Thought Machine
Fintech
SecurityControlEngineer
Neural analysis suggests this role is
optimal for Mid candidates.
“Security Control Engineer at Thought Machine. Skills: Security controls, Risk assessment, Cloud security. Participate in technical and operational design of capabilities. Mitigate security and business continuity risks”
What You'll Achieve.
Mitigate risks to acceptable levels; Remain at the forefront of industry best practices; Build world-class technologies
Industry & Context.
Reason about complex security problems in distributed computing environments; Effectively communicate trade-offs from one security approach to the next
Requiring four days a week onsite
What They're Looking For.
Must Have
Technical experience with designing and applying security controls and capabilities to cloud-based infrastructure (e.g. AWS, GCP) and applications, Experience in working directly with software engineering teams in designing new capabilities, controls, and procedures, Technical background, with experience in distributed systems, cloud security, and related technologies, Knowledge of threat modelling for the purposes of understanding threat probabilities and frequency, Excellent communication skills with an ability to translate technical and security jargon into business-relevant insights, Ability to liaise effectively with other departments and external stakeholders
Nice to Have
Experience in a fast-paced tech environment or fintech sector, Knowledge of container security, Kubernetes, Kafka, and other emergent technologies, Experience with control automation via code (e.g. Python, Go), Hands-on experience with obtaining and maintaining a security certification such as SOC 2, ISO 27001, PCI-DSS, Proficiency in leading security risk assessments, preferably with knowledge of the FAIR framework
What You'll Do.
Participate in technical and operational design of capabilities
Mitigate security and business continuity risks
Provide domain expertise in product and cloud security
and maintaining certifications
and procedures for regimens
Spearhead security risk assessments
and updating of security policies
Provide expert insights to clients and prospects
How You'll Work.
Team & Collaboration
Collaborate on technical design of controls and capabilities; Collaborate with every team across the company; Work directly with software engineering teams; Liaise effectively with other departments and external stakeholders
Communication Scope
Translate technical and security jargon into business-relevant insights; Liaise effectively with other departments and external stakeholders
Full Job Description
Thought Machine's mission is bold – to properly and permanently rid the world's banks of legacy technology. To achieve this, we have developed the foundations of modern banking through core and payments technology which run natively in the cloud. What we are attempting is hard and means we need great people working together to build great technology. We have grown rapidly in the past few years – growing our team to more than 550 individuals across offices in London, New York, Singapore, Sydney and our newly established Engineering Hub in Lisbon. We have raised more than £500m in funding and our investors include Molten Ventures, Eurazeo, Intesa Sanpaolo, Temasek, Nyca Partners, JPMorgan Chase Strategic Investments, Standard Chartered Ventures, and more. We have created a culture that enables our team to produce the best work in the industry while ensuring we have fun along the way. We're regularly cited as having a fantastic workplace culture and have been recognised by Sifted magazine as having one of the highest Glassdoor ratings for a UK fintech company and the industry's most generous employee share package. Named one of the world's most innovative fintechs by Global Finance Magazine, we were also recognised by the Financial Times as one of Europe's fastest-growing companies for two consecutive years—and a UK Best Employer for 2026. This is a full-time, permanent position based in our Lisbon office, requiring four days a week onsite. Thought Machine is in search of a Security Engineer with experience in evaluating threats and risks in an organisation, evaluating control requirements, and collaborating on technical and operational solutions to address them. Thought Machine prides itself in being an engineering-led company and as such, the candidate should have a technical security background; they should be able to reason about complex security problems in distributed computing environments and be able to effectively communicate trade-offs from one security appro
Applying for this Security Control Engineer role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Ashby
- Ashby is a fast modern ATS — most applications take under 3 minutes.
- The resume parser is strong; verify parsed experience dates and job titles.
- Custom screening questions are often scored algorithmically — answer completely.
- Location field affects geo-based screening; use your actual metro area.
ANONYMOUS · UNFILTERED
What do employees actually say about Thought Machine?
Real rants from real employees. Read before you apply.