Causaly
Causaly

Senior Security Engineer

TLDR

Own end-to-end vulnerability management and guide secure design across cloud, containers, and CI/CD, acting as security advisor to engineering and product teams.

About us:

Causaly is redefining how humans acquire knowledge and develop insights in biomedicine. Our AI-powered platform enables researchers and decision-makers to discover and interpret evidence from millions of scientific publications, clinical trials, regulatory documents, and other complex data sources in minutes.

We are building the world’s most advanced biomedical knowledge platform, powered by a high-precision Knowledge Graph and GenAI capabilities. Our technology is already used by leading biopharmaceutical organizations to accelerate drug discovery, improve safety, and drive better decision-making.

Backed by top-tier investors including ICONIQ, Index Ventures, Pentech, and Marathon, we are scaling rapidly and expanding our product suite and market presence. 

About the Role

We are looking for a Senior or Staff Security Engineer to join our security team and own our vulnerability management program, collaborate with several Engineering and Product teams as a Security advisor and support SecOps. You will operate with a high degree of autonomy — defining strategy, building processes, and acting as a trusted security advisor to our engineering organisation.

What You'll Do

  • Own the vulnerability management program end-to-end: strategy, tooling, prioritisation, and remediation tracking across dependencies, containers, and cloud environments.

  • Define and maintain a dependency security strategy, including policies for third-party library adoption and update cadence.

  • Integrate and maintain security tooling in CI/CD pipelines (SAST, SCA, secrets detection, container scanning).

  • Act as a security consultant to product and engineering squads — supporting design reviews, architecture decisions, and secure coding practices.

  • Define and maintain security standards and guidelines practical for development teams.

  • Manage and continuously improve the Security Champions program — growing security awareness and capability across engineering teams.

  • Support SecOps in incident triage and response, contributing security engineering context where needed.

Requirements

  • Strong knowledge of cloud security — IAM, network security, secure configuration best practices.

  • Hands-on experience with security tooling in CI/CD pipelines (SAST, SCA, secrets scanning, container scanning).

  • Proven experience in a vulnerability management role, through the entire lifecycle.

  • Passionate and knowledgeable about using LLMs for building robust security practices, including triage, secure code review, threat analysis and tooling

  • In-depth knowledge of secure coding practices in Node.js, TypeScript, Python, and/or React.

  • Familiarity with security frameworks and standards (e.g. OWASP, NIST, CIS Benchmarks).

  • Strong communication skills, with the ability to translate risk for both technical and non-technical audiences.

Nice to Have

  • Experience with Semgrep for static analysis and custom rule authoring.

  • Experience with Wiz for cloud security posture management.

  • Experience running or contributing to a Security Champions program.

  • Experience with threat modelling (e.g. STRIDE).

  • Familiarity with SOC 2 and ISO 27001.

  • Relevant certifications are considered a plus (e.g. CISSP, IaaS specific certifications, etc..).

Benefits UK:

💰 Competitive compensation package

🩺 Private medical insurance

🦷 Private dental insurance

📔 Life insurance (4 x salary)

🤓 Personal development budget

🧘 Individual wellbeing budget

🌴 25 days holiday plus bank holidays

🥳 Your birthday off!

🚀 Potential to have real impact and accelerated career growth as a member of an international team that's building a transformative AI product.

We are on a mission to accelerate scientific breakthroughs for ALL humankind, and we are proud to be an equal opportunity employer. We welcome applications from all backgrounds and fairly consider qualified candidates without regard to race, ethnic or national origin, gender, gender identity or expression, sexual orientation, disability, neurodiversity, genetics, age, religion or belief, marital/civil partnership status, domestic / family status, veteran status or any other difference. 

Benefits

Equity Compensation

💰 Competitive compensation package

Health Insurance

🦷 Private dental insurance

Learning Budget

🤓 Personal development budget

career growth and impact

🚀 Potential to have real impact and accelerated career growth as a member of an international team that's building a transformative AI product.

Paid Time Off

🥳 Your birthday off!

Wellness Stipend

🧘 Individual wellbeing budget

Causaly is an AI-powered platform transforming how researchers and decision-makers in biomedicine acquire knowledge and insights. By enabling rapid discovery and interpretation of evidence from millions of scientific publications and clinical trials, it empowers biopharmaceutical organizations to enhance drug discovery and improve decision-making.

View company profile
Apply for this job

Pro members saw this job first

New jobs unlock for everyone after 24 hours. Startup Jobs Pro shows them right away, with instant alerts and salary filters. From $7/month.

Get Pro