Sydicom insightsSydicom overview

A remote Security role at Causaly. Strong knowledge of cloud security — IAM, network security, secure configuration best practices.

Level

Senior

Work

Remote

Focus

Security

Pay

Est. $118k-$154k/yr

How Sydicom helps: we read this listing’s requirements and tune your CV and cover letter to the keywords its ATS (Ashby) is scanning for, for candidates in United Kingdom, then help you apply.

Related roles

Original listing text, shown exactly as published by the company.

About the Role

We are looking for a Senior or Staff Security Engineer to join our security team and own our vulnerability management program, collaborate with several Engineering and Product teams as a Security advisor and support SecOps. You will operate with a high degree of autonomy — defining strategy, building processes, and acting as a trusted security advisor to our engineering organisation.

What You'll Do

Own the vulnerability management program end-to-end: strategy, tooling, prioritisation, and remediation tracking across dependencies, containers, and cloud environments.
Define and maintain a dependency security strategy, including policies for third-party library adoption and update cadence.
Integrate and maintain security tooling in CI/CD pipelines (SAST, SCA, secrets detection, container scanning).
Act as a security consultant to product and engineering squads — supporting design reviews, architecture decisions, and secure coding practices.
Define and maintain security standards and guidelines practical for development teams.
Manage and continuously improve the Security Champions program — growing security awareness and capability across engineering teams.
Support SecOps in incident triage and response, contributing security engineering context where needed.

Requirements

Strong knowledge of cloud security — IAM, network security, secure configuration best practices.
Hands-on experience with security tooling in CI/CD pipelines (SAST, SCA, secrets scanning, container scanning).
Proven experience in a vulnerability management role, through the entire lifecycle.
Passionate and knowledgeable about us

ing LLMs for building robust security practices, including triage, secure code review, threat analysis and tooling

In-depth knowledge of secure coding practices in Node.js, TypeScript, Python, and/or React.
Familiarity with security frameworks and standards (e.g. OWASP, NIST, CIS Benchmarks).
Strong communication skills, with the ability to translate risk for both technical and non-technical audiences.

Nice to Have

Experience with Semgrep for static analysis and custom rule authoring.
Experience with Wiz for cloud security posture management.
Experience running or contributing to a Security Champions program.
Experience with threat modelling (e.g. STRIDE).
Familiarity with SOC 2 and ISO 27001.
Relevant certifications are considered a plus (e.g. CISSP, IaaS specific certifications, etc..).

About Causaly

Causaly

Security

6 open roles on Sydicom

Websitewww.causaly.com

Only Causaly combines advanced agentic AI, precision knowledge graphs, and workflow automation to accelerate R&D productivity and decision-making at scale.

Source: company website

Open source

github.com/causaly· 16 public repos· 1,047 stars· TypeScript

Senior Security Engineer

About the Role

What You'll Do

Requirements

Nice to Have

About Causaly

Open source

About Causaly

Open source