Job title: Security Engineer
Location: London, Bristol or Edinburgh (including hybrid)
Salary: £63,000 – £93,000
Team: Security Engineering Team
Reporting To: Security Engineering Manager
This role is based in Bristol, London or Edinburgh and requires an existing right to work in the UK. At this time, we are not able to offer visa sponsorship for this role. We are committed to building a diverse, global team and our sponsorship policy is evaluated on a role‑by‑role basis.
What You’ll Be Doing
- AI‑Driven Security: Help engineers safely adopt AI tools and experiment with AI to automate the “heavy lifting” of security, such as automated remediation and risk assessment.
- Automated Security Scanning: Implement and tune SAST/DAST/SCA tools across the SDLC, increasing fidelity and reducing noise to maintain developer flow state.
- Vulnerability Management: Embed modern vulnerability management practices within engineering teams, consulting on triage and using AI tools to accelerate detection, risk assessment, and remediation.
- Secure Design & Threat Modeling: Partner with architects, product managers, and engineers to incorporate security early. Lead Threat Modeling sessions and develop secure‑by‑design principles.
- Supply Chain Security: Develop robust standards and tooling to safeguard software against open‑source dependency threats and supply‑chain attacks.
- Security Culture & Champions: Partner with Security Champions across Kaluza to promote a security‑first culture and increase engagement within the technology community.
Is This the Job for You?
We are looking for an experienced AppSec professional who is comfortable reading code as well as discussing architecture.
- Deep Security Knowledge: Strong familiarity with the OWASP Top 10, API Security (REST/GraphQL), and secure SDLC practices.
- Developer Mindset: Comfortable working with modern languages—specifically TypeScript & Go—and understanding how to secure cloud‑native environments.
- Automation Experience: Implemented security tools within CI/CD pipelines (e.g., GitHub Actions) and prefer automation over manual checklists.
- Consultative Approach: Can explain complex security risks to non‑security stakeholders and guide teams toward pragmatic, scalable solutions.
- AI Curiosity: Interested in both the security risks and defensive opportunities provided by GenAI.
Benefits
- Pension Scheme
- Discretionary Bonus Scheme
- Private Medical Insurance + Virtual GP
- Life Assurance
- Access to Furthr – a Climate Action app
- Free Mortgage Advice and Eye Tests
- Perks at Work – access to thousands of retail discounts
- 5% Flex Fund to spend on the benefits you want most
- 26 days holiday
- Flexible bank holidays, giving you an additional 8 days which you can choose to take whenever you like
- Progressive leave policies with no qualifying service periods, including 26 weeks full pay if you have a new addition to your family
- Dedicated personal learning and home office budgets
- Flexible working – we trust you to work in a way that suits your lifestyle
- And more…
Values
Play to win, Solve the real problem, Build trust every day, Own the outcome, Go further together.
#J-18808-Ljbffr”, “datePosted”: “2026-05-17”, “hiringOrganization”: { “@type”: “Organization”, “name”: “Kaluza”, “sameAs”: “https://uk.whatjobs.com/pub_api__cpl__434437123__4861?utm_campaign=publisher&utm_medium=api&utm_source=4861&geoID=22” }, “jobLocation”: { “@type”: “Place”, “address”: { “@type”: “PostalAddress”, “addressLocality”: “Bristol” } } }Job title: Security Engineer
Location: London, Bristol or Edinburgh (including hybrid)
Salary: £63,000 – £93,000
Team: Security Engineering Team
Reporting To: Security Engineering Manager
This role is based in Bristol, London or Edinburgh and requires an existing right to work in the UK. At this time, we are not able to offer visa sponsorship for this role. We are committed to building a diverse, global team and our sponsorship policy is evaluated on a role‑by‑role basis.
What You’ll Be Doing
- AI‑Driven Security: Help engineers safely adopt AI tools and experiment with AI to automate the “heavy lifting” of security, such as automated remediation and risk assessment.
- Automated Security Scanning: Implement and tune SAST/DAST/SCA tools across the SDLC, increasing fidelity and reducing noise to maintain developer flow state.
- Vulnerability Management: Embed modern vulnerability management practices within engineering teams, consulting on triage and using AI tools to accelerate detection, risk assessment, and remediation.
- Secure Design & Threat Modeling: Partner with architects, product managers, and engineers to incorporate security early. Lead Threat Modeling sessions and develop secure‑by‑design principles.
- Supply Chain Security: Develop robust standards and tooling to safeguard software against open‑source dependency threats and supply‑chain attacks.
- Security Culture & Champions: Partner with Security Champions across Kaluza to promote a security‑first culture and increase engagement within the technology community.
Is This the Job for You?
We are looking for an experienced AppSec professional who is comfortable reading code as well as discussing architecture.
- Deep Security Knowledge: Strong familiarity with the OWASP Top 10, API Security (REST/GraphQL), and secure SDLC practices.
- Developer Mindset: Comfortable working with modern languages—specifically TypeScript & Go—and understanding how to secure cloud‑native environments.
- Automation Experience: Implemented security tools within CI/CD pipelines (e.g., GitHub Actions) and prefer automation over manual checklists.
- Consultative Approach: Can explain complex security risks to non‑security stakeholders and guide teams toward pragmatic, scalable solutions.
- AI Curiosity: Interested in both the security risks and defensive opportunities provided by GenAI.
Benefits
- Pension Scheme
- Discretionary Bonus Scheme
- Private Medical Insurance + Virtual GP
- Life Assurance
- Access to Furthr – a Climate Action app
- Free Mortgage Advice and Eye Tests
- Perks at Work – access to thousands of retail discounts
- 5% Flex Fund to spend on the benefits you want most
- 26 days holiday
- Flexible bank holidays, giving you an additional 8 days which you can choose to take whenever you like
- Progressive leave policies with no qualifying service periods, including 26 weeks full pay if you have a new addition to your family
- Dedicated personal learning and home office budgets
- Flexible working – we trust you to work in a way that suits your lifestyle
- And more…
Values
Play to win, Solve the real problem, Build trust every day, Own the outcome, Go further together.
#J-18808-Ljbffr…