
    Full-time
    Hybrid working
    On-site
    Flexible hours

    Funding Circle

    London
    11 hours ago
  • £90k - £118k per annumEstimated
     ...Senior Security Engineer Technology - London, Greater London (Remote) Are you a hands-on security professional ready to define what application...  ...of Semble's compliance programmes, including ISO 27001, Cyber Essentials+, NHS DSPT, and the journey towards SOC 2 readiness... 
    Senior
    Full-time
    Hybrid working
    On-site
    Remote
    Flexible hours
    Shift work

    Semble

    London
    14 days ago
  • £57k - £76k per annumEstimated
     ...and keep customers coming back. Stay secure – Establishing the security, governance and...  ...modernisation programmes to detection engineering, posture management, threat hunting, and...  ...tools such as Wiz. We're looking for a Senior Security Engineer with deep, hands-on experience... 
    Senior
    Long-term contract
    Remote
    Flexible hours

    Beyond

    London
    27 days ago
  • £56k - £71k per annumEstimated
    Senior Security Engineer Job ID: R21163 Technology London - The River Building HQ Ready to apply? Get started with your online application Not quite your dream role? Sign up to get notified when the right vacancy comes along. Why Deliveroo Our mission... 
    Senior
    Hourly pay
    Full-time
    Summer work
    Relocation package
    On-site
    Work from home
    Flexible hours
    1 day/week

    Deliveroo

    London
    2 days ago
  • £59k - £80k per annumEstimated
     ...trillion in crypto transactions. We are looking for a Senior Infrastructure Security Engineer with a proven track record in keeping systems safe. You...  ...to ensuring that we are capable of rapidly responding to cyber attacks on our colleagues and endpoints. Throughout our... 
    Senior
    Full-time
    On-site
    Remote
    Flexible hours

    Blockchain.com

    London
    7 days ago
  • £61k - £78k per annumEstimated
     ...About the role Motorway is rapidly growing its technology team and business, and we are looking for a Developer Experience Security Engineer to help enable a secure, scalable, and frictionless developer experience across Motorway. We have recently built and rolled... 
    Senior
    Full-time
    Shift work

    Motorway

    London
    13 days ago
  •  ...Job Summary We are seeking a Senior Security Engineer (Infrastructure) to help strengthen and mature infrastructure security capabilities across cloud and on-prem environments. This is a technical role focused on improving visibility, resilience and security maturity across... 
    Senior
    Hybrid working
    Flexible hours

    Eeze

    London
    a month ago
  • £75k - £83.67k per annum

    Company: CHARLTON RECRUITMENT Job Type: Permanent, Full Time Salary: £75000 - £83672/annum pen 12% + health + 25 + hybrid
    Senior
    Permanent
    Full-time
    Hybrid working

    CHARLTON RECRUITMENT

    Camden, Greater London
    7 days ago
  • £44k - £57k per annumEstimated
     ...Senior ICT & Security Design Engineer - London RED are an expanding international M&E consultancy, with a proven track record in low energy design, focused on providing excellent design solutions to clients. Through our market leading technical expertise, we enable... 
    Senior
    Traineeship
    Hybrid working
    On-site
    London
    more than 2 months ago
  • £121k - £160k per annumEstimated
     ...Senior IT Security Engineer – Windows, Automation, Endpoint Security London – Hybrid Industry Leading Compensation Quant Capital is partnered with a leading trading firm looking to hire a Senior IT Security Engineer to strengthen its global security posture. This... 
    Senior
    Hybrid working

    Quant Capital

    London
    more than 2 months ago
  • £65.85k - £83.67k per annum

     ...Are you a Security Systems Engineer with experience managing design, technical interfaces and contractor deliverables? Do you want to play a...  ...join the Rail Systems Engineering team working on HS2 as a Senior Security Systems Engineer. Acting as the technical subject matter... 
    Senior
    Permanent
    Full-time
    Hybrid working
    On-site

    Carrington West

    London
    21 days ago
  • £64k - £82k per annumEstimated
     ...drives our ambition to deliver high quality returns for our investors.  Your future role within QRT QRT is hiring a Senior Product Security Engineer to protect diverse tech systems across cloud, business apps, and core infrastructure. In this role, you’ll drive... 
    Senior
    Hybrid working

    Qube Research & Technologies

    London
    1 day ago
  • £54k - £72k per annumEstimated
     ...transactions. You will operate the Product Security programe for Blockchain.com’s internally-...  ...Consumer, OTC and MRE lines. This is a senior, hands-on role: you’ll design and run the...  ...the security debt lifecycle for product engineering teams, and architect the automated... 
    Senior
    Full-time
    Apprenticeship
    On-site
    Remote
    Flexible hours

    Blockchain.com

    London
    13 days ago
  • £81k - £105k per annumEstimated
     ...devastating diseases. We have built a world-leading drug design engine comprising AI models that are capable of working across...  ...solve all disease with the help of AI.   Your impact  As a Senior AI Security Engineer at Isomorphic Labs, you will operate at the absolute... 
    Senior
    Hybrid working
    On-site
    1 day/week

    Isomorphic Labs

    London
    4 days ago
  • £210k - £278k per annumEstimated
     ...Disagree Transparently. Encourage Independent Decision-Making. Build Dream Teams. Who You Are: Galaxy is seeking a Senior Product Security Engineer with an expertise in securing micro services and cloud applications, and with a thorough understanding of product and... 
    Senior

    Galaxy

    London
    15 days ago
  • £64k - £85k per annumEstimated
     ...Job Description We’re recruiting a Senior Information Security Engineer to support the Chief Information Security Officer in managing and reducing information security risks across Technology Services. This is a hands-on, technical engineering role where you’ll help... 
    Senior
    Long-term contract
    Full-time
    Summer work
    Casual work
    Hybrid working
    On-site

    AJ Bell

    London
    27 days ago
  • £65k - £84k per annumEstimated
     ...About the Role Our Future Health is looking for a Senior Application Security Engineer to join our Technology team. You will be responsible for ensuring the security of our applications and platforms, working closely with developers to build secure software from the ground... 
    Senior
    Full-time

    Our Future Health

    London
    a month ago
  • £63k - £81k per annumEstimated
     ...Senior Security Engineer – Network Products Salary: From £570,000 Plus 10% yearly bonus and benefits Contract type: Permanent Shift pattern: Full-time – 37.5 hours per week Location: Hybrid working / Any Bupa office We make health happen At Bupa, we’re... 
    Senior
    Permanent
    Full-time
    Hybrid working
    On-site
    Flexible hours
    Shift work

    Bupa

    London
    4 days ago
  • £52k - £69k per annumEstimated
     ...Opportunity ✨ As IAG Loyalty evolves into a Platform as a Service business, we’re looking for a talented and passionate Senior Application Security Engineer to join our security engineering team. You’ll have a background in software engineering and a deep interest in... 
    Senior
    Hybrid working
    On-site
    Work from home

    Loyalty Group Insurance Services, Inc.

    London
    more than 2 months ago
  • £550 - £650 per day

    Company: SR2 REC LTD Job Type: Daily Salary: £550 - £650 per day
    Senior

    SR2 REC LTD

    London
    10 days ago
  • £86k - £115k per annumEstimated
     ...Job Description Empower secure innovation by shaping cloud security...  ...at JPMorgan Chase. As a Senior Cloud Security Architect, you’...  ...collaborate with top cybersecurity and engineering talent, solving complex...  ...matter expert for IT Risk and Cyber domains. You will collaborate... 
    Senior
    Long-term contract

    JPMorgan Chase & Co.

    London
    more than 2 months ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Senior Cyber Security Engineer. Be the first to apply!