We put the power in your hands to buy, sell, and trade digital currency 🌏
M&A Collaboration, Security Platforms Engineer
Location
United Kingdom
Posted
1 day ago
Salary
0
Seniority
Senior
Job Description
M&A Collaboration, Security Platforms Engineer
Kraken Digital Asset Exchange
• Drive collaboration-platform integration end-to-end for each acquisition • Assess acquired-company collaboration stacks during and after diligence • Rationalize overlapping tools across brands • Build repeatable playbooks, tooling, and automation • Coordinate cutover timelines and TSA-driven dependencies • Own Google Workspace, Slack, and Zoom at multi-entity enterprise scale • Build and maintain integrations between collaboration tools and the broader identity and security stack • Define and enforce cross-brand platform governance standards • Collaborate with HRIS and IAM teams to manage clean onboarding and offboarding • Own email security infrastructure across brands • Manage a large, multi-registrar, multi-brand domain portfolio • Respond to phishing campaigns, insider threat signals, and anomalous domain activity • Lead legal hold management, eDiscovery queries, and data productions • Produce and defend evidence for regulatory and audit obligations • Design and maintain DLP rules, group access controls, and data access policies • Evaluate, onboard, consolidate, and sunset SaaS tools across the collaboration and security stack
Job Requirements
- 4–6 years of hands-on experience administering Google Workspace and Slack at companies with 1,000+ users
- Demonstrated experience owning or leading a technology migration in an M&A or systems-consolidation context, ideally more than one
- Solid email security experience: filtering, quarantine, DMARC/SPF/DKIM, impersonation defense, threat response
- DNS administration and domain portfolio management at meaningful scale
- Direct experience with compliance and legal workflows, legal holds, eDiscovery, regulatory data productions, and compliant archiving platforms
Benefits
- 25 days annual leave
- Private healthcare
- Pension scheme
- Flexible working hours
- Professional development opportunities
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
• The Marketing Lead for Network Security builds and articulates the messaging, positioning and uniqueness of Forcepoint Network Security security solutions • Drive overall go-to-market strategy, planning and execution for the Network Security product family in support of awareness, market-share and revenue growth objectives • Develop and implement high impact and differentiated positioning and messaging for Network Security across vertical and horizontal market segments • Apply generative AI tools when relevant while ensuring quality, accuracy and brand consistency • Develop high-impact sales tools such as white papers, presentations, case studies, business cases, TCO/ROI analysis, competitive profiles and sales playbooks for Network Security • Deliver product demonstrations of Network Security to varied constituents including sales, sales engineering, industry and financial analysts, industry analysts, customers and prospects, partners, and others • Develop and implement route-to-market plans for Network Security and partnerships • Provide direction and support to the Global Sales Enablement department to develop and deliver sales and channel training • Plan and execute selected product-related event marketing activities, including webinars, seminars, customer events, trade fairs or partner events
Principal Security Engineer – GRC Team Lead
SmartsheetFounded in 2005, Smartsheet offers collaborative work management and process automation to empower greater enterprise productivity. A leading cloud-based platfo
• Own the end-to-end GRC strategy and roadmap: Lead the planning and prioritization of GRC initiatives that drive compliance maturity, reduce audit risk, and improve operational efficiency. • Design and implement policy-as-code systems: Translate compliance frameworks (SOC 2, ISO 27001, FedRAMP, HIPAA) into enforceable code, leveraging Infrastructure-as-Code (Terraform, CloudFormation) and automated compliance validation. • Build custom control frameworks: Design Smartsheet-specific Unified Control Frameworks (UCF) and Secure Control Frameworks (SCF) that map to our cloud architecture, multi-framework requirements, and organizational risk appetite. • Lead full audit cycles: Manage preparation, execution, and resolution for SOC 2 Type II, ISO 27001, FedRAMP, and other certification audits. Own evidence gathering, audit readiness tracking, and post-audit remediation. • Architect GRC platform strategy: Evaluate, select, configure, and integrate GRC tooling (Vanta, Drata, or similar) with our cloud infrastructure, identity systems, ticketing systems, and CI/CD pipelines to enable continuous compliance monitoring. • Design automated evidence collection and validation: Build data pipelines and integrations that automatically collect compliance evidence from AWS, application logs, identity systems, and operational tools; validate accuracy and reduce manual verification. • Translate compliance requirements into technical implementations: Work with engineering and security teams to express policies and regulatory requirements in a way they can execute and monitor—breaking down silos between compliance and technical teams. • Establish risk management and governance processes: Design and operate risk registers, control effectiveness assessments, continuous monitoring workflows, and escalation processes that provide leadership with real-time visibility into compliance posture. • Build and lead the GRC team: Mentor and develop your team, establish technical and operational practices, define the playbooks for compliance execution, and create a culture of continuous improvement.
• Perform manual and automated testing of web applications, APIs, and mobile apps • Conduct network and cloud level assessments • Triage and validate reports from automated scanners • Perform initial prompt injection and jailbreak tests on AI prototypes • Draft high-quality reports detailing pathways to compromise • Manage and update testing infrastructure • Provide technical guidance to engineering teams • Design and lead multi-week Red Team operations • Build custom payloads and exploit development • Execute attacks against cloud services focusing on security configurations • Collaborate with SIRT and Detection Engineering
Security Engineer (Threat Detection & Response)
MastercardFounded in 1966, Mastercard is a worldwide transaction, payment-processing, and consulting company best known for its line of personal and business credit cards. As an employer, Ma
Our Purpose Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential. Title and Summary Security Engineer (Threat Detection & Response) Overview The Security Threat & Response Management (STRM) program within Mastercard's Corporate Security organization seeks a Security Engineer II for the Defend Product team to help execute our prevention-focused security control strategy. The ideal candidate will demonstrate initiative, strong analytical abilities, technical expertise in cybersecurity, and a proactive approach to problem-solving. This position is instrumental in defining and advancing the roadmap and strategy for the program's core security tools and defenses. We are seeking a technically skilled professional who actively tracks emerging security trends and threats, applies advanced knowledge of security technologies, and facilitates innovation to enhance resilience throughout our environments. Effective interaction with internal STRM teams and other groups inside and outside of Corporate Security is an essential aspect of this role. Strong documentation and communication skills with the ability to manage complex discussions are also required. Responsibilities• Implement the strategic technical roadmap for the 'Defend' product team as defined by the Defend Product Owner, which covers defensive security controls, platforms, capabilities and configurations across dozens of security tools and including EDR, DLP, Email Security, SIEM, SOAR, XDR, NGFW, UEBA, NDR, and more.• Contribute to and execute on the Defend roadmap by translating security strategy and requirements into well-defined technical initiatives and deliverables.• Act as a technical lead for the Defend feature team, helping prioritize work, sharing expertise with other engineers, and ensuring consistent engineering standards and outcomes.• Collaborate with stakeholders across engineering, endpoint, identity, cloud, and SecOps teams to implement and optimize security controls.• Translate security requirements, risk policies, and threat models into actionable engineering work items and backlog-ready initiatives.• Lead and participate in security capability assessments, providing recommendations to product and program leadership.• Configure, integrate, and optimize security tooling (e.g., EDR/XDR, NGFW, IDS, DLP, Application Control) in alignment with defined objectives and initiatives.• Monitor control effectiveness and participate in continuous tuning of policies and detections to reduce friction while increasing coverage and fidelity.• Ensure implementations align with internal security standards, regulatory requirements, and industry best practices. All About You The ideal candidate for this position should:• Bachelor's degree in computer science, Cybersecurity, Information Technology, Engineering, or a related field. • 2-3 years of hands-on experience in cybersecurity, security operations, incident response, detection engineering, threat hunting, or related security disciplines. • Be a hands-on Security Engineer with experience across multiple security domains and SecOps functions such as Security Operations, Security Engineering, Incident Response, Detection Engineering, Threat Hunting, and Insider Threat in a large, complex enterprise environment. • Have experience working within Agile or hybrid delivery models, contributing to backlog refinement, sprint execution, and cross-team coordination. • Be skilled at translating complex security requirements into clear, implementable technical designs and work items. • Be comfortable working directly with security tooling, including configuring access controls, tuning detections, integrating telemetry, and supporting detection lifecycles. • Demonstrate strong technical communication skills, with the ability to explain designs, trade-offs, and outcomes to both technical and non-technical stakeholders. Additional capabilities that will set you apart:• Experience implementing proactive security controls, working with modern security platforms, and tooling.• Hands-on experience integrating and operationalizing advanced threat intelligence within security tools, controls, and platforms.• Hands on experience with leveraging Agentic AI to modernize security operations.• Strong understanding of modern SecOps concepts such as attack surface reduction, response automation, posture management, zero trust, and cloud-native security.• Familiarity with common regulatory and security frameworks (e.g., NIST, ISO, MITRE ATT&CK, D3FEND, PCI).• Proven ability to collaborate effectively with SOC, IR, Engineering, and platform teams to deliver shared outcomes.• A mindset of continuous improvement, with a passion for optimizing security tooling and processes through engineering excellence.• Hands on experience with configuration and optimization of the Microsoft Security ecosystem of tools including XDR, Sentinel, Security Copilot, and Defender for Endpoint.• Security platform administration with experience in building, configuring, tuning, and optimizing security policies and controls. Corporate Security Responsibility All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must: - Abide by Mastercard's security policies and practices; - Ensure the confidentiality and integrity of the information being accessed; - Report any suspected information security violation or breach, and - Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.




