Technical consultant addressing information security risks for USAA and guiding strategic security direction. Leading peers in assessing security strategies and educating on best practices.
About the role
- As a Staff Security Engineer, build hx's security function while integrating security into engineering workflows. Collaborate across teams to ensure secure architecture and compliance.
Responsibilities
- Build hx's security programme from the ground up, setting direction for security architecture, compliance, and incident response as we scale globally.
- Design and implement security controls across AWS cloud infrastructure, Kubernetes workloads, and our multi-product platform, ensuring systems are secure by design.
- Integrate security into engineering workflows by embedding automated security testing, vulnerability management, and threat detection into CI/CD pipelines without slowing teams down.
- Lead or contribute to compliance initiatives (SOC2, ISO27001) by implementing technical controls and working cross-functionally with legal, engineering, and business teams to enable enterprise sales.
- Build security automation and tooling by writing code and scripts that scale security practices, detect vulnerabilities, and enforce policies efficiently.
- Partner with Engineering Managers, Principal Engineers, and Product Managers to embed security thinking early in design and architecture decisions.
- Act as a trusted voice in critical moments: responding to incidents, unblocking teams on security questions, and keeping high-stakes initiatives secure and on track.
- Assess and secure AI-powered systems across hx's platform, implementing controls that enable safe adoption of AI while mitigating risks like prompt injection, data leakage, and model vulnerabilities.
Requirements
- Built or significantly contributed to security programmes from the ground up, establishing foundational security controls, compliance readiness, and incident response capabilities.
- Designed and implemented security architecture for cloud-based distributed systems (AWS or equivalent), including multi-account strategies, identity and access management, network security, and data protection.
- Driven technical security improvements by writing code, building tools, and implementing controls that scaled with company growth.
- Integrated security into development workflows through DevSecOps practices including automated testing, secrets management, container security, and infrastructure-as-code security.
- Led or supported compliance initiatives (SOC2, ISO27001, GDPR, or similar), mapping technical controls to compliance requirements and guiding teams through audit cycles.
- Built trust with engineering teams by contributing technically and making security collaborative and frictionless.
- Balanced security rigor with business goals, making risk-based trade-offs that enabled growth while protecting customers and the business.
- Evaluated security implications of AI/ML systems, including understanding AI-specific risks and implementing controls to secure them.
Benefits
- £5,000 training and conference budget for individual and group development.
- 25 days of holiday plus 8 bank holidays (33 days total).
- Company pension scheme via Penfold.
- Mental health support and therapy via Spectrum.life.
- Individual wellbeing allowance via Juno.
- Private healthcare insurance through AXA.
- Income protection and Life Insurance.
- Cycle to Work Scheme
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Technical Recruiter for BGS managing recruitment of Cybersecurity and IT professionals. Collaborating with technical teams to identify skill requirements and enhance talent acquisition processes.
Security and Privacy SME at Dynanet Corporation responsible for data management compliance and governance guardrails. Ensuring secure data handling and adherence to federal regulations.
PAM Manager responsible for strategy, roadmap, and operations of PAM program at Intact. Leading a team to safeguard privileged identities and secrets across various environments.
Senior Cybersecurity Vulnerability Management Versatilist at Boeing. Protecting the IT ecosystem by innovating vulnerability management solutions and leading security initiatives.
Entry level Associate Security Engineer at Navy Federal securing technical infrastructure and workloads with operational capabilities and threat monitoring practices.
Machine Learning Researcher focusing on innovative AI and intelligent automation for cybersecurity. Driving research in Agentic AI and collaborating with cross - functional teams for production - grade features.
EHS - Management expert overseeing environmental, health, and safety compliance at ZF. Collaborating with teams to foster a safe work culture and manage regulatory compliance.
Senior Manager of Information Security at Celestica overseeing cybersecurity policies and practices. Requires extensive experience in threat hunting, control validation, and security architecture reviews.
Senior Technical Lead architecting and securing multi - cloud environments for Celestica. Leading cloud security projects focusing on Google Cloud, Azure, and Google Workspace.