Senior Security Engineer

Location: Bristol, Leeds, Manchester, Edinburgh – Hybrid working

We’re looking for a Senior Security Engineer to join a large-scale enterprise transformation programme within a regulated financial services environment.

You will play a key role in designing and securing enterprise systems across cloud, applications, and networks. Working closely with technical and business stakeholders, you will ensure security is embedded into architecture and delivery from the outset.

The role involves leading security design reviews, performing threat modelling, and advising on risk and secure architectural decisions across multiple concurrent projects.

• Design secure solutions and define security controls aligned to industry standards
• Conduct threat modelling using frameworks such as STRIDE and MITRE ATT&CK
• Assess security risks and support architectural decision-making
• Communicate security requirements clearly to technical and non-technical stakeholders
• Define and review security testing requirements and outcomes
• Support secure delivery within Agile teams across multiple initiatives

• Strong background in Cyber Security or Security Engineering
• Experience with cloud platforms and modern architectures (APIs, microservices, containers)
• Knowledge of IAM, cryptography, networking, and enterprise security domains
• Experience with threat modelling frameworks (STRIDE / MITRE ATT&CK)
• Understanding of security standards such as ISO 27001, NIST, PCI DSS, OWASP
• Strong stakeholder management and communication skills

• Security certifications (CISSP, CISM, CCSP, CEH, OSCP or equivalent)
• Experience with public or private cloud environments