Senior Security Engineer

causalyΒ· Technology
Apply Now β†—
🌍 RemoteπŸ“ LondonFullTime

About this role

About us:

Causaly is redefining how humans acquire knowledge and develop insights in biomedicine. Our AI-powered platform enables researchers and decision-makers to discover and interpret evidence from millions of scientific publications, clinical trials, regulatory documents, and other complex data sources in minutes.

We are building the world’s most advanced biomedical knowledge platform, powered by a high-precision Knowledge Graph and GenAI capabilities. Our technology is already used by leading biopharmaceutical organizations to accelerate drug discovery, improve safety, and drive better decision-making.

Backed by top-tier investors including ICONIQ, Index Ventures, Pentech, and Marathon, we are scaling rapidly and expanding our product suite and market presence.Β 

About the Role

We are looking for a Senior or Staff Security Engineer to join our security team and own our vulnerability management program, collaborate with several Engineering and Product teams as a Security advisor and support SecOps. You will operate with a high degree of autonomy β€” defining strategy, building processes, and acting as a trusted security advisor to our engineering organisation.

What You'll Do

  • Own the vulnerability management program end-to-end: strategy, tooling, prioritisation, and remediation tracking across dependencies, containers, and cloud environments.

  • Define and maintain a dependency security strategy, including policies for third-party library adoption and update cadence.

  • Integrate and maintain security tooling in CI/CD pipelines (SAST, SCA, secrets detection, container scanning).

  • Act as a security consultant to product and engineering squads β€” supporting design reviews, architecture decisions, and secure coding practices.

  • Define and maintain security standards and guidelines practical for development teams.

  • Manage and continuously improve the Security Champions program β€” growing security awareness and capability across engineering teams.

  • Support SecOps in incident triage and response, contributing security engineering context where needed.

Requirements

  • Strong knowledge of cloud security β€” IAM, network security, secure configuration best practices.

  • Hands-on experience with security tooling in CI/CD pipelines (SAST, SCA, secrets scanning, container scanning).

  • Proven experience in a vulnerability management role, through the entire lifecycle.

  • Passionate and knowledgeable about using LLMs for building robust security practices, including triage, secure code review, threat analysis and tooling

  • In-depth knowledge of secure coding practices in Node.js, TypeScript, Python, and/or React.

  • Familiarity with security frameworks and standards (e.g. OWASP, NIST, CIS Benchmarks).

  • Strong communication skills, with the ability to translate risk for both technical and non-technical audiences.

Nice to Have

  • Experience with Semgrep for static analysis and custom rule authoring.

  • Experience with Wiz for cloud security posture management.

  • Experience running or contributing to a Security Champions program.

  • Experience with threat modelling (e.g. STRIDE).

  • Familiarity with SOC 2 and ISO 27001.

  • Relevant certifications are considered a plus (e.g. CISSP, IaaS specific certifications, etc..).

Benefits UK:

πŸ’° Competitive compensation package

🩺 Private medical insurance

🦷 Private dental insurance

πŸ“” Life insurance (4 x salary)

πŸ€“ Personal development budget

🧘 Individual wellbeing budget

🌴 25 days holiday plus bank holidays

πŸ₯³ Your birthday off!

πŸš€ Potential to have real impact and accelerated career growth as a member of an international team that's building a transformative AI product.

We are on a mission to accelerate scientific breakthroughs for ALL humankind, and we are proud to be an equal opportunity employer. We welcome applications from all backgrounds and fairly consider qualified candidates without regard to race, ethnic or national origin, gender, gender identity or expression, sexual orientation, disability, neurodiversity, genetics, age, religion or belief, marital/civil partnership status, domestic / family status, veteran status or any other difference.Β 

Frequently Asked Questions

Is the salary disclosed for the Senior Security Engineer position at causaly?
The salary for this Senior Security Engineer role at causaly is not publicly listed. Click "Apply Now" to learn more about the compensation package on their official careers page.
Is the Senior Security Engineer job at causaly remote?
Yes, this Senior Security Engineer position at causaly is remote, with team members based in London. You can work from home or anywhere in the supported regions.
Is the Senior Security Engineer role at causaly full-time or part-time?
This is listed as a FullTime position. It is posted as a Senior Security Engineer role in the Technology department at causaly.
Which team or department does the Senior Security Engineer at causaly belong to?
This Senior Security Engineer position is part of the Technology department at causaly. See the full job description for more information about the team structure and responsibilities.
How do I apply for the Senior Security Engineer position at causaly?
Click the "Apply Now" button on this page. You will be redirected to causaly's official application portal hosted on ashby where you can submit your application directly.
When was the Senior Security Engineer job at causaly posted?
This Senior Security Engineer position at causaly was posted on Apr 28, 2026. Apply as soon as possible β€” early applications are often reviewed first.
Senior Security Engineer
causaly
Apply for this role β†—

You'll be redirected to causaly's official application page on Ashby ATS.