Product Security Engineer
On site
Farringdon, United Kingdom
£ 75,000 / year
Full Time
12-03-2025
Job Specifications
We have an great career opportunity for an experienced Mid-level Product Security Engineer with a background in cloud-based (AWS & Azure) & on-prem infrastructures and automation to join one of the most prestigious e-commerce and tech companies.
Multi-million £ brand with a firm lead in their market against the competition (seriously, it's not even close)
Multi-award-winning platform on an extraordinary Journey.
Oversee, Maintain, and Upkeep Customer/Client Data.
Core tasks:
Utilise your advanced security knowledge.
Manage Cloud-based & on-prem infrastructures.
Be the risk manager and automation advocate we need.
Help us safeguard customer/client data with your expertise.
Location: Farringdon Office (2 days in-office) - Must be based in the UK without visa/sponsorship requirements
Salary: £75k + Bonus!
What will you be doing?
Shape the product security roadmap and strategy.
Enhance and innovate security tools in DevOps pipelines.
Educate and empower teams on security best practices.
Design preventive and detective security controls in an agile environment.
Drive security testing through structured and exploratory methods.
Provide expert support during incidents and crisis management.
Work closely alongside the rest of the product security team and test the effectiveness of safeguards through tests
Establish yourself as a security advocate and encourage others to spot potential pitfalls and remedy them.
With the brand well known for experimenting with new tech/architectures (backed by a system that can quickly pivot and handle changes), they’re in a unique position of already being an established name across UK households. With visibility and recognition already established, it’s all about innovating on their SDLC and ensuring any potential vulnerabilities are reduced through shifting left.
It's a great opportunity with a ton of cool projects and tech you’ll be working with. To succeed you’ll need:
Strong application security knowledge (e.g., OWASP).
Familiarity with cloud platforms (AWS, Azure, GCP).
Proficiency in IaC tools (Terraform, CloudFormation) for security deployment.
Experience extracting metrics from security tools.
Expertise in securing microservices and APIs.
Deep understanding of secure coding, SDLC, and engineering integration.
Hands-on experience with SAST/DAST in CI/CD.
Knowledge of WAFs, vulnerability scanners, and security tools.
Understanding of cryptography, authentication, and authorisation.
Next Steps:
Please note, with this role based in Farringdon, applicants must be UK based and able to work without visa/sponsorship requirements
If you’re a dynamic and hard-working individual who enjoys nurturing talent, do not miss out on this fantastic opportunity!
About the Company
Here at MRJ We power startups, scaleups and global giants across the UK & Europe with great talent, enabling them to scale their technology & product teams, quickly. Why work with us? Three products. One result. We're more than just your average agency. What matters to you, matters to us and we tailor our solutions to fit with your hiring needs. Our Talent Partners live and breathe your brand, creating a genuine partnership with you. We replace the "us" and "them" divisions of traditional recruitment with a single, un... Know more
Related Jobs
- Company Name
- SBS
- Job Title
- Cloud Cyber Security Manager
- Job Description
- Company Description SBS is a global financial technology company that’s helping banks and the financial services industry to reimagine how to operate in an increasingly digital world. SBS is a trusted partner of more than 1,500 financial institutions and large-scale lenders in 80 countries worldwide, including Santander, Societé Generale, KCB Bank, Kensington Mortgages, Mercedes-Benz, and Toyota FS. Its cloud platform offers clients a composable architecture to digitize operations, ranging from banking, lending, compliance, to payments, and consumer and asset finance. With 3,400 employees in 50 offices, SBS is recognized as a Top 10 European Fintech company by IDC and as a leader in Omdia’s Universe: Digital Banking Platforms. SBS is headquartered in Paris, France. Job Description Location: Yate, Bristol Permanent, fulltime £60,000-£80,000 per annum (dependant of experience) Hybrid: Minimum of 2 days in the office per week Are you passionate about information & cyber security and looking for your next challenge in a dynamic, fast-growing environment? Our Managed Services function is expanding, and we’re searching for a Cloud Cyber Security Manager to join our team and make a real impact. In this hands-on role, you'll work across teams, ensuring security is embedded into everything we do. You’ll be at the heart of monitoring, protecting, and enhancing our security posture while collaborating with key stakeholders across the business. This is an opportunity to be part of a forward-thinking, security-first culture where your expertise will help drive continuous improvement in a rapidly evolving landscape. What will the role involve? Proactively monitor, detect, and respond to security threats – be the first line of defence in keeping our systems safe. Conduct internal security and compliance audits to ensure processes are followed, and security controls are effective. Collaborate with stakeholders to advocate for and implement best-in-class security practices. Support projects and business initiatives, ensuring security is at the forefront. Mentor and guide junior analysts, sharing your expertise to strengthen our security capabilities. Key Responsibilities: Investigate and respond to security alerts, document findings and collaborate with relevant teams. Lead internal audits to ensure compliance with ISO 27001 and our security policies. Identify vulnerabilities across networks, operating systems, applications, and databases, ensuring risks are addressed effectively. Stay ahead of emerging cyber threats, driving improvements in our security strategy and processes. Provide operational security support to Managed Services teams. Engage with customers and external auditors to demonstrate the strength of our security controls. Ensure changes introduced through CAB do not introduce security risks. Generate and deliver security reports for customers and maintain security packs for project teams. This is your chance to make a real impact in a company that values innovation, collaboration, and security excellence. If you’re ready to take your career to the next level, apply today! Qualifications What are we looking for? Experience securing cloud environments (AWS preferred). A background as a Cyber Security Officer or similar role within a large organisation. Strong knowledge of vulnerability assessment tools & techniques. A solid understanding of networking technologies, security best practices, and OS hardening. Awareness of cyber threats and adversarial techniques used to compromise systems. It would be a bonus if you also had: Security certifications – CompTIA Security+, CISSP, AWS/Cloud certifications are a plus! Experience with Rapid7 InsightVM & InsightIDR or securing enterprise databases. Familiarity with UK financial sector regulations and banking IT operations. Additional Information What are we offering? At SBS, we’re committed to supporting our employees in every aspect of their lives, from health and wellbeing to financial security and lifestyle perks. Here’s a snapshot of the benefits you'll enjoy as part of our team: Competitive salary: £60,000-£80,000 per annum Health & Wellbeing: Private Medical Insurance, access to Peppy (Menopause, Fertility, Baby, Men’s health, Women’s health Support), Health Cash Plan, Dental Insurance, Eye Care Vouchers, Flu Vaccinations Finance & Protection: Life Assurance, Critical Illness Cover, Pension Plan, Long Service Awards, Payroll Giving, Fleet car provider Leisure & Lifestyle: 25 days annual leave, Cycle to Work Scheme, Holiday Trading, Travel Insurance As part of our hiring process, new employees will be required to pass a confidential consumer credit check and DBS check. This is a straightforward credit check for CCJs, bankruptcy and a criminal record check, however if you wish to know more about what is or is not acceptable please ask our recruitment team. At our organization, we are committed to fighting against all forms of discrimination. We foster a work environment that is inclusive and respectful of all differences. All of our positions are open to people with disabilities.
Yate, United Kingdom
On site
Full Time
10-04-2025
- Company Name
- Fyxer AI
- Job Title
- CyberSecurity Engineer
- Job Description
- The basics: Your title will be CyberSecurity Engineer This role pays £45k-£65k/year (depending on experience) + equity Andy, CISO, is the hiring manager Onsite at our central London office (Holborn) What are we building? An AI Executive Assistant In 1930, the economist John Maynard Keynes predicted that we'd only be working 15 hours a week by 2030. Despite automation in agriculture and industry, that hasn't happened. Why? The service sector. Walk around the average office and you'll see people's days taken up by emails, Slack and meetings instead of real work. People in client facing roles - think sales, professional services firms, recruiters - feel this pain most acutely. Instead of advising and connecting with clients, they spend hours doing admin. Following up. Scheduling meetings, then taking notes on them. Answering questions they've been asked a thousand times. Sorting through the mess that is their inbox. We've built an AI executive assistant that looks at all your emails, messages and meetings, and uses that knowledge to answer your email, schedule meetings, take next steps from meetings and organise your inbox. We turn every employee into a top performer, effortlessly. Unlike other startups, we're a pure-play applied AI company, not a SaaS company with AI features hastily bolted on! We make use of the best techniques (fine tuned open source models, tool use, and retrieval augmented generation) and as a result, users send 53% of the email drafts we generate. How has it been going? We launched our product in March 2024. Since then we've gone from $0 to $4.5m in revenue, across thousands of paid users. We've done this with a team of just 4, without using any paid marketing until the start of November 2024. What do we value? We're very intentional about adding new people. We think a small team of exceptional people working hard at a problem they care about will always beat a larger, more unfocused team. That does mean you'll need to bring an intensity to this role that might not be asked at other companies. But it also means you will be fast tracked into more senior roles and responsibilities far earlier. We predict we'll reach $20m in revenue by the end of 2025 - there will be plenty of opportunities for you! We also believe in hiring people who want ownership and autonomy in their work, and giving it to them. We only hire product engineers. What that means is instead of just being given tickets to implement, you'll be owning a whole product: shaping the roadmap by thinking from first principles, looking at usage data and speaking to customers, then architecting and implementing your ideas. What does our ideal hire look like? We are looking for a Cybersecurity Engineer with at least 2 years of hands-on experience to support our cybersecurity initiatives and help safeguard our digital assets. You will work closely with senior engineers to detect, prevent, and respond to threats while also contributing to the development and enforcement of security best practices. This is a great opportunity for someone who has moved beyond entry-level tasks and is ready to take on more responsibility. 2+ years of professional experience in cybersecurity, IT security, or a related technical role Familiarity with cybersecurity frameworks and standards (e.g., NIST, CIS Controls, ISO 27001) Working knowledge of networking, operating systems (Windows/IOS), and security protocols Experience with one or more security tools (e.g., Splunk, Nessus, CrowdStrike, Palo Alto, Wireshark) Basic understanding of cloud security concepts (AWS, Azure, or GCP is a plus) Ability to analyse logs, spot anomalies, and investigate potential threats Strong troubleshooting and documentation skills Security certifications such as Security+, CEH, or CySA+ are preferred but not required Exposure to scripting (Python, PowerShell, Bash) for automation tasks Experience participating in tabletop exercises or incident simulations Awareness of emerging cybersecurity threats and attack techniques A bit more about what you will be doing: We're looking for a dedicated and detail-oriented Cybersecurity Engineer to join our growing team. In this role, you'll play a key part in strengthening our security posture by contributing to the development and enforcement of cybersecurity policies and procedures. You'll work closely with our IT and DevOps teams to embed security best practices into systems and software from the ground up. Your day-to-day will involve assisting in threat hunting, risk assessments, and vulnerability management including running scans, analyzing findings, and supporting remediation plans. You'll actively monitor and respond to security alerts using tools like SIEM, IDS/IPS, and endpoint protection platforms. You'll also be involved in incident response efforts, from investigation and containment to resolution. In addition, you'll help implement and maintain security controls across systems, networks, and cloud environments, support patch management cycles, and conduct regular audits of system configurations, access controls, and user permissions. This is a hands-on, collaborative role where your contributions will directly enhance the security and resilience of our infrastructure. If you have a proactive mindset and a passion for cybersecurity, we'd love to hear from you. The application process: Submit your CV (no need for a cover letter) We'll review it An initial call with someone from the Fyxer AI talent team to review your experience and motivation for joining (20 mins) Hiring Manager Interview (30 mins) Case study (45 minutes) Meet more of the team over lunch (60 mins)
London, United Kingdom
On site
Full Time
11-04-2025
- Company Name
- Noir
- Job Title
- Junior Security Systems Administrator
- Job Description
- Junior Security Systems Administrator Junior Security Systems Administrator – Social Messaging Platform – Horsham, West Sussex (Tech stack: Junior Security Systems Administrator, 2nd Line Support, 3rd Line Support, Windows Server, Active Directory, Office 365, Intune, Azure, Microsoft Defender, Security Compliance, Endpoint Manager, Group Policy, ITIL, SIEM, Security Operations, Junior Security Systems Administrator) In 2012 our client launched a social messaging platform that has been taking the US by storm. After an extremely successful period our client has decided to hop across the Atlantic, in a bid to expand their sphere of influence and take up a firm foothold in the UK and European markets. A number of new offices are being opened in the UK and our client is looking for talented, enthusiastic and passionate Junior Security Systems Administrator to join a dedicated internal IT function and take on a varied role, blending 2nd and 3rd line support responsibilities with a clear focus on security. This is an exciting opportunity for someone with a passion for IT support and a growing interest in security to develop within a highly collaborative team. You will play a key part in ensuring system resilience, supporting day-to-day security operations and protecting the integrity of the business’s digital assets. The successful Junior Security Systems Administrator should have experience with 2nd line support in a security-conscious environment, 3rd line support and infrastructure troubleshooting, Microsoft Windows Server (2019/2022), Active Directory, Group Policy and Office 365. Knowledge of Intune / Microsoft Endpoint Manager and exposure to Azure administration and Microsoft Defender security suite is desirable. An understanding of endpoint security, compliance policies and monitoring tools (e.g., SIEM) is useful. All Junior Security Systems Administrator positions come with the following benefits: Stock worth £15,000. The stock would be in their parent company (a multi-billion dollar company). You would be able to sell up to a third of your stock per year which would therefore be worth £5,000 per year to you. 30 days holiday (plus 8 UK Bank Holidays). Flexible working hours An early finish on Fridays that fall in the months of June, July and August. £4,000 training allowance including attendance of Microsoft events and conferences. 4 days a month innovative time. Free gym membership including yoga sessions. Summer BBQs. Birthday bonus package – including time off work on your birthday, dinner at a top restaurant or a paid day trip to a European destination. Location: Horsham, West Sussex, UK. Salary: £35,000 - £40,000 + Bonus + Pension + Benefits Applicants must be based in the UK and have the right to work in the UK. Noir continues to be the leading Microsoft recruitment agency; we can help you make the right career decisions! NOIRUKTECHREC NOIRUKREC NC/MJ/SEC
Horsham, United Kingdom
On site
Full Time
10-04-2025
- Company Name
- Eisai EMEA
- Job Title
- Information Security Compliance Analyst
- Job Description
- The Company Eisai is a leading research based pharmaceutical organisation with an extensive portfolio across the Oncology, Neurology and Pain therapy areas. By joining Eisai, you will be working for an organisation with a human healthcare philosophy, which means that we put the patient first in everything we do. Your new role **12 month fixed term contract (Salaried) As an Information Security Compliance Analyst, you will support the development and maintenance of the EMEA wide information security management system in accordance with Global EIT strategy, EMEA business requirements and relevant information security legislation, including NIS 2, AI Act and GDPR. You will ensure the continued certification of the EIT ISO 27001:2022 management system and adherence by the EMEA EIT department to all relevant legislation and regulations, including but not limited to Health and Safety, Financial and Privacy laws. What are we looking for? Degree level qualified or equivalent - highly desirable. CISM and / or CRISC or other relevant certification is highly desirable ISO 27001:2022 Lead Implementer / Auditor certification is essential. Demonstratable experience in an Information Security, IT Governance, Risk and Compliance based role, including maintaining and continually improving an ISO 27001 compliant management system. Extensive experience of information security management and/or security awareness. In-depth expert knowledge of industry standard frameworks and best practices – ISO 27001: 2022, ISO 27002:2022, ISO 27005, ISO 31000, NIST and their practical application in a corporate environment to ensure all elements of integrity, availability and confidentiality are adhered to. Extensive experience conducting information security risk assessments, reporting risks Experience of developing, implementing, managing, and maintaining Information Security policies, controls, standards, guidance, processes & procedures, and auditing compliance. Experience of developing, implementing, managing, and maintaining risk management framework, policies, processes, and procedures. Knowledge & experience of developing and performing information security due diligence and risk assessments of third-party organisations based on IT control frameworks such as ISO 27001 and ISO 31000. Practical experience of conducting gap analysis, testing information security processes, procedures, plans and leading audits to achieve compliance with Information Security standards. Practical experience of establishing and maintain data classification standards within a corporate environment. Experience of project managing Information Security, Data Protection & Compliance initiatives. Experience in developing and executing an Information Security awareness training across multi-business units. Experience with ensuring corporate compliance with UK/EMEA data protection legislation such as DPA and GDPR. Good knowledge of a broad range of IT technology platforms, products, services. Stakeholder management experience at both a technical and non-technical to Executive level. Excellent Business/customer facing experience What we offer in return Eisai offers a competitive salary and excellent wider benefits package that includes, Hybrid working (Depending on role) Car/Car Allowance (Depending on role) Electric charging points for Electric/Hybrid vehicles Discretionary Bonus Free onsite parking Subsidised onsite restaurant and coffee shop Learning and development opportunities Retail discounts Well-being & mental health awareness programmes Multi-faith prayer room You will also be based out of our excellent EMEA Knowledge Centre (EKC) facility, which is our EU Headquarters, and offers an inclusive, and collaborative working environment. What you need to do next If you are interested in this position, please click ‘apply now’ at the top of this advert. Upon submitting your application, you will be asked to complete your profile and upload a copy of your CV along with any additional information to support your application. If you have any questions, please contact us on TalentAcquisition@eisai.net Eisai Recruitment Statement Diverse perspectives and experiences are critical to our success, and we welcome applications from all people from all backgrounds with the experience and skills needed to perform this role. We look forward to receiving your application. Eisai EMEA EDI Commitment Statement We believe that diverse and inclusive teams promote wellbeing, learning and innovation, helping Eisai serve our patients, their families, our employees, and society. Our commitment is: to embrace and celebrate our differences, respecting and valuing each other. to include equity, diversity, and inclusion practices in all that we do so everyone has a full sense of belonging. to value individual talent where every employee can be themselves and thrive in an environment of openness, trust, and integrity.
Hatfield, United Kingdom
Hybrid
Full Time
09-04-2025