Sr Software Security Engineer; Remote from United Kingdom

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Sr Software Security Engineer in United Kingdom.

The Senior Software Security Engineer will lead the development and execution of application and software security programs, ensuring secure software delivery across the engineering organization. You will act as both a builder and defender, designing preventative controls, internal tools, and frameworks that embed security into the software development lifecycle. The role requires a balance of technical judgment, threat awareness, and collaboration with engineering teams to proactively manage risks while supporting rapid product delivery.

You will influence security strategy, lead automation efforts for threat detection and response, and mentor teams on secure coding practices. This position offers the opportunity to shape organizational security posture in a fast-growing, remote-friendly environment with high autonomy and impact.

• Own and evolve secure SDLC strategy, defining security standards from design to deployment.
• Implement automated security guardrails in CI/CD pipelines to detect vulnerabilities, misconfigurations, and dependency risks.
• Lead vulnerability management efforts, designing durable fixes and reusable security patterns in collaboration with engineers.
• Build and maintain internal security tooling, platforms, and frameworks focused on automation, scalability, and developer experience.
• Develop threat detection and response automation, including playbooks, escalation processes, and security monitoring.
• Act as a trusted advisor to engineering and product teams, providing guidance on secure design, architecture, and risk-based decisions.
• Deliver security training, awareness programs, and role-specific guidance to embed security into everyday engineering practices.

• 5+ years of experience in Software Engineering or Security Engineering with senior-level impact across multiple systems or teams.
• Strong proficiency in at least one modern programming language (e.g., Python, Go, Node.js), emphasizing maintainable, production-quality systems.
• Deep understanding of common application security vulnerabilities (e.g., OWASP Top 10) and ability to communicate risks effectively to engineers.
• Experience with Linux, containers/Kubernetes, and infrastructure as code in at least one major cloud platform (AWS, GCP, or Azure).
• Hands-on experience leading threat detection, response, and security automation initiatives.
• Proven ability to collaborate across engineering, product, and security teams to influence outcomes.
• Strong problem-solving, analytical, and communication skills, with a proactive approach to security challenges.

• Experience defining and tracking security metrics and dashboards to measure program effectiveness.
• Prior experience in remote environments and/or pre-IPO startups.
• Familiarity with Go, Node.js + Express, React, JS, Python, Postgres, Kafka, MySQL, Redis, and APIs (REST/gRPC).

• Competitive compensation range: €75,000 – €100,000, adjusted based on experience and market.
• Fully remote work with global flexibility.
• Equity participation or stock options.
• Comprehensive health benefits.
• Professional growth opportunities through training, mentorship, and conferences.
• Inclusive, supportive, and collaborative culture.
• Work in a fast-paced, high-impact environment alongside industry experts.

Why Apply Through Jobgether?

We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.

We appreciate your interest and wish you the best!

Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.