LONDON, OFFICE-BASED

Freetrade’s mission is to become the default place to invest. Investing has been too complicated and expensive for too long, keeping millions from making the most of their savings.
We’re changing that.
We’re building our team and looking for people who are excited to reshape how our customers invest and grow their wealth. If you’re driven by solving complex problems and building innovative products, you’ll fit right in.
2025 is a big year for us. In January, we announced a game changing deal to become part of the IG Group. We’ll continue to operate as an independent business while gaining access to the resources and support of an established leader in the space.
This year, we’re accelerating our roadmap and taking our products to the next level. We’re building new features like mutual funds, bonds, and family investment tools. We’re also exploring how we can leverage AI to deliver an even better experience for our customers.
We’re on a mission to build a secure, scalable, and resilient cloud infrastructure—and we’re looking for a Senior Cloud Security Engineer to lead the way. In this foundational role, you’ll architect and build our cloud security program from the ground up, helping to shape how we protect our systems, services, and users in an ever-evolving digital landscape.
You’ll work closely with our DevOps and Platform teams to integrate security deeply into our development and deployment pipelines. This is your chance to define the standards, select the tools, and create the practices that will safeguard our cloud ecosystem now and into the future.
If you’re a security champion eager to shape the future of cloud security in a dynamic fintech environment, we’d love to hear from you. Come build, secure, and empower our growth in the cloud - one byte at a time.

• Lead Cloud Security Strategy: Spearhead the design and implementation of a comprehensive cloud security program in partnership with DevOps and Platform teams.
• Define Policies and Implement Key Controls: Develop and enforce cloud security policies, including Identity and Access Management (IAM), Web Application Firewalls (WAFs), and network segmentation strategies.
• Review System Architecture and Design: Conduct in-depth architecture and infrastructure reviews to uncover insecure design patterns and recommend secure alternatives.
• Audit Configurations and Code: Perform security-focused code and configuration reviews across infrastructure-as-code, CI/CD pipelines, and cloud-native applications.
• Deploy and Manage Security Tooling: Select, implement, and operate key tools across GCP, such as Cloud Armor, Cloud Identity, Security Command Center, and VPC Service Controls for ongoing threat detection and response.
• Integrate Security in SDLC: Collaborate with product and engineering teams to integrate security into every stage of the software development lifecycle.
• Threat Modeling and Risk Analysis: Perform structured threat modeling using frameworks such as STRIDE and PASTA to proactively mitigate security risks.
• Champion Developer Education: Promote secure development practices by educating engineers on cloud and application security fundamentals.
• Mentor and Lead: Act as a mentor to future hires, helping scale a high-impact cloud security function as the business grows.