deliveroo - Senior Security Engineer
Upload My Resume
Drop here or click to browse · PDF, DOCX, DOC, RTF, TXT
Requirements
• Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or equivalent practical experience. • 5+ years’ experience in Security Engineering, Corporate Security, Detection & Response, or a related field. • Hands-on experience administering IAM platforms (e.g. Okta, GoogleWorkspace). • Deep hands-on experience with GoogleWorkspace products • Practical hands-on experience with Cloud platforms (e.g AWS, GCP) • Relevant and practical experience with Infrastructure-as-code (e.g Terraform) • Experience implementing modern authentication standards (FIDO2, WebAuthn, SAML, OAuth 2.0, OpenID Connect). • Practical experience securing macOS, Windows and Linux endpoints using MDM and EDR/XDR tooling. • Experience operating SIEM and/or SOAR platforms and tuning detection logic. • Experience with vulnerability management and patch governance. • Ability to write production-quality automation scripts. • Demonstrated experience leading cross-functional technical initiatives. • Experience with SASE or Zero Trust Network Access platforms. • Hands on experience deploying applications into K8 and Docker environments • Data Loss Prevention (DLP) and SaaS security governance. • Advanced detection engineering or SOAR playbook development. • Experience supporting ISO 27001 or SOC 2 audits. • Relevant certifications (e.g. CISSP, CISM, GIAC).
Responsibilities
• Architecture & Control Implementation: Design, deploy, and maintain core corporate security controls, including phishing-resistant MFA, Just-In-Time (JIT) access, strict role-based access control (RBAC), zero-trust architectures, device and identity bound proofing and modern network isolation. • Tooling Ownership: Serve as the technical owner for a broad suite of corporate security systems, managing deployments, configurations, and API integrations for tools across the corporate environment. • Technical Leadership: Lead and implement the technical strategy for Endpoint Device trust, Data Loss Prevention, Intellectual property storage, and SaaS application security. Alongside wider corporate security technical controls. • Automation & Engineering: Write scripts and build tools to automate security workflows, incident response tasks, and audit evidence collection for compliance. • Cross-Functional Collaboration: Work with IT and business operations to integrate security tools into everyday workflows. Guide non-security teams to adopt secure baselines (e.g., CIS Benchmarks) as standard practice. • Mentorship: Mentor junior and mid-level engineers, explain technical concepts clearly to non-technical staff, and help improve the team's engineering standards.
Benefits
• At Deliveroo we know that people are the heart of the business and we prioritise their welfare. Benefits differ by country, but we offer many benefits in areas including healthcare, well-being, parental leave, pensions, and generous annual leave allowances, including time off to support a charitable cause of your choice. Benefits are country-specific, please ask your recruiter for more information.
No credit card. Takes 10 seconds.