Security Lead

🕒 April 2

🏢🏡 London – Hybrid

⏰ Full Time

🟠 Senior

👮‍♂️ Cybersecurity / Security Engineer

🇬🇧 UK Skilled Worker Visa Sponsor

This company has sponsored UK Skilled Worker visas in the past.

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Ben

WebsiteLinkedInAll Job Openings

51 - 200 employees

💰 $16M Series A on 2022-08

Ben is the unordinary global flexible benefits platform that lifts people up.

📋 Description

• Act as Ben’s security lead in enterprise customer and prospect conversations, questionnaires, due diligence calls, and trust centre content. Security is a reason customers choose Ben - you'll help keep it that way • Own and improve Ben’s security controls across identity, endpoint, cloud infrastructure, product security, and corporate IT • Lead monitoring, detection, incident response, and continuous improvement across the environment • Maintain and mature our ISO 27001-certified ISMS, conducting risk assessments, vendor reviews, and policy/control maintenance to keep our control environment effective and audit-ready • Embed secure-by-design into the development lifecycle - threat modelling, architecture reviews, secure code review, and CI/CD hardening • Over time, lead a pragmatic SOC 2 implementation alongside the existing ISMS, and provide input on GenAI governance as Ben ships AI features in production

🎯 Requirements

• Hands-on security experience in a SaaS, cloud-first, or product-led environment - you've probably been doing this for 4-6 years and are looking to own a security function for the first time • Strong working knowledge of identity and access management in both corporate and product contexts. We work with Microsoft's security ecosystem a lot (Entra, Intune, Defender) - you'll need to be comfortable there or confident you can get up to speed quickly • Experience securing AWS environments and embedding security into product development, through threat modelling, code review, and CI/CD controls • Experience with endpoint and corporate security - you've worked with EDR, MDM, ZTNA, or similar tooling, even if not the specific stack we use • Familiarity with compliance frameworks (ISO 27001 or SOC 2), and the ability to translate technical controls into audit-ready evidence • Confidence in enterprise customer conversations - you can explain security clearly to technical and non-technical audiences • Comfort with ambiguity and context-switching - you're happy owning the answer across a wide remit rather than specialising in one domain

🏖️ Benefits

• Competitive base salary + equity, so you own what you build • £100 monthly personal Ben Balance: for whatever works for you, whether that's Netflix, Spotify, or a really expensive cup of coffee! This allowance will increase by £50 for each year of service until you reach £250 • Weekly lunch provided in office so you can spend quality time with the team over some tasty food! • 28 days of holidays a year plus bank holidays, and an option to buy or sell 2 days per year. Also, your annual holiday entitlement will increase to 30 days after your 3rd year of service! • Day off for your birthday • Work-from-abroad scheme, so you can support your travels, enjoy an extended holiday, or visit loved ones. • Enhanced parental leave and workplace nursery scheme to support with the cost of childcare in a nursery setting • Comprehensive Private Medical Insurance • Funded Life Assurance cover with the option to voluntarily increase - this also includes an annual health check • Comprehensive and tailored mental health support and professional coaching through a leading provider