
Flo Health · London
500M+ downloads. 80M+ monthly users. A decade of building – and we’re still accelerating. Flo is the world’s #1 health & fitness app worldwide on a mission to ...
500M+ downloads. 80M+ monthly users. A decade of building – and we’re still accelerating.
Flo is the world’s #1 health & fitness app worldwide on a mission to build a better future for female health. Backed by a $200M
investment led by General Atlantic, we became the first product of our kind to reach a $1B valuation in 2024 – and we’re not
slowing down.
With 7M paid subscribers and the highest-rated experience in the App Store’s health category, we’ve spent 10 years earning trust
at scale. Now, we’re building the next generation of digital health – AI-powered, privacy-first, clinically backed – to help our
users know their body better.
The job
At Flo we don't just have users, we have a global community. We are the #1 women's health app, in the last month alone, we saw
8.6M new installs and a 2.8M increase in active users.
When millions of people trust you with their most personal health data, security isn't a feature — it's a foundation. We are
looking for a Cloud Security Engineer to join Velocity, our Internal Platform team. Your mission is to ensure that every system,
pipeline, and tool our engineers rely on is secure by default — so they can ship fast without ever compromising trust.
The Velocity team exists to eliminate friction. We build and own the foundation everything else runs on: cloud infrastructure,
developers and impossible to skip.
gates a thing of the past.
Security Hub, and SSM Patch Manager.
Copacetic, sign and verify images with Cosign/Sigstore, and enforce policies at admission with Kyverno.
standards are enforced programmatically.
like Databricks Dashboards or Looker.
Mode."
collaboration.
it's done securely.
production infrastructure at massive scale.
How we work
We’re a mission-led, product-driven team. We move fast, stay focused and take ownership – from brief to build to impact. Debate is
encouraged. Decisions are shared. We care about craft, ship with purpose, and always raise the bar.
You’ll be working with people who take their work seriously, not themselves. It takes commitment, resilience, and the drive to
keep going when things get tough. Because better health outcomes are worth it.
What you'll get
We support impact with meaningful reward. Here’s what that looks like:
Diversity, equity and inclusion
Our strength is in our differences. At Flo, hiring is based on merit, skill and what you bring to the role – nothing else. We’re
proud to be an equal opportunity employer, and we welcome applicants from all backgrounds, communities and identities. Read our
privacy notice for job applicants.
Qube Research & Technologies (QRT) is a global quantitative and systematic investment manager, operating in all liquid asset classes across the world. We are a technology and data driven group implementing a scientific approach to investing. Combining data, research, technology, and trading expertise has shaped our collaborative mindset, which enables us to solve the most complex challenges. QRT’s culture of innovation continuously drives our ambition to deliver high quality returns for our investors. The Security Assurance team is responsible for identifying, assessing, and validating security risks across QRT’s technology environment. The team works closely with Security Engineers, Software Engineers, Infrastructure Engineers, Cloud Engineers, and Technology stakeholders to evaluate the effectiveness of security controls and strengthen the firm's overall security posture through adversarial testing and assurance activities. Your Future Role within QRT You will: * Conduct internal penetration testing across a wide range of systems, including trading infrastructure, cloud platforms, APIs, and business applications in both Windows and Linux environments. * Perform red team-style assessments and adversarial simulations to identify weaknesses in detection, response, and resilience capabilities. * Design and execute security assurance strategies to validate the effectiveness of security controls across applications, infrastructure, and cloud environments. * Coordinate external penetration testing engagements with third-party security vendors, including scoping, execution oversight, validation of findings, and remediation tracking across cloud, infrastructure, and application environments. * Identify, exploit, and clearly document vulnerabilities, providing actionable remediation guidance tailored to engineering teams. * Collaborate with product security and development teams to ensure vulnerabilities are properly remediated. * Support threat modelling exercises by providing an attacker’s perspective on system design and architecture. * Develop and maintain tooling, scripts, and frameworks to automate testing and improve coverage of security assessments. * Contribute to continuous security testing within CI/CD pipelines, including validation of SAST/DAST findings and runtime security controls. * Conduct security reviews of internal and third-party systems, validating real-world exploitability of identified risks. * Provide mentorship and training to engineers on common attack vectors, exploitation techniques, and secure design principles. * Stay current with emerging threats, vulnerabilities, and offensive security techniques relevant to financial systems and low-latency environments. Your present skillset: * 5+ years of experience in penetration testing, red teaming, or security assurance roles, with hands-on experience testing complex, large-scale systems. * Strong practical knowledge of offensive security techniques, including web application, API, network, and cloud exploitation. * Solid understanding of system internals, networking, and common vulnerability classes, including OWASP Top 10, logic flaws, authentication and authorisation issues, and race conditions. * Familiarity with both Windows and Linux environments from an attacker’s perspective. * Experience using standard penetration testing tools such as Burp Suite, Metasploit, Nmap, BloodHound, and similar offensive security tooling. * Ability to assess the real-world impact of vulnerabilities and prioritise risks in a high-stakes environment. * Ability to clearly document findings, explain exploitability, and provide practical remediation guidance to engineering and infrastructure teams. * Strong communication skills, with the ability to clearly articulate technical risks and remediation strategies to engineering stakeholders. * Ability to operate independently, manage multiple assessments, and provide senior-level technical judgement during security assurance activities. * Preferred: * Experience testing applications and services developed in languages such as Python, C++, Rust, Go, and Kotlin/Java. * Experience with cloud security testing across AWS or Azure, including IAM, network configuration, storage, managed services, and common cloud misconfigurations. * Experience developing custom penetration testing tools, automation, scripts, exploits, or fuzzers. * Experience integrating security testing into CI/CD pipelines or supporting continuous assurance practices. * Understanding of detection and response mechanisms, with the ability to evaluate or bypass them during controlled testing. * Experience conducting red team exercises, adversary simulations, or purple team engagements. * Experience with containerised environments, Kubernetes, infrastructure-as-code, or hybrid cloud infrastructure. * Knowledge of low-latency systems, financial trading environments, or high-performance distributed systems. * Relevant certifications such as OSCP, OSEP, OSCE, CRTO, CCT APP, CCT INF, or equivalent practical experience. QRT is an equal opportunity employer. We value diversity as essential to our success and are committed to creating an environment where employees can work openly, respectfully, and collaboratively. In addition to supporting professional achievement, QRT offers initiatives and programmes designed to help employees maintain a healthy work-life balance.
ABOUT BARINGA Baringa is a global consulting firm that partners with leaders to drive change and create value. With deep industry expertise, and enabled by advanced technology, the firm helps clients to deliver with greater confidence and certainty. With over 2,000 people across the UK, Europe, North America, Asia and Australia, the firm combines global insight with local understanding. The firm works across energy and resources, financial services, government and public sector, consumer products and retail, pharmaceuticals and life sciences, manufacturing, and technology, media and telecoms, with capabilities spanning strategy, transformation and operational excellence – all powered by advanced technology, data, AI and digital innovation. Clients value Baringa’s collaborative approach and the way its teams integrate seamlessly – all working with a shared understanding of what matters most. The firm is known for its kind, curious experts who listen closely and care deeply about client success as they help clients transform energy markets, modernise financial platforms, expand telecoms and digital networks through advanced data analytics, enable digital services in government, and unlock growth in consumer sectors. Certified as a Great Place to Work around the world, Baringa has been recognised by the Financial Times in 22 categories of its UK Leading Management Consultants rankings, and by Forbes for four consecutive years as one of the World’s Best Management Consulting Firms. OUR TECHNOLOGY AND CYBER TEAM ARE LOOKING FOR AN EXPERIENCED SENIOR CYBER SECURITY ENGINEER TO JOIN THE TEAM. Baringa has grown so fast, and it continues to grow rapidly. Those new joiners keep on coming! We are a global function supporting the firm as it enters new markets. We are re-architecting and evolving our cloud-based business systems and infrastructure. We are on a mission to develop great technology products, deliver great services, and protect the trust our people and clients place in us. We have installed a new operating system for ourselves, and rebooted what was a corporate IT department into a corporate technology company, transforming the way we work. Now we are building for the next era of work. AI is becoming part of the fabric of how Baringa operates, and we are developing the products and platforms that will help colleagues find knowledge, act on insight, navigate complexity, and get work done with greater speed, quality, and confidence. Some of this will be visible through intelligent experiences and agentic systems. Some of it will sit beneath the surface: data products, workflow platforms, integrations, automations, cyber security, governance, and the architecture that makes all of it safe, scalable, resilient, and useful. So much to build on, so much to progress. So much to deliver. So much to play for! Do you know what though? We are going to do it. All of it and more. We have the support to drive change. We have the belief. We are going to do great things. Come and join us! WHAT YOU WILL BE DOING The Senior Cyber Security Engineer (Cyber Security) will be responsible for designing, implementing, reviewing and managing security measures to protect our Azure and M365 environments. The ideal candidate will have extensive Cloud Security experience and a proven track record in managing security measures to protect our Azure & M365 cloud infrastructure and data. This role requires a deep understanding of Azure and M365 security services, best practices, and will work closely with various stakeholders to ensure the security of our cloud infrastructure. * Design, implement and review security solutions for Azure and M365 environments. * Design, develop, maintain and assess security architecture artifacts (e.g., models, templates, standards, and procedures). * Oversee the development and implementation of security engineering best practices and standards. * Identify & implement automation opportunities, particularly across cloud provisioning, CI/CD pipelines, and policy enforcement. * Coordinate and manage Cyber engineering projects, ensuring timely delivery and quality. * Manage and prioritise an engineering backlog using Agile methodologies. * Maintain accurate documentation and team processes. WHAT ARE WE LOOKING FOR? We recruit individuals at all levels based on merit. Some of the key skills we are looking for: * Minimum of 5 years of experience in cyber security, with at least 3 years focused on cloud security. * Experience integrating security-as-code controls (e.g. policy-as-code, guardrails, or security scanning) into CI/CD pipelines using platforms such as Azure DevOps, GitHub, and Azure Policy, or equivalent technologies. * Proven experience designing and implementing security solutions with Azure and M365 security tools and technologies. * Strong understanding of security frameworks and standards (e.g., NIST, CIS, ISO 27001). * Familiarity with scripting and automation tools (e.g., PowerShell, Azure CLI, Azure Logic Apps). * Bachelor's degree in Computer Science, Information Technology, Cyber Security, or a related field. (Or equivalent experience) * Strong analytical and problem-solving skills. * Excellent communication and teamwork abilities. Relevant certifications such as: * Microsoft 365 Certified: Security Administrator Associate * Microsoft Certified: Cybersecurity Architect Expert certification * Certified Information Systems Security Professional (CISSP) * Certified Cloud Security Professional (CCSP) WHAT A CAREER AT BARINGA WILL GIVE YOU PUTTING PEOPLE FIRST. BARINGA IS A PEOPLE FIRST COMPANY AND WELLBEING IS AT THE FOREFRONT OF OUR CULTURE. WE RECOGNISE THE IMPORTANCE OF WORK-LIFE BALANCE AND FLEXIBLE WORKING AND PROVIDE OUR STAFF AMAZING BENEFITS. SOME OF THESE BENEFITS INCLUDE: * Generous Annual Leave Policy: We recognise everyone needs a well-deserved break. We provide our employees with 5 weeks of annual leave, fully available at the start of each year. In addition to this, we have introduced our 5-Year Recharge benefit which allows all employees an additional 2 weeks of paid leave after 5 years continuous service. * Flexible Working: We know that the ‘ideal’ work-life balance will vary from person to person and change at different stages of our working lives. To accommodate this, we have implemented a hybrid working policy and introduced more flexibility around taking unpaid leave. * Corporate Responsibility Days: Our world is important to us, so all our employees get 3 every year to help social and environmental causes and increase our impact on the communities that mean the most to us. * Wellbeing Fund: We want to encourage all employees to take charge and prioritise their own wellbeing. We’ve introduced our annual People Fund to support this by offering every individual a fund to support and manage their wellbeing through an activity of their choice. * Profit Share Scheme: All employees participate in the Baringa Group Profit Share Scheme so everyone has a stake in the company’s success. DIVERSITY AND INCLUSION We are proud to be an Equal Opportunity Employer. We believe that creating an environment where everyone feels a sense of belonging is central to our culture and that diversity is paramount to driving creativity, innovation, and value for our clients and for our people. AN AWARD-WINNING WORKPLACE You can be a part of our ‘Great Place to Work’ – with our commitment to women and well-being in the workplace for all. Click here to see some of our recent awards and how we’ve achieved this. USING BUSINESS AS A FORCE FOR GOOD. We maintain high standards of environmental performance and transparency, which can be seen through our commitment to Net Zero with our SBTI-verified Scope 1, 2 and 3 emissions reduction targets and our support of the Better Business Act. We report our progress publicly and ensure that we are also externally assessed and scored through organisations like CDP and EcoVadis - helping us to continually identify where we can improve. We have a long legacy of supporting the communities in which we work, and offer a variety of ways to contribute, by putting people first and creating impact that lasts. Our Corporate Social Responsibility (CSR) agenda is about giving back to the communities in which we live and work by sharing our skills, talent and time. In essence, we aim to empower and encourage everyone in the firm to contribute to the things we care about, and support registered charities and organisations with a clear social or environmental purpose to increase the positive impact they can have. JOIN US All applications received will be reviewed by a member of our Talent Acquisition team. We never rely solely on automated screening or AI tools to make hiring decisions. Your application will be considered for employment without regard to race, ethnicity, religion, gender, gender identity or expression, sexual orientation, nationality, disability, age, faith or social background. We do not filter applications by university background and encourage those who have taken alternative educational and career paths to apply. We would like to actively encourage applications from those who identify with less represented and minority groups. We operate an inclusive recruitment process, ensuring reasonable adjustments where needed. Please contact a member of our Recruitment Team to discuss further. BARINGA PRIVACY NOTICES For UK & EU Your personal data will be retained by Baringa for up to two years, in accordance with our UK Recruitment Privacy Notice / EU Recruitment Privacy Notice, to evaluate your application and meet our legal and reporting obligations. In line with the General Data Protection Regulation (GDPR), you have the right to request access to, rectification, or erasure (subject to legal limitations) of your personal data. For more information, please contact us at privacy@baringa.com For the USA Your personal data may be retained by Baringa for up to two years, as outlined in our Recruitment Privacy Notice (AMER & APAC), to support the recruitment process and internal reporting requirements. Where applicable, and in accordance with relevant federal and state laws, you may have the right to request access to or correction of your personal information. For further details, please contact privacy@baringa.com For Australia & Singapore Your personal data will be retained by Baringa for up to two years, in accordance with our Recruitment Privacy Notice (AMER & APAC), to assess your application and meet applicable reporting and legal obligations. In line with the Australian Privacy Act and Singapore’s Personal Data Protection Act (PDPA), you may have rights to access, correct, or request limited deletion of your personal data. For more information, please contact us at privacy@baringa.com
About Neo4j: Neo4j is the graph intelligence platform that transforms data into knowledge to power the next generation of intelligent applications and AI systems. It includes enterprise-ready knowledge graphs for accurate, explainable, and governed AI; the most comprehensive, trusted, and easy-to-deploy graph capabilities across any environment and data source; and an unmatched ecosystem trusted by 84 of the Fortune 100 and supported by the world’s largest graph community. Intelligence that works. Results that matter. Built to work everywhere and integrate with everything across every cloud for dynamic, personalized, and autonomous AI systems. We deliver quicker results, contextual knowledge, and solutions that impact customers and employees across the business. Our Vision: At Neo4j, we have always strived to help the world make sense of data. As business, society and knowledge become increasingly connected, our technology promotes innovation by helping organizations to find and understand data relationships. We created, drive and lead the graph database category, and we’re disrupting how organizations leverage their data to innovate and stay competitive. The Team: Cloud environments are used at Neo4j to perform pre-sales, proof-of-concept, and solution engineering activities with minimal oversight by IT or Security. This role, which resides in IT, will help conceptualize the requisite activities and carve a path toward effective and responsible management of these environments. Some examples of work you’ve performed aligned with these types of activities could be related to finance (budgeting, cost allocation, right-sizing environments) cloud maturity (IaC, naming conventions, tagging initiatives) security (CPSM, asset management, vulnerability) or automation (service catalogs, provisioning, secure configurations). With the correct guidance and prioritization from you, we seek to accomplish wins for management and security while enabling engineers to work faster and more securely than they do today. This role is global and will work across the organization. The Role: * Provide technical leadership through mentorship, documentation, reporting, and knowledge-sharing best practices to peers within IT and consumers of cloud infrastructure. * Play a crucial role in defining and delivering on the roadmap for cloud infrastructure. * Work with the security team to ensure alignment with their vision of cloud management, including compliance. * Liaise with Engineering teams on their use and management of cloud infrastructure to find synergies. * Operationalize the security, management and monitoring of cloud infrastructure. * Take on the Subject Matter Expert (SME) role for cloud in IT and continue to develop broad and deep understanding where opportunities may exist or when new offerings come to market. QUALIFICATIONS: * Bachelor’s degree (or greater) in Computer Science, Information Technology, or a related field. * Proven experience as a Cloud Engineer with in-depth knowledge of at least two of; AWS, GCP, and Azure. * Strong understanding of cloud security best practices and compliance standards. * Experience in designing and implementing cost-effective solutions in cloud environments. * Proficient in troubleshooting and resolving cloud-related issues. * Excellent communication and collaboration skills. PREFERRED SKILLS: * Experience leading company-wide cloud initiatives. * Cloud certifications from AWS, GCP, and Azure. * Experience with DevOps practices and tools including Infrastructure as Code (IaC) solutions. * Familiarity with containerization technologies (e.g., Docker, Kubernetes). * Scripting and automation skills (e.g., Java, Python, Golang, PowerShell). #LI-Hybrid Why Join Neo4j? Neo4j is, without question, the most popular graph intelligence platform in the world. We have customers in every industry globally, and our products are a proven product/market fit. Joining our team is an opportunity to shape the future of data and analytics. Below are just a few exciting facts about Neo4j. * Neo4j is one of the fastest-scaling technology companies in this industry. It recently surpassed $200M in annual recurring revenue (ARR), doubling its ARR over the past three years. * Raised the biggest funding round in database history ($325M Series F). Backed by world-class investors like Eurazeo, GV (formerly Google Ventures), and Inovia Capital, Neo4j has raised over $600M in funding and is currently valued at over $2Bn. This puts Neo4j among the most well-funded database companies in history. * 84% of the Fortune 100 and 58% of the Fortune 500 use Neo4j. Examples include Boston Scientific, BT Group, Caterpillar, Cisco, Comcast, Department for Education UK, eBay, NBC News, Novo Nordisk, Worldline, and others. * Co-founder and CEO Emil Eifrem has built an amazing culture that prides itself on relationships, inclusiveness, innovation, and customer success. * Countless industry awards. Massive enterprises and individual developers/data scientists love Neo4j. A strong sense of community and ecosystem is built around the platform. * A recent Forrester Total Economic Impact™ Study cited Neo4j as delivering 417% ROI to customers. Research shows that members of underrepresented communities are less likely to apply for jobs when they don’t meet all the qualifications. If this is part of the reason you hesitate to apply, we’d encourage you to reconsider and give us the opportunity to review your application. At Neo4j, we are committed to building awareness and helping to improve these issues. One of our central objectives is to provide an inclusive, diverse, and equitable workplace for everyone to develop their potential and have a positive, career-defining experience. We look forward to receiving your application. Neo4j Values: Neo4j is a Silicon Valley company with a Swedish soul. We foster collaboration and each of us is empowered to contribute and put our innovative stamp on projects. We hire candidates who reflect the following Neo4j core values: (we)-[:VALUE]->(relationships) (we)-[:FOCUS_ON]->(userSuccess) (we)-[:THRIVE_IN]->(:Culture {type: [‘Open’, ‘Inclusive’]}) (we)-[:ASSUME]->(:Intent {direction:’Positive’}) (we)-[:WELCOME]->(:Discussions {nature: ‘IntellectuallyHonest’}) (we)-[:DELIVER_ON]->(ourCommitments) Neo4j is committed to protecting and respecting your privacy. Please read the privacy notice regarding Neo4j's recruitment process to understand how we will handle the personal data that you provide. More information at www.neo4j.com. ©2026 Neo4j, Inc., Neo Technology®, Neo4j®, Cypher®, Neo4j Bloom™, Neo4j Graph Data Science Library™, Neo4j® Aura™, and Neo4j® AuraDB™ are registered trademarks or a trademark of Neo4j, Inc. All other marks are owned by their respective companies.