Product Security Engineer, London, England, United Kingdom

Product Security Engineer

New Yesterday

Join to apply for the Product Security Engineer role at Smarsh

1 week ago Be among the first 25 applicants

Join to apply for the Product Security Engineer role at Smarsh

Who are we?

Smarsh empowers its customers to manage risk and unleash intelligence in their digital communications. Our growing community of over 6500 organizations in regulated industries counts on Smarsh every day to help them spot compliance, legal or reputational risks in 80+ communication channels before those risks become regulatory fines or headlines. Relentless innovation has fueled our journey to consistent leadership recognition from analysts like Gartner and Forrester, and our sustained, aggressive growth has landed Smarsh in the annual Inc. 5000 list of fastest-growing American companies since 2008.

We're seeking a Product Security Engineer to support secure development across our engineering teams. In this hands-on role, you'll help identify and mitigate product risks by participating in security reviews, improving tooling, and supporting vulnerability remediation. You'll work closely with senior security engineers and cross-functional teams to build security into our software development lifecycle.

This is a great opportunity for a security-minded engineer who wants to grow their technical breadth while making meaningful impact in a cloud-first, DevOps-centric environment. You must be comfortable working as part of a global team in a dynamic, fast-paced environment. Collaboration across time zones and geographies is a key part of our culture and success.

How will you contribute?

Secure SDLC Support: Assist in integrating security practices into the software development lifecycle, including design reviews and backlog grooming.
Threat Modelling: Participate in structured threat modelling exercises with guidance from senior team members.
Vulnerability Triage: Work with engineering teams to review findings from SAST, SCA, DAST, and container scans and track remediation progress.
Code & Config Review: Conduct basic secure code and configuration reviews, escalating high-risk findings as needed.
Security Tooling & Automation: Help maintain and enhance security scanning integrations in CI/CD pipelines.
Pen Testing Coordination: Assist in preparing for and triaging internal and third-party penetration tests.
Security Documentation & Guidance: Help develop security best practices, developer guidance, and response runbooks.

What will you bring?

4 years in security engineering, DevSecOps, application security, or related software engineering roles.
Strong foundational knowledge of secure coding and OWASP Top 10 risks.
Experience with at least one modern programming language (e.g., Python, Java, JavaScript, Go, or C#).
Familiarity with cloud platforms (AWS, Azure, or GCP) and container technologies (Docker, Kubernetes).
Exposure to security tooling such as SAST, SCA, or DAST scanners (e.g., Semgrep, Endor, Burp).
Basic understanding of identity and access controls (OAuth, SAML, API tokens).
Strong collaboration and communication skills, with a willingness to learn and grow.

Preferred Qualifications

Experience working in Agile/Scrum teams or DevOps environments.
Familiarity with CI/CD tools like GitHub Actions or Jenkins.
Exposure to security frameworks (NIST, ISO 27001, SOC 2).
Experience working in SaaS, multi-tenant cloud environments.
Knowledge of machine learning security (AI/ML model risks, LLM security best practices).
Familiarity with attack surface management and threat intelligence.
Relevant certifications (e.g., Security+, SSCP, GSEC) are a plus but not required.

What do we offer?

We value our people and offer a competitive salary along with company bonus
Strong maternity and paternity scheme
A workplace pension scheme
Take what you need holiday package
Private medical insurance
Dental plan
Group life assurance
Group income protection
Employee assistance programme
A monthly wellness allowance
Adoption assistance
Stock options

Don't meet every requirement? Apply anyway! We value diverse candidates and encourage applications, even if you don't perfectly match the job description. Studies have shown that some strong candidates may self-select out of the interview process prematurely, at Smarsh we encourage an inclusive, high-performing environment.

Smarsh is an equal opportunity and affirmative action employer. Qualified applicants will receive consideration without regard to their race, colour, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Smarsh invites all qualified interested applicants to apply for career opportunities. Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions. Including frequency of functions.

About Our Culture

Smarsh hires lifelong learners with a passion for innovating with purpose, humility and humor. Collaboration is at the heart of everything we do. We work closely with the most popular communications platforms and the world’s leading cloud infrastructure platforms. We use the latest in AI/ML technology to help our customers break new ground at scale. We are a global organization that values diversity, and we believe that providing opportunities for everyone to be their authentic self is key to our success. Smarsh leadership, culture, and commitment to developing our people have all garnered Comparably.com Best Places to Work Awards. Come join us and find out what the best work of your career looks like.

Seniority level

Seniority level
Mid-Senior level

Employment type

Employment type
Full-time

Job function

Job function
Information Technology
Industries
Software Development

Referrals increase your chances of interviewing at Smarsh by 2x

Get notified about new Product Security Engineer jobs in London, England, United Kingdom.

Product Security Engineer (University Grad)

London, England, United Kingdom 1 week ago

Product Security Engineer, Technical Lead

London, England, United Kingdom 1 week ago

London, England, United Kingdom 3 weeks ago

London, England, United Kingdom 2 weeks ago

Service Delivery Engineer CyberSecurity - Graduate

London, England, United Kingdom 3 weeks ago

London, England, United Kingdom 1 week ago

London, England, United Kingdom 5 days ago

London, England, United Kingdom 2 weeks ago

London, England, United Kingdom 6 days ago

London, England, United Kingdom 1 week ago

London, England, United Kingdom 5 days ago

London, England, United Kingdom 1 day ago

London, England, United Kingdom 2 weeks ago

Security Platform Engineer, UK Security Operations

London, England, United Kingdom 4 days ago

London, England, United Kingdom 6 days ago

London, England, United Kingdom 1 month ago

London, England, United Kingdom 1 year ago

London, England, United Kingdom 1 day ago

London, England, United Kingdom 3 months ago

London, England, United Kingdom 16 hours ago

London, England, United Kingdom 1 day ago

London, England, United Kingdom 5 days ago

Senior Software Engineer I - Wise for Enterprise - Java

London, England, United Kingdom 1 day ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Apply

Location:: London, England, United Kingdom
Salary:: £125,000 - £150,000
Job Type:: FullTime
Category:: IT & Technology

Start a New Search