Cloud Security Engineer – Automation & Tooling

🕒 March 31

🏢🏡 London – Hybrid

⏰ Full Time

🟡 Mid-level

🟠 Senior

👮‍♂️ Cybersecurity / Security Engineer

🇬🇧 UK Skilled Worker Visa Sponsor

This company has sponsored UK Skilled Worker visas in the past.

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Starling Bank

WebsiteLinkedInAll Job Openings

1001 - 5000 employees

Founded 2014

🏦 Banking

💳 Fintech

💸 Finance

Banking • Fintech • Finance

Starling Bank is a UK-based digital bank providing a range of personal and business banking services. It offers current accounts, savings accounts, euro accounts, and teen-oriented banking. Starling Bank is known for its emphasis on mobile banking, featuring tools for budgeting, bill management, international money transfers, and overdraft facilities. The bank also provides business accounts tailored for sole traders and larger enterprises with multi-currency options. Award-winning security features and 24/7 customer service further define its banking services. As a fully regulated bank, Starling prioritizes sustainable banking and innovation in financial services.

📋 Description

• Engineering Security Tooling: Lead the design and maintenance of our internal security tool suite, written primarily in Go, to automate evidence collection and real-time remediation of security alerts. • Infrastructure as Code: Write and peer-review Terraform and custom providers to manage identity and core infrastructure across AWS and GCP. • Supply Chain Security: Build automated systems to manage container provenance and integrate security analysis into our CI/CD pipelines (GitHub Actions/TeamCity). • Cloud Native Defense: Engineer Kubernetes security solutions leveraging Cilium, eBPF, and custom controllers to protect our microservices. • Cryptographic Engineering (PKI): Build and maintain our Go-based Certificate Authority (CA) tooling and internal PKI infrastructure. • Incident Response: Support the team in automated incident response, building the tools that help us investigate and mitigate threats faster.

🎯 Requirements

• Go Specialist: You are proficient in Go. You understand its concurrency models, testing patterns, and how to build idiomatic, performant services. • The Builder Mindset: You find manual work a personal affront. If a task needs to be done twice, you’ve already started planning the automation for it. • Cloud Native: Practical experience with AWS or GCP, ideally managed through Terraform. • Container Expertise: You understand Kubernetes internals—from the runtime security to the service mesh. • Identity & Networking: Strong understanding of cloud identity models and network protocols. • What skills are desirable: • Experience with Cilium or eBPF-based security monitoring. • Knowledge of Sigstore/Cosign, image provenance, and SBOMs. • Familiarity with hardware security modules (HSMs) or advanced cryptography. • Cloud-native security certifications (AWS/GCP).

🏖️ Benefits

• 33 days holiday (including public holidays, which you can take when it works best for you) • An extra day’s holiday for your birthday • Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off • 16 hours paid volunteering time a year • Salary sacrifice, company enhanced pension scheme • Life insurance at 4x your salary & group income protection • Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton • Generous family-friendly policies • Incentives refer a friend scheme • Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks • Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing