Senior Security Engineer - Information Security in Cambridge

Are you looking to start your career as a Senior Security Engineer - Information Security in Cambridge in Cambridge? Roku is currently hiring local talent for this Senior Security Engineer - Information Security in Cambridge role!

About The Team 

The Roku trust engineering team is a close knit group of professionals with a passion for information security.  Our mission is to protect our customers, partners, devices, services, infrastructure, and data. We work collaboratively, sharing insights and expertise to stay ahead of the curve. Join us, and you’ll be part of a dynamic team that thrives on challenges and celebrates victories together. 

About The Role  

As a Senior Security Engineer on the Trust Cloud team, your role involves evaluating, architecting, designing, and implementing end-to-end security controls to impact the global user base. A key focus is on developing automated, scalable security solutions to enhance efficiency and protect Roku. This position requires a broad breadth of security expertise across all disciplines of security, including networking, DevSecOps, security tooling implementation, policy and procedure, risk evaluation, etc. 

What You Will Be Doing 

• Conducting enterprise, network, and application level security reviews.
• Conducting threat modelling for infrastructure, platform, and application initiatives.
• Planning and overseeing execution of security initiatives and projects
• Partnering with infrastructure, platform, and application teams to embed security into application architectures and deployment workflows as part of a robust Secure Software Development Lifecycle (SSDLC).
• Improving IAM policies, network configurations, DNS security, and cloud resource management practices.
• Designing and implementing integrations with third-party security platforms to automate vulnerability management, secure secret handling, and cloud posture monitoring, ensuring findings are actionable and seamlessly integrated into engineering workflows.
• Responding to security incidents to triage, contain, remediate, and report.
• Leveraging AI to accelerate your learning and enhance your work products.
• Driving security initiatives end-to-end — from identifying risks to delivering solutions — with high autonomy in a fast-moving environment.
• Automating vulnerability detection, misconfiguration checks, and compliance validation across cloud and containerised environments.
• Creating reusable security automation modules, templates, and patterns for engineering teams to adopt. 

We're Excited If You Have

• Experience doing security consulting and have balanced experience doing hands on implementation
• Experience supporting/leading DevSecOps initiatives and assisting teams in utilising and onboarding onto DSO platforms
• Designing, building, operating, and maintaining DSO platforms through IaC
• Offensive cyber operations such as application, system, and network level penetration testing
• Software Engineering experience with at least one general purpose programming language (ex. Python, Golang, C, Rust, etc.)
• Developed and/or implemented data tagging, data catalogs, or other data protection related activities
• Experience designing and administering enterprise identity and access management solutions at scale (ex: AD, EntraID, Okta, etc)
• Experience securely running and operating web applications, web services, and service-oriented architecture in production environments.
• A proven track record of deploying and operating Kubernetes clusters in production. <span data-ccp-props={"134233117":false,"134233118":false,"201341983":0,"335557856":16777215,"335559738":0,"335559739":0,"3

This Senior Security Engineer - Information Security in Cambridge position is a fantastic opportunity to join the team at Roku. Apply today via Placed!