Rodeo
ResourcesPartnersSign in

Flo Health Inc.

Cloud Security Engineer

London
Posted about 21 hours ago
Sign up to applySee more jobs like this

How your CV stacks up

1Upload CV
2Analyse CV
3Improve CV

Upload your CV to see how well it fits this job role

?%

500M+ downloads. 80M+ monthly users. A decade of building – and we’re still accelerating.

Flo is the world’s #1 health & fitness app worldwide on a mission to build a better future for female health. Backed by a $200M investment led by General Atlantic, we became the first product of our kind to reach a $1B valuation in 2024 – and we’re not slowing down.

With 7M paid subscribers and the highest-rated experience in the App Store’s health category, we’ve spent 10 years earning trust at scale. Now, we’re building the next generation of digital health – AI-powered, privacy-first, clinically backed – to help our users know their body better.

The Job

The Scale of the Challenge

At Flo we don't just have users, we have a global community. We are the #1 women's health app, in the last month alone, we saw 8.6M new installs and a 2.8M increase in active users.

When millions of people trust you with their most personal health data, security isn't a feature — it's a foundation. We are looking for a Cloud Security Engineer to join Velocity, our Internal Platform team. Your mission is to ensure that every system, pipeline, and tool our engineers rely on is secure by default — so they can ship fast without ever compromising trust.

The Mission: Velocity

The Velocity team exists to eliminate friction. We build and own the foundation everything else runs on: cloud infrastructure, developer tooling, and SRE practices. You will:

  • Embed Security Into the Platform: Bake security, compliance, and best practices into the core stack so they're invisible to developers and impossible to skip.
  • Automate Everything: Drive security-as-code across infrastructure, CI/CD pipelines, and container lifecycles — making manual gates a thing of the past.

What You Will Do

  • Cloud Security Posture: Own and continuously strengthen Flo's AWS security posture using tools like GuardDuty, Inspector, Security Hub, and SSM Patch Manager.
  • Container & Supply Chain Security: Harden container image security end-to-end — patch vulnerabilities automatically with Copacetic, sign and verify images with Cosign/Sigstore, and enforce policies at admission with Kyverno.
  • Policy as Code: Manage CI/CD security across the organisation using policy-as-code tooling (Kyverno, Checkov), ensuring standards are enforced programmatically.
  • Security Observability: Build visibility into security performance by measuring and visualising actionable metrics using tools like Databricks Dashboards or Looker.
  • High-Scale Privacy: Support the infrastructure for industry-leading privacy features, such as our TIME-recognised "Anonymous Mode."
  • Culture & Thought Leadership: Shape Flo's broader security culture through proactive engagement, documentation, and cross-team collaboration.

Reasons to use Rodeo

I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?

Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.

Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.

Start with a chat, not a search bar

Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.

P

Graduate Consultant — 2026 Scheme

PwC·London, UK
£35,000/yr

Why you're a good match

Strong

Your economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.

See breakdown
Save jobNot relevant
View details

It searches the market for you

Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.

Why you're a good match

You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.

See breakdown
Strong

Experience fit

Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.

See breakdown
Strong

Only hits

No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.

What You Bring

  • Experience: 7+ years in Infrastructure Security, Cloud Security, or Security Engineering roles.
  • Cloud Native Mastery: Deep expertise in AWS security services and best practices is essential.
  • Infrastructure as Code: Proficient in Terraform and Terragrunt — you run everything as code.
  • Container Security: Strong knowledge of Kubernetes security, image hardening, and admission control.
  • Identity & Access: Solid understanding of identity management principles — SSO, OAuth, JWT, SAML.
  • Automation Mindset: Comfortable scripting in Python, Bash, or similar to automate security workflows.
  • Network Security: Understanding of modern network security principles and their practical application.
  • SSDLC: Experience building Secure Software Development Lifecycle phases into engineering workflows.

Bonus Points

  • Experience with security monitoring and event correlation systems (IDS/IPS, SIEM, AWS-native tooling).
  • Knowledge of Zero Trust Architecture and its implementations (e.g., Cloudflare).
  • Familiarity with secret management processes and tools.
  • Experience in multi-cloud environments (AWS and preferably GCP).
  • Understanding of business continuity principles (BIA, DRP).
  • Professional accreditations such as AWS Security Specialty, CKS, or CISSP.

Get help with your application

Your very own career expert that helps elevate your application to the next level.

Get help applying for this job

Why Join Flo?

  • High Impact: Your work directly protects the health data of millions - Flo is rewriting women's health, and you'll make sure it's done securely.
  • Autonomy: We hire experts and empower you to deliver.
  • Cutting-Edge Stack: Work with modern security tooling (GuardDuty, Kyverno, Cosign, Elastic Cloud Security) deployed on real production infrastructure at massive scale.

How We Work

We’re a mission-led, product-driven team. We move fast, stay focused and take ownership – from brief to build to impact. Debate is encouraged. Decisions are shared. We care about craft, ship with purpose, and always raise the bar.

You’ll be working with people who take their work seriously, not themselves. It takes commitment, resilience, and the drive to keep going when things get tough. Because better health outcomes are worth it.

What You'll Get

We support impact with meaningful reward. Here’s what that looks like:

  • Competitive salary and annual reviews
  • Opportunity to participate in Flo’s performance incentive scheme
  • Paid holiday, sick leave, and female health leave
  • Enhanced parental leave and pay for maternity, paternity, same-sex and adoptive parents
  • Accelerated professional growth through world-changing work and learning support
  • In-person collaboration and work in a hybrid model, with 3 days per week spent in the office
  • 5-week fully paid sabbatical at 5-year Floversary
  • Flo Premium for friends & family, plus more health, pension and wellbeing perks

Diversity, Equity and Inclusion

Our strength is in our differences. At Flo, hiring is based on merit, skill and what you bring to the role – nothing else. We’re proud to be an equal opportunity employer, and we welcome applicants from all backgrounds, communities and identities. Read our privacy notice for job applicants.

Trusted by 25,000+ job seekers

“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”

Jessica, London

Get help applying for this job

Skills

Cloud Security
AWS Security
Infrastructure as Code
Terraform
Kubernetes Security
Image Hardening
Identity Management
Automation
Network Security
Secure Software Development Lifecycle
Security Monitoring
Zero Trust Architecture
Secret Management
Multi-Cloud Environments
Business Continuity
Professional Accreditations

Location

London, England, United Kingdom

Sign up to applySee more jobs like this