Rodeo
ResourcesPartnersSign in

CMC Markets

Security Platform Engineering Manager

London
Posted about 19 hours ago
Sign up to applySee more jobs like this

How your CV stacks up

1Upload CV
2Analyse CV
3Improve CV

Upload your CV to see how well it fits this job role

?%

Security Platform Engineering Manager

We are looking for a Security Platform Engineering Manager to define, build, and operate a portfolio of reusable security capabilities that can be consumed by engineering squads as part of our product delivery. This role will combine technical leadership with hands-on engineering, ensuring that security controls are delivered as code, embedded into infrastructure and CI/CD pipelines, and aligned to our AWS first, Terraform-led platform model.

We are looking to expand and mature further our Platform Engineering capabilities by introducing a Security Platform Engineering team, with a goal to make secure by default the best and easiest path for squads building customer-facing services. This team will engineer and operate reusable security capabilities as internal products, embedding security controls directly into infrastructure, CI/CD pipelines, and service templates. Working closely with Cloud Platform Engineering, Security Operations, and other engineering squads, the function will focus on reducing risk through automation, consistency, and developer experience.

The successful candidate will be responsible for shaping the roadmap, forming the team to deliver it, driving adoption across build and run squads, and ensuring that security becomes a scalable, automated, and measurable capability rather than a manual or reactive process.

Role and Responsibilities

  • Work with the Head of Cloud and security stakeholders to define the strategic direction and technical vision of security platform engineering at CMC
  • Build and lead a small team responsible for delivering security capabilities as reusable platform "products"
  • Own the roadmap and technical delivery of these capabilities across cloud infrastructure, CI/CD, IAM, application integration patterns, and more
  • Engage and collaborate with internal customers and understand up-and-coming use cases for the security platform
  • Deliver hands-on contributions to the platform; set technical standards and approach
  • Operate and support the security platform services with clear reliability expectations and continuous improvement
  • Drive measurable adoption of security platform services across engineering teams and report on coverage, risk reduction, and maturity
  • Stay up-to-date on industry trends and emerging technologies and incorporate them into the platform roadmap as necessary
  • Mentor and coach the team through pairing, feedback, and your behavior

Reasons to use Rodeo

I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?

Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.

Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.

Start with a chat, not a search bar

Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.

P

Graduate Consultant — 2026 Scheme

PwC·London, UK
£35,000/yr

Why you're a good match

Strong

Your economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.

See breakdown
Save jobNot relevant
View details

It searches the market for you

Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.

Why you're a good match

You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.

See breakdown
Strong

Experience fit

Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.

See breakdown
Strong

Only hits

No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.

Key Skills and Experience

Required:

  • Demonstrable experience in the following:
    • Securing cloud native workloads, ideally within AWS and serverless architectures
    • Managing services required to deliver secure applications such as firewalls, package management, and secrets management
    • Deep understanding of IAM, least privilege access design, and secure service-to-service communication patterns
    • Integrating security controls into CI/CD pipelines, preferably using GitHub Actions
    • Enforcing security standards on Infrastructure as Code (e.g., via Policy as Code)
    • Ability to translate regulatory or security policy requirements into practical, automated engineering controls
    • Leading team technical delivery in a cross-functional environment with multiple stakeholder groups
    • Building and operating security capabilities at scale to support product development

Get help with your application

Your very own career expert that helps elevate your application to the next level.

Get help applying for this job

Preferred:

  • Experience writing Terraform to configure and manage security tooling and services
  • Experience with GitHub Advanced Security features such as code scanning, dependency review, and secret scanning
  • Experience in developing hardened golden image pipelines for containers and virtual machines
  • Experience integrating Wiz or similar CNAPP tools into developer workflows
  • Experience delivering identity or access management capabilities as shared internal services
  • Experience operating in a Platform Engineering model supporting build and run squads in a regulated environment

CMC Markets is an equal opportunities employer and positively encourages applications from suitably qualified and eligible candidates regardless of gender, sexual orientation, marital or civil partner status, gender reassignment, race, color, nationality, ethnic or national origin, religion or belief, disability, or age.

Trusted by 25,000+ job seekers

“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”

Jessica, London

Get help applying for this job

Skills

Securing Cloud Native Workloads
Managing Services
Understanding IAM
Integrating Security Controls
Enforcing Security Standards
Translating Regulatory Requirements
Leading Team Technical Delivery
Building Security Capabilities

Location

London, England, United Kingdom

Sign up to applySee more jobs like this