About Us
The Financial Times is one of the world’s leading news organisations, globally recognised for its authority, integrity and accuracy, with a mission to deliver quality information and services worldwide. At the FT, curiosity thrives and ambitious thinking is rewarded. Here, you’re given the chance to reach millions, create work that matters and deliver impartial journalism in a polarised world. In our warm, collaborative culture, you’ll connect with a diverse community of experts who support your growth, career aspirations and wellbeing Your future at the FT will be filled with opportunities that challenge and inspire you. With no fixed path, you’ll discover new skills and forge a career that can take you anywhere. Build a newsworthy career at the FT.
Our Commitment to Diversity, Equity and Inclusion
We believe in the power of unique perspectives and want all voices in our organisation to be heard, respected and valued. A supportive workplace is one where employees feel they can be themselves and operate to their full potential. We are committed to removing barriers for everyone, with a focus on addressing those faced by underrepresented groups.
The Role Overview
We’re looking for a Senior Cyber Security Engineer to help mature application and cloud security across the FT’s cloud-native, AWS-hosted technology estate. This role has an approximate 50/50 focus across application security and cloud security, working closely with product, platform and engineering teams to make secure delivery easier by default.
You’ll shape and improve developer-friendly guardrails across GitHub-based CI/CD pipelines, AWS environments and infrastructure-as-code workflows. This includes improving SAST, software composition analysis, secret scanning, IaC scanning, vulnerability management and AWS misconfiguration management so that findings are actionable, low-noise and owned by the right teams.
Day to day, you’ll run practical threat-modelling sessions, review application and cloud designs, improve security playbooks, support vulnerability and misconfiguration remediation, and build automation that reduces toil. We’re looking for someone who has demonstrably improved security outcomes in real engineering environments, not just someone with theoretical knowledge of tools or frameworks.
Depending on team structure, you may also mentor or line-manage one or two security engineers, while remaining hands-on and close to the technical work.
What you’ll bring to the role
Application and cloud security experience: practical experience across both application security and cloud security, ideally in AWS-hosted, cloud-native environments.
Developer-friendly security mindset: you know how to work with engineers, explain risk clearly and design controls that help teams move securely without unnecessary friction.
Vulnerability management at scale: experience improving how application vulnerabilities, dependency risks, bug bounty findings, penetration test findings and advisories are identified, prioritised, owned and remediated across engineering teams.
Cloud misconfiguration & vulnerability management: experience identifying and reducing infrastructure-as-code and AWS vulnerabilities & misconfigurations at scale through pragmatic guardrails, tooling and clear remediation paths.
Threat modelling: confidence running lightweight, practical threat-modelling sessions that lead to useful engineering decisions and risk reduction.
CI/CD and code security: hands-on experience with security tooling such as SAST, software composition analysis, secret scanning and IaC scanning.
Automation mindset: ability to write scripts or small tools, ideally in Python, to reduce toil, improve visibility and surface meaningful risk.
Security leadership: ability to mentor other security engineers and influence engineers across the wider organisation. Depending on team structure, this may include line management.
AI security awareness: experience of leveraging AI to improve and scale appsec and cloud sec controls would be useful, but is not essential.
Key Responsibilities
Improve application security guardrails Tune and evolve SAST, software composition analysis, secret scanning and related controls so they are actionable, low-noise and useful to engineering teams.
Improve cloud and IaC security guardrails Help identify, prioritise and reduce AWS and infrastructure-as-code misconfigurations and vulnerabilities at scale.
Drive vulnerability management Improve how application vulnerabilities, dependency risks, bug bounty findings, penetration test findings and third-party advisories are triaged, prioritised and remediated.
Drive cloud misconfiguration management Help teams understand, own and remediate cloud security issues using pragmatic, developer-friendly workflows.
Run practical threat modelling Facilitate lightweight threat-modelling sessions for new products, features, services and architectural changes.
Build automation and tooling Create or improve scripts, integrations, dashboards and workflows that reduce manual effort and make risk easier to understand.
Support secure architecture decisions Provide application and cloud security input into design reviews, AWS architecture decisions and larger technical changes.
Partner with engineering teams Work closely with product, platform and software engineering teams to embed security into design, delivery and operational practices.
Support incidents and lessons learned Provide application and cloud security expertise during incidents and feed lessons learned back into patterns, tooling and guidance.
Mentor others Coach security engineers and engineering teams on practical security approaches. Depending on team structure, this may include line management of one or two security engineers.
Required Experience, Essential:
- Strong practical experience in application security and cloud security, ideally with a balanced focus across both.
- Hands-on AWS security experience, including common misconfiguration patterns and practical remediation approaches.
- Experience improving vulnerability management across engineering teams, including prioritisation, ownership, remediation tracking and noise reduction.
- Experience in improving cloud or IaC misconfiguration management at scale in a developer-friendly way.
- Experience integrating, tuning or improving security tooling in CI/CD workflows, such as SAST, software composition analysis, secret scanning or IaC scanning.
- Experience running practical threat-modelling sessions that influence design, delivery or remediation decisions.
- Ability to write scripts or small tools, ideally in Python, to automate security workflows or improve visibility.
- Strong communication and collaboration skills, with the ability to influence engineers and technical leaders without relying on gatekeeping.
- Evidence of improving application security, cloud security or vulnerability management practices in a real engineering environment.
- Familiarity with Agile or Scrum ways of working.
Desirable
- Experience with leveraging AI for AppSec and CloudSec.
- AWS Certified Security – Speciality or equivalent practical AWS security experience.
- Terraform or CloudFormation expertise.
- Incident-management or incident-response experience.
- Experience with Splunk or similar logging/SIEM platforms.
- Experience with security metrics, dashboards or reporting that helped drive measurable risk reduction.
- Experience mentoring or line-managing security engineers.
What’s in it for You?
Our benefits vary by location but we are committed to providing best-in-class perks across all our offices. These include generous annual leave, medical cover, inclusive parental leave packages, subsidised gym memberships and opportunities to give back to the community. Full details of our benefits are available here .
We currently operate a hybrid model which requires staff to work onsite 50% of the time, subject to role requirements & regular review. While flexible working requests will be considered, not all patterns are suitable for all roles. We believe this balanced approach supports flexibility and protects our culture, making collaboration and communication easier, building stronger relationships and team cohesion, and supporting peer learning. We reserve discretion on reasonable notice to change this approach either generally or for specific individuals or teams.
Accessibility
We are a disability confident employer and Valuable 500 signatory.
Please let us know if you require any reasonable adjustments/personalisation as part of the application process or to enable you to attend an interview. If you would like to discuss your requirements or have any questions, email View email address on job-boards.eu.greenhouse.io and a member of our team will be happy to help.
Further information
At the FT, we embrace innovation and the use of technology and appreciate that individuals may leverage AI tools as part of their job application process. Whilst we are happy for you to use AI to assist with your application, it is essential that all information provided is authentic and accurately represents your skills, experience, and qualifications.
Candidates should be aware that the use of AI throughout the application process may be monitored to ensure a fair and transparent hiring process for all.
- £55k - £74k per annumEstimated...d like to ask you: Are you FIS? About the role: The Cyber Security Engineer is responsible for supporting the enterprise’s payment HSM infrastructure... ..., encryption, key management and HSMs. Cybersecurity Analyst Senior will be involved in state-of-the-art tools to protect data at...SeniorFull-timeHybrid workingRemoteFlexible hours
£12 per hour
Company: MICHAEL JAMES ASSOCIATES Job Type: Permanent Salary: £12.00 - £12.00SeniorPermanentHybrid working- £66k - £87k per annumEstimated...interviews actively and aim to fill this role as soon as we find someone suitable. THE OPPORTUNITY We're looking for a senior Security Engineer to own security at Apollo Research from end to end. You'll be the first dedicated security hire at Apollo. Security at Apollo...Senior
£50k per annum
...Leading Security Installation organisation seeks an experienced Senior Security Engineer to install, service and maintain intruder alarms, CCTV and access control systems across customer sites, ensuring full compliance with Company and BS EN/PD standards. This multi‑skilled...SeniorPermanentFull-timeRotating shifts- £76k - £98k per annumEstimated...quality returns for our investors. The Security Assurance team is responsible for... ...environment. The team works closely with Security Engineers, Software Engineers, Infrastructure... ...manage multiple assessments, and provide senior-level technical judgement during security...SeniorFull-timeHybrid working
- £75k - £97k per annumEstimated..., we are scaling rapidly and expanding our product suite and market presence. About the Role We are looking for a Senior or Staff Security Engineer to join our security team and own our vulnerability management program, collaborate with several Engineering and Product...SeniorFull-time
- £68k - £88k per annumEstimated...As a founding member of the Security Operations team in EMEA, you will... ...time difference requires an engineer who can operate independently,... ...online. You will serve as the senior-most security engineering point... ...frameworks (NIST IR Lifecycle, Cyber Kill Chain, MITRE ATT&CK) to...SeniorVisa supportOn-siteImmediate startMonday to FridayShift work
- £81k - £105k per annumEstimated...Our team of thinkers, builders, creators and problem solvers are over 1,000 strong, across 20 markets around the world. Senior Security Engineer We are hiring a Senior Security Engineer based in London to join our Cloud Architecture team, focused on security configuration...SeniorPermanentHybrid workingOn-site
- £50k - £67k per annumEstimated...on this exciting journey! Don’t look back and submit your application before the opportunity passes you by.. Job title: Senior Security Engineer Department: Information Security Reporting to: Information Security Manager Who we are We’re part of...SeniorOdd jobHybrid working
- £64k - £83k per annumEstimated...| 2 days in the office | Competitive Salary + Benefits Define, champion, and embed secure software development lifecycle (SSDLC) practices and secure coding standards across engineering teams through collaboration, training, and tooling. Perform threat modelling exercises...SeniorFull-timeHybrid workingOn-siteFlexible hours
- £90k - £118k per annumEstimated...Senior Security Engineer Technology - London, Greater London (Remote) Are you a hands-on security professional ready to define what application... ...of Semble's compliance programmes, including ISO 27001, Cyber Essentials+, NHS DSPT, and the journey towards SOC 2 readiness...SeniorFull-timeHybrid workingOn-siteRemoteFlexible hoursShift work
- £57k - £76k per annumEstimated...and keep customers coming back. Stay secure – Establishing the security, governance and... ...modernisation programmes to detection engineering, posture management, threat hunting, and... ...tools such as Wiz. We're looking for a Senior Security Engineer with deep, hands-on experience...SeniorLong-term contractRemoteFlexible hours
- £56k - £71k per annumEstimatedSenior Security Engineer Job ID: R21163 Technology London - The River Building HQ Ready to apply? Get started with your online application Not quite your dream role? Sign up to get notified when the right vacancy comes along. Why Deliveroo Our mission...SeniorHourly payFull-timeSummer workRelocation packageOn-siteWork from homeFlexible hours1 day/week
- £59k - £80k per annumEstimated...trillion in crypto transactions. We are looking for a Senior Infrastructure Security Engineer with a proven track record in keeping systems safe. You... ...to ensuring that we are capable of rapidly responding to cyber attacks on our colleagues and endpoints. Throughout our...SeniorFull-timeOn-siteRemoteFlexible hours
- £61k - £78k per annumEstimated...About the role Motorway is rapidly growing its technology team and business, and we are looking for a Developer Experience Security Engineer to help enable a secure, scalable, and frictionless developer experience across Motorway. We have recently built and rolled...SeniorFull-timeShift work
- ...Job Summary We are seeking a Senior Security Engineer (Infrastructure) to help strengthen and mature infrastructure security capabilities across cloud and on-prem environments. This is a technical role focused on improving visibility, resilience and security maturity across...SeniorHybrid workingFlexible hours
£75k - £83.67k per annum
Company: CHARLTON RECRUITMENT Job Type: Permanent, Full Time Salary: £75000 - £83672/annum pen 12% + health + 25 + hybridSeniorPermanentFull-timeHybrid working- £44k - £57k per annumEstimated...Senior ICT & Security Design Engineer - London RED are an expanding international M&E consultancy, with a proven track record in low energy design, focused on providing excellent design solutions to clients. Through our market leading technical expertise, we enable...SeniorTraineeshipHybrid workingOn-site
- £121k - £160k per annumEstimated...Senior IT Security Engineer – Windows, Automation, Endpoint Security London – Hybrid Industry Leading Compensation Quant Capital is partnered with a leading trading firm looking to hire a Senior IT Security Engineer to strengthen its global security posture. This...SeniorHybrid working
£65.85k - £83.67k per annum
...Are you a Security Systems Engineer with experience managing design, technical interfaces and contractor deliverables? Do you want to play a... ...join the Rail Systems Engineering team working on HS2 as a Senior Security Systems Engineer. Acting as the technical subject matter...SeniorPermanentFull-timeHybrid workingOn-site- £64k - £82k per annumEstimated...drives our ambition to deliver high quality returns for our investors. Your future role within QRT QRT is hiring a Senior Product Security Engineer to protect diverse tech systems across cloud, business apps, and core infrastructure. In this role, you’ll drive...SeniorHybrid working
- £54k - £72k per annumEstimated...transactions. You will operate the Product Security programe for Blockchain.com’s internally-... ...Consumer, OTC and MRE lines. This is a senior, hands-on role: you’ll design and run the... ...the security debt lifecycle for product engineering teams, and architect the automated...SeniorFull-timeApprenticeshipOn-siteRemoteFlexible hours
- £81k - £105k per annumEstimated...devastating diseases. We have built a world-leading drug design engine comprising AI models that are capable of working across... ...solve all disease with the help of AI. Your impact As a Senior AI Security Engineer at Isomorphic Labs, you will operate at the absolute...SeniorHybrid workingOn-site1 day/week
- £210k - £278k per annumEstimated...Disagree Transparently. Encourage Independent Decision-Making. Build Dream Teams. Who You Are: Galaxy is seeking a Senior Product Security Engineer with an expertise in securing micro services and cloud applications, and with a thorough understanding of product and...Senior
- £64k - £85k per annumEstimated...Job Description We’re recruiting a Senior Information Security Engineer to support the Chief Information Security Officer in managing and reducing information security risks across Technology Services. This is a hands-on, technical engineering role where you’ll help...SeniorLong-term contractFull-timeSummer workCasual workHybrid workingOn-site
- £65k - £84k per annumEstimated...About the Role Our Future Health is looking for a Senior Application Security Engineer to join our Technology team. You will be responsible for ensuring the security of our applications and platforms, working closely with developers to build secure software from the ground...SeniorFull-time
- £63k - £81k per annumEstimated...Senior Security Engineer – Network Products Salary: From £570,000 Plus 10% yearly bonus and benefits Contract type: Permanent Shift pattern: Full-time – 37.5 hours per week Location: Hybrid working / Any Bupa office We make health happen At Bupa, we’re...SeniorPermanentFull-timeHybrid workingOn-siteFlexible hoursShift work
- £52k - £69k per annumEstimated...Opportunity ✨ As IAG Loyalty evolves into a Platform as a Service business, we’re looking for a talented and passionate Senior Application Security Engineer to join our security engineering team. You’ll have a background in software engineering and a deep interest in...SeniorHybrid workingOn-siteWork from home
£550 - £650 per day
Company: SR2 REC LTD Job Type: Daily Salary: £550 - £650 per daySenior- £86k - £115k per annumEstimated...Job Description Empower secure innovation by shaping cloud security... ...at JPMorgan Chase. As a Senior Cloud Security Architect, you’... ...collaborate with top cybersecurity and engineering talent, solving complex... ...matter expert for IT Risk and Cyber domains. You will collaborate...SeniorLong-term contract
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Cyber Security Engineer. Be the first to apply!
- cyber software engineer London
- cloud security engineer London
- principal information security engineer London
- application security engineer London
- cyber security engineer London
- cloud network security engineer London
- security engineer London
- offensive security engineer London
- remote security engineer London
- security systems engineer London

