Senior Security Engineer

Numan
London
1 week ago
Create job alert

About Numan

Founded in 2018, we've already grown to be a 200+ team distributed across the globe united by a singular mission: empowering people to take control of their health.

Numan is transforming health: we've built a cutting-edge platform that integrates diagnostics, medication, supplements, digital programmes, and doctor consultations. Giving people the tools they need to maximise life.

To deliver on our transformative mission, we are guided by our 5 company values:

  1. Patients first.
  2. Deliver sustainable results at speed.
  3. Own the quality.
  4. Succeed together.
  5. Care deeply.


The Role

As Senior Security Engineer, you will play a critical part in ensuring the security of our systems, infrastructure, and applications. You will be responsible for implementing and maintaining security best practices across the organisation, with a focus on threat modeling, code security, and CI/CD security, with additionally assisting in GCP cloud security, endpoint security, security operations, and incident management.

You'll be:

  1. Conducting threat modeling exercises for new and existing systems, applications, and infrastructure to identify vulnerabilities and develop mitigation strategies.
  2. Integrating security controls and best practices into our SDLC to ensure security is built into the development process.
  3. Leading the security champions program by training and collaborating with security champions to drive vulnerability management and security initiatives.
  4. Designing, collaborating with our Infrastructure team to implement, and manage security controls within our GCP cloud environment, including IAM, network security, data security, and logging/monitoring.
  5. Developing and maintaining endpoint security policies and solutions to protect against malware, phishing, and other threats.
  6. Leading and participating in security operations and incident response efforts, ensuring incidents are handled effectively and efficiently.
  7. Contributing to the development and delivery of security awareness training programs for employees.
  8. Working closely with development, operations, and compliance teams to integrate security into all aspects of the business.


We're looking for someone who has:

  1. Experience in a security engineering role, with a strong understanding of application and product security principles and best practices.
  2. Proven experience conducting threat modeling exercises using methodologies such as STRIDE or DREAD.
  3. Hands-on experience integrating security tools and controls into CI/CD pipelines (e.g., GitHub).
  4. Strong knowledge of GCP security services and best practices, including IAM, networking, compute, and storage.
  5. Some experience with endpoint security solutions, such as antivirus, EDR, and DLP.
  6. Familiarity with security monitoring tools and techniques, such as SIEM, log analysis, and intrusion detection.
  7. Experience with incident response processes and procedures.
  8. Excellent written and verbal communication skills, with the ability to explain complex technical concepts to a variety of audiences.
  9. An investigative mindset and a natural curiosity with a "detective" mindset to proactively identify potential security threats and vulnerabilities.
  10. The curiosity and drive to solve complex puzzles.


It's a bonus if you have:

  1. Experience with scripting languages (e.g., Python).
  2. Knowledge of container security and Kubernetes.
  3. Experience with startups and working in small teams.


Our benefits include...

  • Share options.
  • 25 days holiday, plus bank holidays (increasing to 30 the longer you stay with Numan).
  • Health insurance with Vitality.
  • Enhanced maternity and parental leave.
  • Employee assistance programme (access to therapy, financial planning and discounts).
  • Generous pension (includes both employee and employer contributions).
  • Flexible working options, including a dog friendly office in Farringdon.
  • Personal training and development budget via Learnerbly.
  • Wellhub membership, giving you access to over 2,000 locations in the UK.
  • Free office snacks including breakfast items, soft drinks, tea and coffee.
  • Cycle to work scheme.
  • Discount to Numan products for your friends and family.
  • Paid volunteering days.
  • An additional 2 weeks off once you reach your 5th anniversary with Numan.


Diversity at Numan

At Numan, people are at the heart of who we are. We recognise and value the unique perspectives and experiences that individuals from all backgrounds bring.

We promote innovation and creativity, enabling us to tackle things from various viewpoints and are committed to equal opportunities and continuously strive to create a workplace where everyone feels respected, heard, and valued.

Embracing diversity isn't just our goal; it's our strength, driving us towards a more inclusive future.#J-18808-Ljbffr

Related Jobs

View all jobs

Senior Security Engineer

Senior Security Engineer

Senior Security Engineer

Senior Security Engineer

Senior Security Engineer

Senior Security Engineer

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Global vs. Local: Comparing the UK Cybersecurity Job Market to International Landscapes

Understanding opportunities, salaries, and work culture in cybersecurity across the UK, the US, Europe, and Asia Cybersecurity has rapidly ascended from a back-office concern to a strategic priority for every industry. As data breaches, ransomware, and nation-state attacks increase in frequency and sophistication, organisations worldwide are racing to fortify their digital defences. This ongoing surge in cyber threats fuels an unprecedented demand for skilled security professionals—ranging from penetration testers and threat intelligence analysts to cloud security architects and CISOs. In this article, we’ll explore how the UK cybersecurity job market compares to major international hubs in the United States, Europe, and Asia. We’ll discuss job opportunities, salary bands, work culture, and provide guidance for those who might be contemplating remote or overseas positions. By understanding the nuances of each region’s cybersecurity ecosystem, you can make a more informed decision about where and how to advance your career in this high-impact, fast-evolving sector. Whether you’re a seasoned expert with years of experience or a career-changer eager to break into cybersecurity, this overview will help you navigate the global landscape. By the end, you’ll have a clearer perspective on each region’s advantages and challenges—along with practical insights for seizing the best opportunities in a field that has become mission-critical for every modern organisation.

Cybersecurity Leadership for Managers: Strategies to Motivate, Mentor, and Set Realistic Goals in Threat-Driven Environments

In an era of rapidly increasing data breaches, ransomware attacks, and corporate espionage, the importance of robust cybersecurity cannot be overstated. Protecting digital assets has become as essential as safeguarding physical resources, and organisations worldwide rely heavily on specialised teams to defend against sophisticated cyber threats. However, even the most advanced tools and techniques are only as effective as the leadership guiding their use. Cybersecurity leadership requires a dynamic blend of technical know-how, strategic thinking, and people-management skills to maintain readiness against ever-evolving threats. This article is designed for professionals aiming to lead cybersecurity teams or transition into managerial roles where understanding how to motivate, mentor, and set realistic goals is paramount. With insights into building high-performing teams, fostering collaboration, and embracing continuous learning, you’ll be equipped to protect your organisation from a broad spectrum of cyber risks.

10 Must-Read Cyber Security Books for UK Professionals: Boost Your Career and Stay Ahead of Threats

With rapid advancements in digital infrastructure, cloud computing, and the Internet of Things (IoT), cyber threats continue to evolve at lightning speed. For organisations across the UK—and globally—robust cyber security is no longer optional: It’s a strategic imperative. From healthcare and finance to government agencies and tech start-ups, every sector needs skilled professionals to safeguard critical data and protect users. If you’re looking to break into or advance within the cyber security industry, staying updated on the latest techniques, threat landscapes, and defence strategies is paramount. One of the best ways to build and sharpen your expertise is by reading authoritative, high-quality books that combine foundational knowledge with cutting-edge insights. In this guide, we’ve compiled a list of ten books that cater to various skill levels, spanning ethical hacking and threat intelligence to secure software development and cryptography. By diving into these resources, you’ll fortify your understanding of cyber security fundamentals, explore hands-on techniques for defending systems, and gain the strategic perspective needed to excel in roles throughout the UK’s thriving cyber security landscape.