Head of Security Engineering – Operations

Trainline

Head of Security Engineering & Operations leading security capabilities at Trainline. Collaborating with teams to ensure secure product delivery in a fast-paced environment.

Posted 5/1/2026full-timeLondon • 🇬🇧 United KingdomLead💰 £115,000 - £135,000 per yearWebsite

Tech Stack

Tools & technologies

AWSCloudGoogle Cloud PlatformMicroservices

About the role

Key responsibilities & impact

Define and execute the Security Engineering & Operations strategy, aligning with business and technology goals while fostering a culture of accountability, pragmatism, and continuous improvement.
Build, lead, and develop a high-performing, multidisciplinary team across Security Operations, Product Security, Cloud Security, and Identity & Access Management.
Oversee and mature security capabilities including detection and response, secure software development, cloud and infrastructure security, and identity lifecycle management, ensuring controls are scalable, automated, and developer-friendly.
Embed secure-by-design principles into product and platform development, partnering closely with engineering and product teams to balance risk with delivery speed.
Drive risk-based prioritisation in a fast-moving commercial environment, enabling teams to make informed trade-offs and deliver securely at pace.
Collaborate cross-functionally with Product, Engineering, Platform, Legal, and Compliance teams to meet regulatory, privacy, and security requirements.
Champion the secure adoption of AI technologies and leverage AI to enhance detection, response, and operational efficiency, ensuring appropriate governance and controls.
Own security incident response and resilience, including detection, response, recovery, and post-incident review processes.
Communicate clearly with senior leadership and stakeholders, translating complex security topics into actionable business insights and building strong organisational alignment.

Requirements

What you’ll need

Experience leading Security Engineering and/or Security Operations functions in fast-paced, product-led environments.
A strong technical background across security operations, product/application security, cloud security, and identity & access management.
Experience working within engineering-led and DevOps-focused organisations, embedding security into modern software development practices.
The ability to balance security, commercial priorities, and delivery pace.
A track record of building and scaling high-performing teams.
Experience partnering with Legal and Compliance teams on regulatory and privacy requirements.
Familiarity with modern cloud environments (e.g. AWS, GCP) and microservices architectures.
Experience applying or enabling AI within security contexts, with an understanding of associated risks and controls.
(Nice to have) Experience in high-scale consumer platforms, knowledge of frameworks such as ISO 27001 or NIST, or a background in automation and security tooling.

Benefits

Comp & perks

private healthcare & dental insurance
a generous work from abroad policy
2-for-1 share purchase plans
an EV Scheme to further reduce carbon emissions
extra festive time off
excellent family-friendly benefits
clear career paths
transparent pay bands
personal learning budgets
regular learning days

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

security engineeringsecurity operationscloud securityidentity and access managementsecure software developmentdetection and responseincident responseAI technologiesautomationmicroservices architecture

Soft Skills

leadershipcommunicationcollaborationaccountabilitypragmatismcontinuous improvementrisk managementorganizational alignmentteam buildingbalancing priorities