Senior Security Engineer

🔥 0 minutes ago

🇬🇧 United Kingdom – Remote

⏰ Full Time

🟠 Senior

👮‍♂️ Cybersecurity / Security Engineer

🇬🇧 UK Skilled Worker Visa Sponsor

This company has sponsored UK Skilled Worker visas in the past.

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Prolific

WebsiteLinkedInAll Job Openings

51 - 200 employees

Founded 2014

🤝 B2B

AI • B2B • Research

Prolific is a platform that facilitates fast and high-quality data collection by connecting researchers with participants, including AI taskers. Researchers can launch tasks, surveys, and experiments and receive responses from a global community of over 200,000 active participants within hours. Prolific prides itself on providing accurate and detailed data while ensuring that participants are fairly rewarded for their contributions. The platform is trusted by leading academics and organizations for its flexibility, simplicity, and rapid project execution.

📋 Description

• You’ll help secure Prolific’s applications end-to-end, from hands-on testing and code review to threat modelling and CI/CD security. • You’ll partner closely with engineers to identify and fix vulnerabilities, build and tune security tooling, and embed secure development practices across the SDLC. • This includes running penetration tests, improving detection coverage, and staying ahead of emerging threats to continuously strengthen our security posture.

🎯 Requirements

• Several years in application/product security and a background in software engineering • Strong knowledge of OWASP Top 10 (Web & API) and modern attack paths (e.g. auth flaws, SSRF, injection, business logic abuse, supply chain) • Experience working with complex, large-scale systems and modern architectures • Hands-on security testing experience (especially Burp Suite) across web apps and APIs • Python for security tooling, automation, or custom detection (Django a plus) • Experience implementing and tuning SAST, SCA, DAST, and secret scanning in CI/CD • Practical threat modelling experience, including leading lightweight sessions • Strong collaboration skills, able to clearly explain issues and drive remediation • Builder mindset, you automate wherever possible • Experience with Django, Vue.js, MongoDB, GCP • Security champions or bug bounty programmes • Supply chain security (SCA, SBOMs, dependency review) • IaC security (e.g. Terraform, policy-as-code) • Hands-on certifications (OSCP, GWAPT, BSCP) • Experience in scaling environments building out security practices

🏖️ Benefits

• Competitive salary • Benefits, perks, and compensation extras