Starling Bank

Cloud Security Engineer – Automation & Tooling

Starling Bank

full-time

Posted on:

Location Type: Hybrid

Location: LondonUnited Kingdom

Visit company website

Explore more

AI Apply
Apply

Tech Stack

AWSCloudGoGoogle Cloud PlatformKubernetesMicroservicesTerraform

About the role

  • Engineering Security Tooling: Lead the design and maintenance of our internal security tool suite, written primarily in Go, to automate evidence collection and real-time remediation of security alerts.
  • Infrastructure as Code: Write and peer-review Terraform and custom providers to manage identity and core infrastructure across AWS and GCP.
  • Supply Chain Security: Build automated systems to manage container provenance and integrate security analysis into our CI/CD pipelines (GitHub Actions/TeamCity).
  • Cloud Native Defense: Engineer Kubernetes security solutions leveraging Cilium, eBPF, and custom controllers to protect our microservices.
  • Cryptographic Engineering (PKI): Build and maintain our Go-based Certificate Authority (CA) tooling and internal PKI infrastructure.
  • Incident Response: Support the team in automated incident response, building the tools that help us investigate and mitigate threats faster.

Requirements

  • Go Specialist: You are proficient in Go. You understand its concurrency models, testing patterns, and how to build idiomatic, performant services.
  • The Builder Mindset: You find manual work a personal affront. If a task needs to be done twice, you’ve already started planning the automation for it.
  • Cloud Native: Practical experience with AWS or GCP, ideally managed through Terraform.
  • Container Expertise: You understand Kubernetes internals—from the runtime security to the service mesh.
  • Identity & Networking: Strong understanding of cloud identity models and network protocols.
  • What skills are desirable:
  • Experience with Cilium or eBPF-based security monitoring.
  • Knowledge of Sigstore/Cosign, image provenance, and SBOMs.
  • Familiarity with hardware security modules (HSMs) or advanced cryptography.
  • Cloud-native security certifications (AWS/GCP).
Benefits
  • 33 days holiday (including public holidays, which you can take when it works best for you)
  • An extra day’s holiday for your birthday
  • Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off
  • 16 hours paid volunteering time a year
  • Salary sacrifice, company enhanced pension scheme
  • Life insurance at 4x your salary & group income protection
  • Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton
  • Generous family-friendly policies
  • Incentives refer a friend scheme
  • Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks
  • Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
GoTerraformAWSGCPKubernetesCiliumeBPFCI/CDGitHub ActionsTeamCity
Soft Skills
automation mindsetproblem-solvingincident responsecollaborationleadership
Certifications
cloud-native security certificationsAWS certificationGCP certification