Senior Security Engineer (Product Security)

Overview

Ebury is seeking a Senior Security Engineer (Product Security) to join our London team. You will own product security across Ebury’s software, drive security by design, perform threat modeling, oversee security testing, and coordinate incident response to protect customer data and scale security across our products.

Responsibilities

• Lead threat modeling and security design reviews for new features and APIs
• Define and implement product security controls and secure development lifecycle practices
• Conduct security testing (static and dynamic analysis) and coordinate remediation of vulnerabilities
• Collaborate with engineering teams to build secure software and improve security posture
• Lead or contribute to security incident response and post-mortems
• Mentor junior engineers and promote security best practices

Requirements

• 5+ years of experience in security engineering, DevSecOps, or a related field
• Strong knowledge of OWASP Top 10, secure coding practices, and threat modeling
• Experience with cloud platforms (e.g., AWS, Azure, GCP) and CI/CD tooling
• Proficiency in scripting (e.g., Python, Bash) and at least one programming language
• Familiarity with security testing tools (e.g., Burp Suite, SonarQube) and vulnerability management
• Excellent communication skills and ability to collaborate with product and engineering teams
• Right to work in the UK

Benefits

Competitive compensation and benefits package, with opportunities for career growth and flexible working arrangements.