Description
As a Cloud Security Software Engineer at Engine by Starling, you will be a hands-on builder responsible for the security architecture of our multi-tenant core banking platform. You'll spend your days architecting and writing Go-based tooling, automating defenses, and ensuring our infrastructure across AWS and GCP is secure by design and compliant by default.
Your mission is to solve complex security problems through software engineering, focusing on three core pillars:
- Identity & Network Security: Engineering high-performance IAM controls and zero-trust network architectures.
- Unified Vulnerability Orchestration: Architecting a custom 'single pane of glass' for security data.
- Compliance as Code: Building the automated systems that provide real-time evidence for frameworks like SOC 2, ISO 27001 & PCI.
You will be a key member of our growing Security Engineering team, working at the intersection of Infrastructure, Cross-Cutting, and GRC. We operate like a specialized product team: we identify security friction and build the software to eliminate it.
You will lead the design and maintenance of our internal security tool suite, written primarily in Go, to automate evidence collection and real-time remediation of security alerts. You will also write and peer-review Terraform and custom providers to manage identity and core infrastructure across AWS and GCP.
The team supports the use of Go, Terraform, Kubernetes, and Cilium. Experience with eBPF, Sigstore/Cosign, image provenance, and SBOMs is desirable.
Engine by Starling offers a range of benefits, including 33 days holiday, an extra day's holiday for your birthday, annual leave increased with length of service, and a company-enhanced pension scheme.