Principal Platform Security Engineer - Hiscox

Key Responsibilities

• Define and evolve platform security strategy, ensuring alignment with cloud‑first and secure‑by‑design principles.
• Lead security initiatives across multiple Innovation squads and Engineering Chapters, providing mentorship and hands‑on guidance.
• Architect and implement security controls in AWS, Kubernetes, and Terraform, integrating them into CI/CD pipelines.
• Conduct threat modeling, risk assessments, and penetration testing to identify and remediate vulnerabilities.
• Collaborate with Platform, DevOps, and Site Reliability teams to embed security into the entire delivery lifecycle.

Requirements

• 10+ years of experience in platform engineering with a strong focus on security.
• Proficiency in Python, Node.js, AWS, Kubernetes, Terraform, and CI/CD tooling.
• Deep understanding of cloud security best practices, IAM, network segmentation, and compliance frameworks.
• Excellent communication skills and a proven ability to influence cross‑functional teams.
• Experience with threat modeling, vulnerability management, and incident response.