About this role
Thought Machine’s mission is bold – to properly and permanently rid the world’s banks of legacy technology. To achieve this, we have developed the foundations of modern banking through core and payments technology which run natively in the cloud. What we are attempting is hard and means we need great people working together to build great technology.
We have grown rapidly in the past few years – growing our team to more than 550 individuals across offices in London, New York, Singapore and Sydney. We have raised more than $500m in funding and are now valued at $2.7bn. Our investors include Molten Ventures, Eurazeo, Intesa Sanpaolo, Temasek, Nyca Partners, JPMorgan Chase Strategic Investments, Standard Chartered Ventures, and more.
We have created a culture that enables our team to produce the best work in the industry while ensuring we have fun along the way. We're regularly cited as having a fantastic workplace culture and have been recognised by Sifted magazine as having one of the highest Glassdoor ratings for a UK fintech company and the industry's most generous employee share package. Named one of the world’s most innovative fintechs by Global Finance Magazine, we were also recognised by the Financial Times as one of Europe’s fastest-growing companies for two consecutive years—and a UK Best Employer for 2026.
A Cloud Security Engineer is a contributor to the larger Security Engineering team. We desire engineers who are able to engineer, design, build solutions, and think creatively about security threat mitigation. We have a passion for exploration of unique solutions and sharing of unique perspectives that you can bring to the team and its work.
The Security Engineering team is cross-functional and made up of diverse people who bring their own unique expertise in either (or both) application security and infrastructure (cloud) security. We allow team members to move from project to project, subject to subject based on their skills, experience, and interests. Each team member brings their own expertise to bear in ways that are collaborative and designed to find the best solutions to complex problems.
The team covers the following areas, and individuals contribute to any of them based on their own expertise:
Designs and reviews to build a secure product and platform
Threat modelling to identify relevant areas of focus
Define the best in class protective and detective security controls
Development of security tooling and automation
Implement and maintain cutting-edge tools and measures
A large part of the Thought Machine security function is greenfield; we are building the bank of tomorrow with cutting edge technology. To achieve this we need innovative thinking to create security solutions in our products and our infrastructure. We look for people who think outside the box, and outside of traditional silos to find unique solutions and approaches to security that lead the industry.
DUTIESProvide security expertise and mentorship to Thought Machine engineering teams through the stages of planning, design, and testing of new solutions.
Co-develop threat models with engineering teams that identify relevant threats and relevant strategies for mitigation
Design and build cloud native preventative and detective controls that operate at scale
Build and maintain automation to actively audit and assess infrastructure-as-code and in-place infrastructure
Develop (in code) security tooling, contribute to third-party security products, and develop updates for existing tooling that is in use in our environment
Work with cloud engineering and operations teams to develop tooling that maintains our secure operating state in production
Perform security reviews and security testing
Contribute to the overall security strategy, security tooling selection and creation
Operate collaboratively with other Thought Machine teams with trust and influence
REQUIREMENTSEssential
Familiarity with building and deploying containerised applications in public cloud using CI/CD frameworks and infrastructure automation
Knowledge of cloud networking architecture, cloud operations, security, automation and orchestration
Familiarity with performing security threat modelling and design reviews
Knowledge of security in distributed systems
Familiarity with good security practices with containers and Kubernetes
Experience with languages such as Go, Python, or other modern programming languages
Coding experience in the creation, automation, and integration of security tools
Experience in version control systems such as Git
Experience with designing, developing, and maintaining security in public cloud environments such as AWS and GCP
Strong interpersonal and communication skills to support collaboration with other personnel and teams
Desirable
Existing experience building and operating distributed systems at scale
Awareness and experience with “well-architected” cloud security frameworks or CSA-CCM
Contributions to the security community (public research, blogging, presentations, etc)
Experience in performing web application penetration testing and security tooling
Experience developing tools and interacting with cloud provider APIs.
We actively hire candidates who demonstrate technical excellence in their field and welcome people of all ages and backgrounds, providing everyone with equal access to professional development. You are encouraged to apply even if your experience doesn't accurately match the job description. We also encourage applications from those with different abilities, including candidates with ADHD, autism, dyslexia or dyspraxia.