• As a Security Engineer, you will help ensure TrustFlight’s aviation software and services are secure, resilient, and trustworthy as the company scales globally
• This is a hands-on role focused on building and validating security controls that work in practice, not just on paper
• You will report to the CIO and work closely with Platform, Infrastructure, and Application Engineering teams across multiple time zones
• Your work directly supports TrustFlight’s ability to meet regulatory, customer, and aviation-industry security expectations while enabling teams to move quickly and safely
• Design, implement, and own security solutions, controls, and supporting tools across the platform, infrastructure, and application security surfaces
• Define, implement, and continuously validate security controls, ensuring they are effective in real-world operation, not just on paper
• Take ownership of the Security Information and Event Management (SIEM) capability, ensuring effective security monitoring, investigation, and assurance
• Identify, assess, and prioritize security risks and control gaps, translating findings into concrete technical and operational improvements
• Leverage automation, including AI-assisted techniques where appropriate, to improve security monitoring, control validation, and the efficiency of assurance workflows
• Partner closely with platform, infrastructure, and application engineering teams to embed security into system design, delivery, and operations
• Ensure systems emit the right security-relevant telemetry to support detection, investigations, and evidence-based assurance
• Own the technical implementation of industry security frameworks and certifications (e.g. , ISO, SOC 2, CE+), ensuring standards are consistently upheld through practical engineering controls and verifiable evidence
• Support incident reviews and post-incident improvements with a focus on control effectiveness, prevention, and systemic improvement

Benefits

• Excellent holidays: We offer a generous holiday allowance to support your well-being — giving you the space to rest, recharge, and bring your best self to work. In addition, take your birthday off on us if you would like to celebrate!
• Healthcare cover for all: It is important to us that we all work in an environment that is supportive of health and wellbeing; healthcare cover for all our people protects your health, dental and ophthalmic requirements to support you physically and mentally.
• Training and development: Our personal training allowance allows everyone to enhance their skills and knowledge. The funds can be used towards attending a conference, joining a professional body, completing a course or purchasing online resources.
• Company pension: Our generous company contribution to your pension is greater than the local requirements and over time you can plan effectively for your future with our matching contribution scheme.- 3–5 years of relevant experience in security engineering, platform security, security assurance, or closely related roles
• A growth mindset: you are curious, continuously learning, and open to feedback and improvement
• Bachelor’s or Master’s degree in Computer Science, Software Engineering, Cybersecurity, Information Systems, or a related field, or equivalent practical experience
• Strong understanding of cloud and modern software architectures (e.g., Azure/GCP, containerized environments, CI/CD pipelines)
• Ability to assess security risk pragmatically and communicate findings clearly to both technical and non-technical stakeholders
• Hands-on experience implementing and operating security controls such as logging and monitoring, IAM, vulnerability management, and incident response tooling
• Working knowledge of security frameworks and standards (e.g., ISO 27001, SOC 2), with experience translating requirements into technical controls and evidence
• Comfortable working in a scaling, fast-moving environment with evolving systems and priorities
• Strong ownership mentality. You take responsibility for outcomes, not just tasks
• Practical experience with SIEM platforms and security telemetry (log sources, detection logic, alerting, and investigations)
• Experience using automation or AI-assisted security tooling to improve monitoring, investigations, or control assurance in regulated environments