Software Engineer, Security (Contract)
Hybrid
London, United Kingdom
Freelance
14-03-2025
Job Specifications
We're putting together a talented team to build the #1 training platform for Runners
We help everyday runners become outstanding by providing world-class training, coaching and community for everyone, whether you're improving your 5k time or training for your first marathon. To date we have built iOS, Android and Apple watch apps that help people achieve their goals by coaching them through the full journey and syncing to their favourite fitness devices.
We're growing extremely fast and in November 2023 closed a new £5M funding round led by JamJar with participation from Eka Ventures, Venrex and Creator Ventures. We want to grow as fast as we can into the future and are looking for individuals who will help us get there. For more about our background and growth check out our Careers Page!
We're now looking ahead to the future and the people who want to help us build and scale Runna. Our aim is to reach millions of subscribers in the next 5 years and be the go-to training platform for any runner. Now is a magical time to join, we're still small, and everyone makes a foundational difference.
Who We're Looking For
We are looking for a talented, creative, and proactive Security Engineer to join our highly skilled cross-functional engineering team and take ownership of security across the entire organisation. As the first security engineer, you'll lead efforts to ensure our cloud infrastructure, applications, and internal processes meet the highest security standards. You'll work closely with the engineering, product, and leadership teams to establish a strong security culture while also ensuring compliance with relevant regulations.
You will partner with our CTO and founders to shape the future of security at Runna and play a critical role in safeguarding our product as we scale. As our first dedicated security hire, you'll have the freedom and support to build a security roadmap from the ground up.
As a Security Engineer, your role will include:
Lead the effort to secure our cloud infrastructure, ensuring secure deployments, access controls, and robust incident response strategies
Establish security monitoring and alerting to detect, respond to, and mitigate potential threats in real-time
Own and drive compliance initiatives (such as GDPR, Cyber essentials) to ensure our organisation meets the required standards
Implement and enforce best practices for encryption, identity and access management (IAM), and network security across the platform
Partner with product, engineering, and business teams to ensure security is embedded in all stages of development and product lifecycle
Create and manage a bug bounty program to incentivise external researchers to identify and report security vulnerabilities
Educate and train the wider team on security best practices, fostering a security-first mindset across the organisation
Stay ahead of emerging threats and technologies, ensuring we adopt the latest tools and practices to maintain a secure environment
Collaborate with external security firms for audits, penetration testing, and other assessments to validate our security posture
Software Engineer Interview Process
Our aim is to keep the interview process as straightforward and enjoyable as possible, and will consist of the following stages:
Kick off! (apply below)
Introductory chat (25-minute video call)
Technical interview (50 mins)
Once the process is finished, we promise to let you know our decision as soon as possible.
Requirements
What experience we're looking for
If you don't quite meet all of the below skills, we'd still love to hear from you as we might be able to tweak the role slightly or offer you a position better suited for you. You can apply directly below or contact us if you're still unsure.
Your key experience:
1+ years in a Security Engineering role or similar
2+ years working with cloud infrastructure (preferably AWS) or as a platform engineer
You've led the development and implementation of key security projects
Experience with security frameworks, policies, and compliance standards (e.g., SOC 2, GDPR, ISO 27001)
Familiarity with penetration testing, vulnerability assessments, and incident response gained through practical experience
Your key skills:
Experience with securing cloud infrastructure, ideally within AWS (e.g., VPC, IAM, Security Groups, CloudTrail, GuardDuty)
Experience with encryption, key management, and identity and access management (IAM)
Hands-on experience with infrastructure as code tools (e.g., CloudFormation, Terraform) and CI/CD pipelines
Experience with security monitoring and observability tools (e.g., AWS CloudWatch, Aikido, Datadog)
A pragmatic mindset, with excellent communication and collaboration skills
Able to work within a highly-skilled engineering team in a fast-paced, iterative environment
Bonus points if you:
Have implemented or managed a bug bounty program
Have experience with serverless architectures
Are familiar with DevSecOps principles and integrating security into the CI/CD pipeline
Have a strong interest in health/fitness technologies or have worked in a similar tech environment
Our tech stack
Check out our Tech Radar here which we are constantly iterating, and below you can find a small reflection of our current tech stack:
Below you can find a small reflection of our current tech stack:
Frontend:
React Native (iOS and Android)
Typescript
GraphQL (Apollo Client)
Fastlane
SwiftUI (Apple Watch)
Maestro E2E tests
Backend:
Serverless (AWS)
Lambdas (NodeJS & Python)
AWS AppSync
DynamoDB, S3, SQS, SNS, EventBridge, SageMaker
Postman API tests
All the other good stuff:
Sentry
GitHub Actions
Intercom, Mixpanel
RevenueCat
App Store Connect / Play Store
Figma
Benefits
We offer a salary of £42,500 - £100,000 (depending on experience), plus equity in the form of Runna stock options.
Based on years of direct, relevant experience. Software Engineer I £42.5k, Software Engineer II £47.5-60k, Software Engineer III £60-75k, Software Engineer IV £77.5-92.5k, Software Engineer V £95k+
We'll be growing our package of benefits over time. We currently offer:
Flexible working (we typically work 2-3 days in our office in Vauxhall)
Salary reviews every 6 months or whenever we raise more investment
25 days of holiday plus bank holidays
A workplace pension scheme where if you pay 5% we pay 3%
A brand new Macbook, a running watch of your choice, and anything else you need to do your best work
Private health insurance
Enhanced family care policy (3 months fully paid leave when a new Runna joins the family, fertility support & other benefits)
An hour slot each week (during work time) to do a Runna workout
At Runna we have a limited number of employment visas that we are able to sponsor and are limited by govt. guidelines so cannot guarantee a visa sponsorship to all applicants. Please do apply though as we will consider all applicants.
About the Company
Runna is the #1 rated running coaching app in the world. Our mission is to make running training effective, enjoyable and easy for everyone Take your running to the next level with Runna. We provide world-class training, coaching and community for everyone, whether you're improving your 5k time or training for your first marathon. Know more
Related Jobs
- Company Name
- TieTalent
- Job Title
- Fullstack Engineer (Java) - Must Have Active SC - 12 Months - Remote
- Job Description
- About Duration: 12 Months Rate: £410 (Inside of IR35) Interview: 1 stage Location: Remote Start Date: ASAP Must Have Active SC Our client are a top tier consultancy looking for Full stack Developer roles with Active SC. Job Description: Strong Software Engineer with extensive experience working with Java (Spring Boot) on large microservice architectures. The engineer should be confident using test-driven development techniques and possess skills in containerisation (Docker), relational databases such as Postgres (ideally with migration tooling such as Liquibase), and experience with modern DevOps ways of working like continuous integration and deployment. Knowledge of Kafka would be advantageous along with some Front End experience using React/Typescript. Essential skills/experience: Java (Spring boot) Postgres (or other relational SQL database) Docker Test-driven development (Junit & Mockito or other similar testing libraries) CI/CD (Jenkins or similar pipeline tooling) Comfortable working in agile teams and collaborating with colleagues from other disciplines. Desirable: API Spec (Swagger OpenAPI) Gradle Liquibase Kafka React TPBN1_UKTJ Nice-to-have skills Java Spring Boot Docker DevOps Kafka React TypeScript JUnit Jenkins Agile Gradle United Kingdom Work experience Fullstack Languages English
- Company Name
- Falcon Smart IT (FalconSmartIT)
- Job Title
- DevOps Engineer with Salesforce
- Job Description
- Job Title: DevOps Engineer with Salesforce Job Type: 6 Months FTC Job Location: London, UK/Onsite Job Description - Responsible for managing the deployment and release processes. They ensure smooth and efficient releases, automate deployment pipelines, and maintain the CI/CD infrastructure.
- Company Name
- DataAnnotation
- Job Title
- Software Engineer
- Job Description
- DataAnnotation is committed to creating quality AI. Join our team to help train AI chatbots while gaining the flexibility of remote work and choosing your own schedule. We are looking for a proficient Software Engineer to join our team to train our AI chatbots to code. You will work with the chatbots that we are building in order to measure their progress, as well as write and evaluate code. To apply to this role, you will need to be proficient in either Python and/or JavaScript. Your role will require proficiency in at least one programming language (JavaScript, Python, C#, C++, HTML, SQL, or Swift) in order to solve coding problems (think LeetCode, HackerRank, etc). For each coding problem, you must be able to explain how your solution solves the problem. Benefits: This is a full-time or part-time REMOTE position You’ll be able to choose which projects you want to work on You can work on your own schedule Projects are paid hourly, starting at $40+ USD per hour, with bonuses for high-quality and high-volume work Responsibilities: Come up with diverse problems and solutions for a coding chatbot Write high-quality answers and code snippets Evaluate code quality produced by AI models for correctness and performance Qualifications: Fluency in English (native or bilingual level) Proficient in either Python and/or JavaScript Excellent writing and grammar skills A bachelor's degree (completed or in progress) Previous experience as a Software Developer, Coder, Software Engineer, or Programmer Note: Payment is made via PayPal. We will never ask for any money from you. PayPal will handle any currency conversions from USD. This job is only available to those in the US, UK, Canada, Australia, or New Zealand. Those located outside of these countries will not see work or assessments available on our site at this time.
- Company Name
- Hays
- Job Title
- Remedy Developer
- Job Description
- Remedy Developer – Telecoms Client - Reading base (one a week) - £500-600 per day inside IR35 – 6 months+ I am working on a niche and highly involved role with my key client focusing on Design, Development, Enhancement & Support of hybrid (bespoke & vendor) Service Management IT solutions as well as and subject matter expertise to enable others in the team to meet delivery needs. You’ll ensure the Service Management technical environment(s), processes, tools, capability and capacity are fit for purpose and shape/influence the operating model to improve the delivery service provided (costs, timescales & quality). Preferred education/qualifications: Proven/Evidenced based experience in a technical role holding knowledge authority of ITSM applications and tools. (commercial or non-commercial). Knowledge & Experience: Extensive recent knowledge and practical experience of one or more of the following software products:- BMC Remedy ARS (on premise) BMC Atrium Integrator Awareness & understanding of multiple software development/integration technologies (see Technical Skills & Abilities). Proven use of different Development/Delivery methodologies (e.g. Waterfall, Agile…). Experience of analysing, impact assessing, planning and resolving complex technology requirements, problems and issues. Technical Skills & Abilities: Customisation, Development and Integration skills, that can be evidenced/showcased, in BMC Remedy (ARS V8+ - as “greenfield” bespoke dev). Ability to integrate Remedy and 3rd party tools (on-prem). Experience on rest API, Atrium Integrator configuration and Remedy workflow development. Experience of BMC CMDB and the ability to troubleshoot issues related to data normalization, reconciliation Excellent SQL skills across industry RDBMS technologies (Oracle, MS SQLServer..) Awareness/Experience across industry RDBMS development languages (stored procedures/scripting) Proficient Windows/Unix skills (OS cmd line/Shell Scripting/Services). Recent experience in source code/version control management & delivery collaborative tools (e.g. Jira, Subversion, Microsoft Team Foundation Server…). This position will only be open this afternoon due to a tight client deadline; do forward your CV showing all criteria is met. This role cannot accept any candidates from overseas or those who are sponsored or requiring sponsorship. This is a niche role which will pay £250 in vouchers for a successful referral – so do forward onto any friends or colleagues,