Senior Security Engineer

🕒 April 29

🏢🏡 London – Hybrid

⏰ Full Time

🟠 Senior

👮‍♂️ Cybersecurity / Security Engineer

🇬🇧 UK Skilled Worker Visa Sponsor

This company has sponsored UK Skilled Worker visas in the past.

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

CUBE

WebsiteLinkedInAll Job Openings

501 - 1000 employees

Founded 2011

📋 Compliance

💳 Fintech

Compliance • Fintech • Financial Services

CUBE is a global leader in regulatory compliance solutions, providing automated regulatory intelligence for enterprises across various sectors, including banking, insurance, and asset management. With a focus on understanding the unique compliance challenges faced by Tier 1 firms and mid-market clients, CUBE leverages advanced technology to deliver seamless integration with third-party systems and comprehensive regulatory change management. Their innovative platforms, such as RegPlatform and RegTrend, are designed to keep clients ahead of evolving regulatory requirements, offering personalized insights and expert analysis.

📋 Description

• Act as a senior hands-on contributor to the design, implementation, and operation of security controls across application, infrastructure, and cloud environments. • Partner with Software Engineering and Platform Engineering teams to embed security into system design, code review, CI/CD pipelines, and operational workflows. • Design, build, and maintain reusable security patterns, guardrails, and automated controls that engineering teams can adopt with confidence. • Build and operate security automation and systems integration: connecting security tooling into development, delivery, and compliance workflows to reduce manual effort and increase coverage. • Develop and maintain integrations between security platforms, compliance tooling, and engineering systems to enable continuous visibility and evidence collection. • Support and contribute to threat modelling and security design review for new and changing systems, focusing on enablement rather than gatekeeping. • Contribute to vulnerability management operations: triage, prioritization, remediation tracking, and verification across the product and infrastructure estate. • Participate in investigation and response to security incidents, coordinating with affected teams through containment, recovery, and root cause analysis. • Help ensure security controls are implemented consistently and produce auditable evidence, supporting ISO 27001, SOC 2, and regulatory compliance requirements. • Provide security input to change management, ensuring risk is understood and mitigated without unnecessary friction in delivery. • Collaborate with Architecture and Platform Engineering to ensure security principles are reflected in shared patterns, reference designs, and infrastructure decisions. • Contribute to security standards, guidance, and policy in partnership with GRC and compliance functions. • Mentor and support other security engineers, raising security engineering maturity and consistency across the organization.

🎯 Requirements

• Strong security engineering expertise across application security, cloud security (Azure preferred), and infrastructure security. • Hands-on experience securing modern software delivery environments: CI/CD pipelines, containerized workloads, IaC, and cloud-native services. • Practical experience with security tooling: SAST, SCA, DAST, vulnerability scanners, endpoint protection, and SIEM integration. • Demonstrated ability to build security automation and systems integration: scripting, API integration, workflow orchestration, and connecting tooling into engineering pipelines. • Experience with threat modelling methodologies and security architecture review for complex, distributed systems. • Strong understanding of identity and access management principles, including privileged access, RBAC, and SSO/MFA architectures. • Experience contributing to security incident investigation and response. • Ability to produce clear, auditable evidence of security controls for internal audit and external certification (ISO 27001, SOC 2). • Clear communication skills: able to articulate security risks and trade-offs to engineering teams, leadership, and non-technical stakeholders. • Collaborative, enabling mindset: focused on raising the security capability of engineering teams rather than policing delivery.

🏖️ Benefits

• The opportunity to build and shape a security engineering function from the ground up in a growing, PE-backed RegTech company. • Direct reporting line to the Head of Information Security with visibility to executive leadership. • A product that matters: CUBE tracks regulations across 750+ jurisdictions for 1,000+ financial services clients globally. • A technology environment with real problems to solve: cloud migration, multi-region operations, and regulatory technology at scale. • Investment in your development: conference attendance, training, and certification support.