
commercetools · London
ABOUT COMMERCETOOLS Real innovation starts with a strong foundation, and at commercetools, that comes from the perfect balance of our product and our people. B...
Real innovation starts with a strong foundation, and at commercetools, that comes from the perfect balance of our product and our
people. Behind every leap forward is a collective of builders, explorers, doers, makers, and problem-solvers. The kind of people
who not only pioneered a more flexible approach to commerce architecture but also shaped the culture of experimentation that
approach unlocked. Together they are the engine of commerce innovation today. At commercetools, we power the next era of commerce
for our customers. Whether it’s AI-driven solutions that help enterprises make smarter business decisions, bridging digital and
physical shopping experiences, or enabling entirely new ways for industries to connect with their customers, we help the world’s
most ambitious companies experiment, scale, and grow without limits. Here the best idea wins, not the loudest voice. You will have
the tools, trust, and space to not only build the future of commerce, but to build your own.
As our Principal Engineer Product Security , you’ll support the Engineering team by solving challenging technical problems for an
ambitious product and enabling teams to "shift left" to build secure services on multi-cloud infrastructure.
This role is hybrid, with three days a week spent in our Berlin, London or Valencia office.
You're a creative problem-solver who is wired to find solutions. You confidently dive into complex challenges and have a talent
for making them simple for others. Your curiosity drives you to constantly grow and contribute to an environment of trust and
teamwork. Great ideas come from many paths, and your unique perspective matters more than checking every box. What matters most is
the mindset you bring to the work.
AI Aptitude: A genuine curiosity for using AI tools to work smarter and more effectively, paired with a drive to learn and put
them into practice in your role.
Nice to Have: * Security Certifications such as CISSP, CCSP, Certified Kubernetes Security Specialist, or GCP/AWS/Azure security
certifications
Because work and life are connected, our benefits are too. We’ve designed them to give you the security, flexibility, and
opportunities you need to focus on what matters most.
🩺 Comprehensive health benefits for you and your dependents, including access to OpenUp for personalized mental health support
📚 Learning and development opportunities including an annual learning budget, access to self-paced learning platforms and
language training, personalized coaching, mentorship, and leadership programs
🍼 Family Leave Plus gives you additional fully paid weeks of parental leave on top of government-provided leave, so you can spend
more time with your new addition
📈 Our equity participation program allows you to share in our success
For more information on our benefits, visit this page.
Come as you are. Build with us.
Your unique perspective is essential to our success. We are committed to building a team that reflects the world around us because
we know it’s the only way to build the future. We celebrate our differences and have created a hiring process that’s fair,
inclusive, and designed to let your talent shine.
We proudly welcome applicants of every race, color, religion, gender identity, sexual orientation, age, and any other part of your
identity that makes you who you are. As an equal opportunity employer, we believe that our strength lies in our diversity, and we
invite you to be a part of our global community.
For more information on our diversity, equity, inclusion, and belonging practices, visit this page.
Since being founded in 2018, Copper has been building the standard for institutional digital asset infrastructure with a focus on custody, collateral management, and prime services. Led by Amar Kuchinad, Copper's Global CEO, the firm provides a comprehensive suite of custody, trading and settlement solutions that reduce counterparty risk and bring greater capital and operational efficiency to digital asset markets. At the heart of Copper's offering is Multi-Party Computation (MPC) technology – the gold standard in secure custody. Copper’s multi-award winning custody system is unique in that it can be connected to centralised exchanges, DeFi applications and even staking pools without the assets leaving the custody. Built on top of this state-of-the-art custody, ClearLoop is the first solution in the market that overcomes a growing industry challenge; counterparty risk with exchanges. This solution underpins a full prime services offering, connecting global exchanges, and enabling customers to trade and settle directly from the safety of their MPC-secured wallets. By reducing settlement time for transfers to a few milliseconds (without blockchain network dependency) and offering enhanced security measures, ClearLoop is rapidly reshaping the way asset managers trade and manage capital. In addition to industry-leading security certifications, Copper has one of the strongest insurance coverages in the industry from an A+ rated insurer, positioning the firm as the partner of choice for institutions seeking to safeguard their assets. Department/Team Purpose: Copper provides institutional digital asset custody, settlement, and collateral management services across a wide range of blockchains and integrated venues. Information Security protects the firm's platforms, client assets, and regulated entities across the group. Role Purpose: The Principal Security Architect is the senior technical authority for security architecture at Copper. The role reports to the CISO and partners closely with Engineering. The holder sets architectural direction, reviews and approves designs for major change, and acts as the firm's reference point on the security of the systems, protocols, and integrations Copper depends on. The role is predominantly architecture and assurance, with limited hands-on solution design in the cloud and integration space where reference patterns are needed. Key Responsibilities: Architectural authority * Hold formal security sign-off authority for major changes to Copper's platforms, infrastructure, and integrations. * Shape and maintain the security architecture patterns, principles, and reference designs that engineering teams build against. * Provide the senior technical security position in architectural and business decisions, including escalations where security and delivery pressures conflict. Custody, signing, and cryptographic architecture * Provide architectural security leadership over Copper's signing infrastructure, working alongside specialist engineering and cryptography teams. Scope covers the people, process, and operational design around MPC-based signing. Solid conceptual grounding in threshold cryptography and signature schemes is required; cryptographer-level work is not. * Review and approve changes to transaction construction, signing flows, approval policy, and key lifecycle operations. * Provide architectural assurance over chain-of-trust constructs adjacent to custody, including verifiable build pipelines, hardware-backed code signing, and authenticator-bound administrative paths. Multi-chain and integration security * Reason at architectural depth across the range of blockchains Copper supports, including EVM, UTXO, and account-based non-EVM families. This requires a working understanding of transaction construction, signing semantics, consensus assumptions, and validator and staking models across these environments, without being a protocol engineer in any of them. * Assess third-party smart contract architectures, implementations, and audit reports to a level sufficient to understand the exploit and risk surface, without performing line-by-line code review. * Review first-party integrations with partner networks, including those underpinning staking and similar on-chain participation, and form a defensible security position on the operational and contract risk Copper inherits. Settlement, collateral, and off-exchange architecture * Provide architectural ownership of the security model for Copper's settlement, collateral mirroring, and off-exchange product surfaces. * Reason about the trust boundaries between Copper, venues, and clients, and ensure architectural controls match the obligations each side carries. Identity and access architecture * Own identity and access architecture as a dedicated pillar of the role. * Set patterns for workforce, workload, and third-party identity across Entra ID, federated SSO, OAuth2 / OIDC, SAML, and modern authenticators. * Govern entitlement design, privileged access, and access models for contractors, vendors, and external operators. Cloud and platform security * Maintain working architectural fluency in both AWS and Azure, including network topology, segmentation, secrets handling, and platform telemetry. * Produce reference patterns and, where needed, direct integration designs in the cloud and platform space. Third-party and protocol risk * Lead technical security review of vendors, integrated venues, and protocols, including challenge of assurances that do not stand up to scrutiny. * Support client and counterparty due diligence on the technical content most likely to be misrepresented or under-specified. Policy, regulatory, and assurance support * Maintain a working understanding of the regulatory regimes applicable to Copper's licensed entities sufficient to translate architectural decisions into language Compliance and GRC can defend. Primary ownership of regulatory positioning sits elsewhere. * Contribute to security policy, standards, and control framework development as the senior technical reviewer. * Participate in resilience exercises and incident reviews where architectural input materially shapes the outcome. Skills and Experience: Essential * Multi-chain architectural literacy. Able to reason across EVM, UTXO, and non-EVM account-based chains at the level of transaction construction, signing, consensus, and validator models. Comfortable assessing third-party smart contract designs, implementations, and audit reports for exploit and risk surface without performing code review. * Custody and signing architecture. Strong conceptual grasp of threshold signing, signature schemes, and key lifecycle. Able to design and challenge the operational architecture around signing, separation of duties, approval policy, key ceremony equivalents in MPC, and recovery, to a high standard. * Settlement and collateral architecture. Demonstrable experience reasoning about settlement, collateral, and off-exchange constructs, including trust boundaries between custodians, venues, and clients. * Identity and access architecture. Senior-level experience designing and governing identity across Entra ID, federated SSO, OAuth2 / OIDC, SAML, and modern authenticators. Comfortable with entitlement governance and third-party access design. * Cloud security. Working architectural understanding of AWS and Azure, including the ability to produce reference patterns and limited direct integration designs. * Architectural authority and judgement. Track record of holding sign-off on significant designs, taking defensible positions under uncertainty, and owning residual risk. * Change review and assurance. Comfortable reviewing the work of engineering peers, infrastructure changes, and vendor designs, and able to hold the line where it matters. * Communication. Able to operate credibly with engineers, senior business stakeholders, auditors, and regulators in the same week, without losing precision at any of them. Desirable * Familiarity with chain-of-trust constructs including verifiable builds, reproducible build pipelines, and hardware-backed code signing. * Awareness of the regulatory landscape relevant to digital asset custody and trading (for example FCA, FINMA, FSRA / ADGM, MiCA). * Compliance familiarity across ISO 27001, SOC 2, and NIST CSF / 800-53, with the ability to map controls cleanly between them. * Enterprise architecture grounding (TOGAF, SABSA) where it complements rather than replaces technical depth. Why Copper? At Copper, we keep innovation, openness, and curiosity at the centre of everything we do. Here, bold ideas get the spotlight, learning is constant, and diversity shapes our team from the ground up. Jump into a fast-moving, dynamic team that loves a challenge and knows how to have fun along the way. Collaboration is just as important as results—you’ll be surrounded by smart, driven colleagues in London and across our APAC, Switzerland, UAE, and US offices. Hybrid working model – we believe in the value of bringing people together and at the same time we embrace the adaptability of flexibly working. Diversity and inclusion matter to us – they’re woven into Copper life. From employee-led groups like Women at Copper to a committee focused on community and wellbeing, you’ll have a network that supports you from day one. Everyone voice matters. If you’re looking to ramp up your career, or keen to do something new in your field, with us, you’ll keep moving forward. Ready to make your mark, keep growing, and join a supportive, dynamic team? Copper’s the place. The interview process at Copper Our interview process is designed to be thoughtful, efficient, and engaging. While specific steps may vary slightly depending on the role, the typical journey includes: 1. Initial Screening A brief conversation with our Talent Acquisition team to explore your background, motivations, and alignment with the role. 2. Technical Interview A virtual session conducted via Microsoft Teams, where you'll engage with team members to discuss relevant skills, problem-solving approaches, and technical experience. 3. In-Person Interview A conversation focused on team dynamics, collaboration style, and any final technical questions. This may be with cross-functional peers or leadership. Additional steps may be added based on the role's complexity or seniority. We aim to keep the process transparent and respectful of your time. Benefits In return for everything you can bring to Copper, we can offer you an exciting, challenging role in a fast-growing and dynamic business, with career opportunities and welcoming working environment. Some of our key UK benefits are highlighted below: * Paid Time Off - A minimum of 35 days of paid time off per year, inclusive of annual leave and public holidays. Employees also receive one additional day of annual leave for each year of service. * Comprehensive Medical Insurance - Inclusive of dental, optical, audiology, and mental health coverage, with medical history disregarded * Life Insurance * Enhanced Pension Contributions - Includes an enhanced employer matching contribution * 24/7 Employee Assistance Programme (EAP) If you think you have everything we're looking for and more, then we'd love you to apply for the opportunity. Copper is an equal opportunity employer. We embrace diversity and equal opportunities in a serious way. We are committed to building a team that represents a variety of backgrounds, perspectives, and skills. The more inclusive we are, the better our work will be. So, bring us your experience, perspectives, and skills. It is in our differences that we will continue to grow and ensure Copper is transforming how institutional investors engage with digital assets. Copper is a Disability Confident Employer, please let us know if you have a disability. If you require us to provide any assistance during the recruitment process, then we would ask you to highlight this to us and we will be happy to accommodate.
ABOUT US The Financial Times is one of the world’s leading business news organisations, recognised internationally for its authority, integrity and accuracy. The FT has a record paying readership of one million, three-quarters of which are digital subscriptions. It is part of Nikkei Inc., which provides a broad range of information, news and services for the global business community. We have offices in more than 35 cities, including London, New York, Hong Kong, Beijing, Manila, Sofia, San Francisco and Tokyo. Join us and find an inclusive and fast-paced environment with unique opportunities to support every step of your career. The FT is looking for a Principal Engineer (Individual Contributor) to lead our Edge Delivery & Observability work. ABOUT THE TEAMS There are two teams in this area. The Edge Delivery & Observability (EDO) team looks after the cloud edge capabilities like CDNs, DNS etc, along with the monitoring and observability infrastructure at the FT. Examples of the kind of work this team tackles are: * Managing and improving our central solution for observability tools like Graphite, Grafana, Splunk, Prometheus and Cloudflare. * Providing self service APIs and tools that enable other delivery teams to utilise the monitoring solutions. * Providing support to other delivery teams at the FT and helping them utilise core SaaS infrastructure products effectively. * Ensuring our solutions have high engineering standards (robust, fit for purpose, include synthetic testing and/or application monitoring) and meet our quality standards. The API Gateway team is a contract team, based in Bulgaria, who work on our API Gateway stack. This is built on top of Tyk, an open source API Gateway. Both teams are part of the Infrastructure & Operations Group at the Financial Times. We have a devops culture of empowered teams who take full responsibility for their systems. Infrastructure & Operations purpose: “We keep the business running. Our job is to support and deliver fast, reliable, and cost-effective technology - so our FT colleagues can do their best work. We are responsive, we support change, and always aim for high performance. When we’re at our best, the whole business runs better.” ABOUT THE ROLE Principal Engineers provide technical direction and support to teams across the group. Each principal engineer looks after one or two feature teams, leading them to deliver quality tooling and products that reduce developer toil for all engineering teams at the FT. In addition to steering their immediate teams, Principal Engineers play a key role in the management of the department, * Work closely with the people manager within the teams * Engage with other disciplines (e.g.delivery, product management) and teams across FT to make sure we are all working together effectively * Model and help set and reinforce our inclusive, respectful, multidisciplinary and open culture * Help continuously improve our technology, process and culture, take ownership of problems and see solutions through to completion * Manage and maintain strong relationships with vendors * Gain a deep understanding of the FT as a business and use that knowledge to communicate clearly with your peers, reports, and senior management * Actively collaborate across teams both within and outside of I&O * Contribute to company-wide processes, frameworks, and guidelines ABOUT YOU * You love collaborating with others to solve technical problems. * You have experience technically leading teams and projects. * You are an effective communicator, able to break down tasks as well as giving/receiving constructive feedback. * You are customer focused, with a strong focus on building and running reliable, stable and secure systems. * You are enthusiastic about operability & monitoring of systems and Cloud infrastructure. THE TECH WE WORK WITH We don’t expect you to have worked with all of these, but if you have experience of these or equivalent tools, that will be a benefit * Cloud platform: AWS * Observability and monitoring tools: Splunk, Grafana, Prometheus * CDN: Cloudflare * DNS: Route53 * Python and Go BENEFITS We have many great benefits. Some standout ones are: * A competitive bonus incentive scheme. * Extensive learning and development opportunities including 10% time, tech talks, internal conferences and opportunities to attend external conferences and training. * 25 days annual leave, increasing to 30 days after 2 years’ service. * Generous parental leave * Very competitive pension plan, with the company doubling your contribution. We currently operate a hybrid model which requires staff to work onsite 50% of the time, subject to role requirements & regular review. While flexible working requests will be considered, not all patterns are suitable for all roles. We believe this balanced approach supports flexibility and protects our culture, making collaboration and communication easier, building stronger relationships and team cohesion, and supporting peer learning. We reserve discretion on reasonable notice to change this approach either generally or for specific individuals or teams. OUR COMMITMENT TO DIVERSITY AND INCLUSION IN THE WORKPLACE At the FT, we believe that a supportive workplace is one where employees feel they can be themselves at work and have the flexibility they need to meet their personal needs. We committed to equality of opportunity. We are determined to create a diverse group at all levels of our Company and we welcome all members of the community we serve to apply for openings with us. #LI-MG1
Isomorphic Labs is applying frontier AI to help unlock deeper scientific insights, faster breakthroughs, and life-changing medicines with an ambition to solve all disease. The future is coming. A future enabled and enriched by the incredible power of machine learning. A future in which diseases are curtailed or cured starting with better and faster drug discovery. Come and be part of an interdisciplinary team driving groundbreaking innovation and play a meaningful role in contributing towards us achieving our ambitious goals, while being a part of an inspiring and collaborative culture. The world we want tomorrow is the one we’re building today. It starts with the culture at this company. It starts with you. ABOUT ISO Isomorphic Labs (IsoLabs) was launched in 2021 to advance human health by building on and beyond the Nobel-winning AlphaFold system. Since then, our interdisciplinary team of drug discovery experts and machine learning specialists has built powerful new predictive and generative AI models that accelerate scientific discovery at digital speed. Our name comes from the belief that there is an underlying symmetry between biology and information science. By harnessing AI’s powerful capabilities, we can use it to model complex biological phenomena to help design novel molecules, anticipate how drugs will perform and develop innovative medicines to treat and cure some of the world’s most devastating diseases. We have built a world-leading drug design engine comprising AI models that are capable of working across multiple therapeutic areas and drug modalities. We are continually innovating on model architecture and developing cutting-edge capabilities to advance rational drug design. Every day, and with each new breakthrough, we’re getting closer to the promise of digital biology, and achieving our ambitious mission to one day solve all disease with the help of AI. Your Impact We are building the largest foundation models in biotech and applying them immediately to cure disease. You will play a pivotal role in ensuring the reliability and scalability of the foundations that make this possible. As a Principal Engineer, you will lead the efforts to harden our systems, ensuring our groundbreaking AI is built on an unshakeable base, working closely with the research team and the Applied ML teams to ensure the infrastructure is stable, reliable and can operate with more data and larger models as we grow. What You Will Do * Develop and operate our inference platform, serving fleets of cutting-edge machine learning models to scientific applications. * Design strategy and build roadmaps for maturing the platform. * Architect and optimize our next-generation inference services. You will solve core scaling limits, ensuring high-throughput performance and feature parity across our model serving stack. * Contribute to core technical decisions on tooling and architectural design while partnering with science, product, and operations teams to align infrastructure with biotech R&D cycles. * Deliver high-quality and well-tested user-focused features. Skills and Qualifications Essential: * Proven experience in architecting and managing large-scale AI/ML workloads in a production environment. * Expertise in cloud compute design, specifically within Google Cloud Platform (GCP). * Orchestration: Significant experience deploying and managing complex workloads within Kubernetes (GKE). * Professional familiarity with NVIDIA GPU generations and the intricacies of high-performance compute. * Strong programming skills and a "reliability-first" approach to software development. Nice to Have: * A career history that spans both ML Software Engineering and Infrastructure SRE roles. * Experience leading multi-disciplinary projects and navigating complex stakeholder requirements in a fast-paced environment. * Familiarity with workload scheduling, ML efficiency research, and hardware benchmarking. * Experience with Google TPU generations and specialized ML-driven R&D cycles. CULTURE AND VALUES We are guided by our shared values. It's not about finding people who think and act in the same way. These values help to guide our work and will continue to strengthen it. Thoughtful Thoughtful at Iso is about curiosity, creativity and care. It is about good people doing good, rigorous and future-making science every single day. Brave Brave at Iso is about fearlessness, but it’s also about initiative and integrity. The scale of the challenge demands nothing less. Determined Determined at Iso is the way we pursue our goal. It’s a confidence in our hypothesis, as well as the urgency and agility needed to deliver on it. Because disease won’t wait, so neither should we. Together Together at Iso is about connection, collaboration across fields and catalytic relationships. It’s knowing that transformation is a group project, and remembering that what we’re doing will have a real impact on real people everywhere. CREATING AN EXTRAORDINARY COMPANY We believe that to be successful we need a team with a range of skills and talents. We're building an environment where collaboration is fundamental, learning is shared and every employee feels supported and able to thrive. We value unique experiences, knowledge, backgrounds, and perspectives, and harness these qualities to create extraordinary impact. We are committed to equal employment opportunities regardless of sex, race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, pregnancy or related condition (including breastfeeding) or any other basis protected by applicable law. If you have a disability or additional need that requires accommodation, please do not hesitate to let us know. HYBRID WORKING It’s hugely important for us to share knowledge and build strong relationships with each other, and we find it easier to do this if we spend time together in person. This is why we follow a hybrid model, and would require you to be able to come into the office 3 days a week (currently Tuesday, Wednesday, and one other day depending on which team you’re in). If you have additional needs that would prevent you from following this hybrid approach, we’d be happy to talk through these if you’re selected for an initial screening call. Please note that when you submit an application, your data will be processed in line with our privacy policy. >> Click to view other open roles at Isomorphic Labs