Deliveroo

Staff Security Engineer

Deliveroo2 weeks ago
Location

London - The River Building HQ

Type

Full Time

Salary

GBP 120,000 – 180,000

Level

Staff

Role

Security Engineer

Posted

Feb 25, 2026

Full TimeStaff

The role

Summary

Staff Security Engineer role at Deliveroo focusing on enterprise security architecture, leading long-term technical strategy for corporate security systems, and implementing Zero Trust frameworks. The position requires 8+ years of security engineering experience with expertise in IAM, endpoint security, SASE/ZTNA solutions, and infrastructure-as-code.

What you'll do

Technical Vision & Strategy: Define and own the long-term technical roadmap for corporate security architecture, transitioning legacy systems to modern Zero Trust frameworks
Identity & Access Management Leadership: Serve as focal point for IAM engineering best practices, developing resilient identity controls across enterprise ecosystems
Endpoint Security Architecture: Design fleet security strategy for thousands of devices, engineering integrations between MDM platforms and EDR/XDR solutions
Network & SASE Implementation: Lead global deployment of Secure Access Service Edge and Zero Trust Network Access solutions for distributed workforce connectivity
Security Operations Engineering: Build high-signal threat detection pipelines and architect security data lake with SIEM/SOAR automation capabilities
Cloud & SaaS Security Management: Secure internal cloud infrastructure and implement SaaS Security Posture Management tools for third-party app monitoring
Infrastructure as Code Development: Build custom automation using Python, Go, and IaC tools where commercial solutions are insufficient
Technical Leadership & Mentorship: Sponsor and mentor senior engineers, establish technical standards, and lead architecture reviews across security organization

What we look for

Technical

Security Engineering Experience8+ years of hands-on experience in Security Engineering, Corporate Security, or Architecture roles
Staff-Level Project LeadershipProven track record of operating at Staff/Principal level leading multi-quarter, cross-functional engineering projects
IAM Architecture ExpertiseExpert-level understanding of Identity and Access Management architecture, modern authentication standards, and Zero Trust principles
SASE/ZTNA ImplementationDeep technical experience designing and deploying Secure Access Service Edge and Zero Trust Network Access solutions at scale
Programming ProficiencyAdvanced proficiency in Python or Go programming languages for security automation development
Infrastructure as CodeExtensive experience with Infrastructure as Code tools including Terraform and Pulumi for automated deployments
Executive CommunicationStrong executive communication skills with ability to justify technical decisions and budget requests to non-technical leadership

Education

Bachelor's DegreeBachelor's degree in Computer Science, Cybersecurity, Information Technology, or equivalent practical experience

Experience

Minimum Experience8+ years of hands-on experience in Security Engineering, Corporate Security, or Architecture roles
Preferred Experience10+ years of overarching cybersecurity experience in high-growth or complex enterprise environments
M&A Integration ExperienceExperience managing technical integration of corporate security systems during Mergers & Acquisitions (preferred)
OS Internals KnowledgeDeep understanding of macOS, Windows, and Linux operating system internals for advanced endpoint threat detection (preferred)
Large-Scale Data ProcessingExperience designing centralized logging and threat detection pipelines handling massive data volumes (preferred)

Skills

Required skills

Identity and Access ManagementExpert-level IAM architecture design and implementation across enterprise environments
Zero Trust ArchitectureDeep understanding of Zero Trust principles and modern authentication frameworks
Endpoint Security PlatformsAdvanced knowledge of EDR/XDR platforms including CrowdStrike, SentinelOne, and Microsoft Defender
Mobile Device ManagementExpertise in MDM solutions including Jamf Pro, Microsoft Intune, and Workspace ONE
SASE/ZTNA SolutionsHands-on experience with Zscaler, Palo Alto Prisma Access, Cloudflare One, and Tailscale
Python ProgrammingAdvanced proficiency in Python for security automation and custom tooling development
Infrastructure as CodeExtensive experience with Terraform and Pulumi for automated security infrastructure deployment
SIEM/SOAR PlatformsTechnical expertise in Splunk, Panther, Elastic Security, Tines, and Torq for security operations
Cloud SecurityDeep knowledge of AWS, GCP, and Azure security services and architecture
Technical LeadershipProven ability to lead cross-functional engineering projects and mentor senior engineers

Nice to have

Go ProgrammingProficiency in Go language for high-performance security tooling development
Operating System InternalsDeep understanding of macOS, Windows, and Linux internals for advanced threat detection
M&A Security IntegrationExperience managing security system integration during mergers and acquisitions
Large-Scale Data ProcessingExperience with massive security data volumes using Snowflake and similar platforms
Advanced Security CertificationsCISSP-ISSAP, GIAC Enterprise Defender, or equivalent architectural security certifications
SaaS Security Posture ManagementKnowledge of SSPM tools for third-party application security monitoring
Threat Detection EngineeringAdvanced skills in building custom threat detection pipelines and security data lakes
Executive Stakeholder ManagementExperience presenting to C-level executives and managing technical budget decisions

Compensation & benefits

Salary

GBP 120,000 – 180,000 (annual)

Stock options

Available

Benefits

Healthcare Coverage

Comprehensive healthcare benefits including medical, dental, and vision coverage

Well-being Support

Mental health resources, wellness programs, and employee assistance programs

Parental Leave

Generous parental leave policies for new parents including maternity, paternity, and adoption leave

Pension Contributions

Company pension scheme with employer contributions for retirement planning

Annual Leave Allowance

Generous annual leave entitlement with additional time off for charitable work

Charitable Time Off

Dedicated time off to support charitable causes of personal choice

Professional Development

Training budget for security certifications, conferences, and skill development

Flexible Working

Hybrid working arrangements with modern office facilities at The River Building HQ in London

Interview process

  1. 1
    Application Review Initial screening of application materials, technical background, and security engineering experience
  2. 2
    Technical Recruiter Screen 30-minute phone/video call discussing role expectations, compensation, and basic technical background
  3. 3
    Hiring Manager Interview 60-minute interview with Security Engineering leadership covering technical architecture experience and leadership approach
  4. 4
    Technical Architecture Deep Dive 90-minute technical interview focusing on enterprise security architecture, Zero Trust design, and hands-on experience with security platforms
  5. 5
    System Design Interview 75-minute session designing a complex corporate security architecture covering IAM, endpoint security, and SASE implementation
  6. 6
    Behavioral & Leadership Interview 45-minute interview with cross-functional partners assessing leadership style, mentorship capabilities, and cultural fit
  7. 7
    Executive Interview 30-minute final interview with senior leadership discussing strategic vision and alignment with business objectives
  8. 8
    Reference Checks Professional reference verification focusing on technical leadership and security engineering accomplishments
Apply for this position

You'll be redirected to the company's application page

Deliveroo

Deliveroo

View all jobs

Deliveroo is a British multinational online food delivery company operating a platform for ordering from restaurants and grocers.

London, England, United KingdomFounded 2013deliveroo.co.uk

Tech Stack

Languages
PythonGo
Frameworks
Zero Trust Network Access (ZTNA)Secure Access Service Edge (SASE)
Databases
Security Data LakeSnowflake
Tools
TerraformPulumiCrowdStrikeSentinelOneMicrosoft DefenderJamf ProMicrosoft IntuneWorkspace ONEZscalerPalo Alto Prisma AccessCloudflare OneTailscaleSplunkPantherElastic SecurityTinesTorq
Other
AWSGCPAzureIdentity Providers (IdP)SaaS Security Posture Management (SSPM)

Interview Guides

12 guides available for Deliveroo

Apply Now

On this page