Responsibilities
- Conduct security assessments and threat modeling across product features and systems, translating insights into practical guidance for engineering teams
- Independently design, plan, and execute security initiatives from concept through implementation
- Develop automated tools and systems to streamline and reduce the cost of future security evaluations
- Manage external penetration testing efforts and oversee remediation efforts to resolution
- Support ongoing compliance requirements such as SOC2 and PCI, including gathering evidence and tracking fixes within defined audit timelines
- Advance application security strategy by contributing to key initiatives in AI security, supply chain integrity, application threat mitigation, and asset security posture management
- Initiate and lead forward-looking security research, threat analysis, and in-depth technical investigations previously unfeasible due to resource constraints
- Collaborate with Cloud, Infrastructure, and Governance, Risk & Compliance teams on integrating security into project lifecycles
Compensation
Competitive share options
Work Arrangement
Remote-first, globally distributed team with high autonomy
Team
Cross-functional collaboration with Cloud, Infra, and GRC teams
Other
- Fully remote setup with no daily progress monitoring
- Work involves shifting between proactive projects and reactive operational demands, requiring adaptability to changing priorities
- Globally distributed team, operating remotely since inception
- Uncapped vacation policy with a minimum of 25 days required to be taken annually
- Access to co-working spaces in major cities worldwide
- Opportunities for workations and attendance at company retreats
- Provision of top-tier equipment tailored to the role
- £500 allowance for home office setup
- Generous annual learning and development budget
- Private medical insurance coverage
- Broad range of location-specific benefits and perks
- High degree of autonomy with strategic direction provided