Lead Security Engineer

Lead Security EngineerLocation: UK-wide (Remote-first)Salary: £80,000 – £95,000 + bonusWe are seeking an experienced Lead Security Engineer to join a high-performing engineering function focused on building secure, scalable, and resilient platforms across modern cloud environments.This is a senior technical leadership role combining hands-on security engineering with mentoring, strategy, and delivery oversight within agile teams.Role ResponsibilitiesLead security engineering and security testing across cloud and application platformsDefine and drive security testing methodologies, tooling, and best practicesPerform and oversee security assessments including penetration testing and code reviewsEmbed security into CI/CD pipelines and continuous delivery practicesCollaborate with engineering teams to ensure secure-by-design developmentLead threat modelling activities and articulate risks across systems and architecturesGuide adoption of security standards, frameworks, and compliance requirementsMentor and develop junior engineers within the security functionStay current with emerging threats, vulnerabilities, and attack techniquesRequired ExperienceStrong experience securing web applications and cloud platforms (AWS or Azure)Hands-on experience with security testing, including manual and automated approachesStrong understanding of secure coding and secure software development lifecycle practicesExperience working with CI/CD and DevSecOps practicesKnowledge of security frameworks and standards (e.g. NCSC, NIST, CIS, OWASP, ISO27001, PCI DSS, GDPR)Strong understanding of common attack vectors (OWASP Top 10, XSS, SQL injection, etc.)Good programming or scripting ability across Linux/Windows environmentsStrong communication skills with the ability to explain technical security concepts to varied audiencesExperience mentoring or leading small technical teamsDesirable ExperienceSecurity certifications such as OSCP, CREST, or equivalentExperience with tools such as Burp Suite, Nmap, Nessus, Metasploit, or similarExposure to enterprise security tooling (WAF, IDS/IPS, SIEM, etc.)Active participation in the security community or knowledge sharing activitiesExperience working in Agile delivery environmentsEligibility RequirementsMust be a UK citizenMust be eligible for UK Security ClearanceThis is an excellent opportunity for a senior security professional looking to take ownership of security engineering practices in a modern cloud-first environment, while influencing both technical direction and team development.For more information or a confidential discussion, please get in touch.