
Brunswick Group · London
OPPORTUNITY The Security Engineer will join Brunswick's Information Security team and play a key role in supporting the firm's secure adoption of AI and emergi...
The Security Engineer will join Brunswick's Information Security team and play a key role in supporting the firm's secure adoption
of AI and emerging technologies.
This role will act as a dedicated security professional supporting requests and initiatives originating from the firm's AI team,
providing security review, architecture input, and risk-based guidance across third-party AI tools, enterprise platforms,
AI-enabled applications, and internally developed solutions.
Working closely with the AI team, ICT, application owners, and business stakeholders, the Security Engineer will help ensure new
technologies are protected through appropriate security controls and guardrails throughout the development and delivery lifecycle.
In this role, you will provide technical security expertise across AI-related requests, third-party AI tools, internally developed
applications, workflows, enterprise features, and emerging agent-based use cases.
ChatGPT, Claude, Microsoft Copilot, and other emerging technologies.
internally developed applications.
firm.
automation use cases.
risk, inappropriate access to sensitive information, and insecure integrations.
resilience, and secure configuration.
considered within Brunswick's environment.
We're looking for an experienced, technically capable security professional who can combine strong security engineering expertise
with practical judgement and clear communication.
third-party tools, cloud-based solutions, or internally developed applications.
protection, logging, monitoring, encryption, network security, and resilience.
associated with AI adoption.
workplace technologies.
automation, and agent-based use cases.
Whether you are joining a client facing team, a core services team, or starting out on your professional career journey, joining
Brunswick unlocks a range of employee benefits to support your financial future, health and wellness, family and community and
continuous professional development.
Brunswick is a global advisory firm. We help companies tackle high-stakes issues, navigate complex stakeholder relationships, and
deliver high-impact outcomes.
Our clients value our ability to anticipate, shape, and respond to the key players and forces in the financial and investment
arena, regulatory and geopolitical universe, NGO community, workforce and beyond. They rely on us for deep experience, fresh
perspectives and original thinking. So, in Brunswick you will find an exceptional range of experience and talent with a rich mix
of backgrounds. From the beginning, we have prioritized attracting, developing, and retaining the best professionals in the
industry, united by a culture of inclusivity, excellence, and intellectual curiosity.
Founded in 1987 in London, the firm has organically grown to 27 offices in 18 countries across the Americas, Europe, Middle East,
Africa, Asia and Australia. We operate as a “one-firm firm” with no individual profit centers. This allows us to assemble fully
integrated, bespoke teams for each client, able to draw on the full resources of Brunswick anywhere in the world.
Brunswick is an equal opportunity employer. All qualified applicants will be considered without regard to race, religion, color,
national origin, gender, sexual orientation, age, disability, pregnancy, genetic information, or any other status protected by
applicable law. Please read our Global Privacy Notice to understand how your data is managed.
OPPORTUNITY Reporting to the Group Head of ICT Infrastructure, the Disaster Recovery & Business Continuity Engineer will be responsible for designing, embedding, and continuously strengthening Brunswick’s Disaster Recovery and operational resilience capability across our global technology estate. This is both a strategic and hands-on engineering role focused on ensuring Brunswick can recover rapidly and effectively from cyber incidents, ransomware, system outages, infrastructure failure, or wider operational disruption. The successful candidate will help move the organisation from documented recovery intent to fully engineered, tested, and measurable recovery capability. Working closely with Technology, Security, and business stakeholders, you will design and validate recovery strategies that safeguard client delivery, protect data integrity, and maintain operational continuity. You will own the BC/DR roadmap, ensuring recovery planning evolves in line with emerging cyber threats, business growth, and changes to our technology landscape. This is a critical role for an experienced infrastructure engineer with a strong resilience mindset who is motivated to build and mature a foundational safeguard within a global professional services firm. ABOUT THE ROLE We are a key service provider to the business, delivering ICT services to colleagues across 27 offices globally. Our ICT department comprises Security, Infrastructure, Service, Applications, AI and Programme Management teams working collaboratively to deliver secure, reliable, and resilient technology services. Your day-to-day responsibilities will include: * Own and develop Brunswick’s Business Continuity and Disaster Recovery strategy across infrastructure and business critical platforms. * Design and implement resilient architectures that minimise impact from cyber attack, ransomware, infrastructure failure, or cloud disruption. * Define and continuously refine Recovery Point Objectives (RPO) and Recovery Time Objectives (RTO) across critical services. * Conduct regular disaster recovery testing, cyber incident simulation exercises, and failover validation. * Work closely with the ICT Security team to integrate BCDR planning into broader cyber defence and incident response frameworks. * Assess and reduce cyber related operational risk by validating backup integrity, isolation controls, and recovery sequencing. * Develop structured playbooks for recovery from ransomware, identity compromise, large-scale outage, and data loss scenarios. * Provide technical leadership during major incidents, acting as a resilience SME during cyber or operational crises. * Ensure new systems, projects, and architectural changes are designed with resilience and recoverability embedded by default. * Maintain detailed documentation covering recovery workflows, escalation models, and crisis communication pathways. * Build strong internal recovery capability, reducing reliance on external providers during high-pressure situations. * Partner with senior stakeholders to ensure recovery capabilities meet client, regulatory, and governance expectations. WHAT WE'RE LOOKING FOR Broad technical We are seeking an experienced infrastructure engineer with a strong cyber resilience mindset and a proactive approach to operational risk reduction. Minimum experience and capabilities: * 5+ years’ experience in infrastructure engineering within a hybrid cloud environment. * Demonstrable experience designing and implementing Disaster Recovery and Business Continuity frameworks. * Strong understanding of cyber threat vectors, particularly ransomware, identity compromise, and cloud service disruption. * Experience supporting or participating in cyber incident response and post-incident recovery. * Deep understanding of backup integrity, replication strategies, failover architectures, and high-availability design. * Experience defining and managing RPO and RTO in enterprise environments. * Ability to assess technical risk and design pragmatic, resilient recovery strategies. * Strong cross functional collaboration skills, particularly with Security and senior leadership. * Calm, structured, and analytical under pressure. * Strong written documentation skills, capable of producing executive ready recovery and resilience documentation. * Appreciation of regulatory, client, and governance expectations around operational resilience and cyber preparedness. Desirable: * Certifications in cloud architecture, cybersecurity, or business continuity disciplines. * Experience in professional services or highly client-facing environments. * Experience leading structured disaster recovery or cyber simulation exercises. WHY JOIN US Whether you are joining a client facing team, a core services team, or starting out on your professional career journey, joining Brunswick unlocks a range of employee benefits to support your financial future, health and wellness, family and community and continuous professional development. ABOUT BRUNSWICK Brunswick is a global advisory firm. We help companies tackle high-stakes issues, navigate complex stakeholder relationships, and deliver high-impact outcomes. Our clients value our ability to anticipate, shape, and respond to the key players and forces in the financial and investment arena, regulatory and geopolitical universe, NGO community, workforce and beyond. They rely on us for deep experience, fresh perspectives and original thinking. So, in Brunswick you will find an exceptional range of experience and talent with a rich mix of backgrounds. From the beginning, we have prioritized attracting, developing, and retaining the best professionals in the industry, united by a culture of inclusivity, excellence, and intellectual curiosity. Founded in 1987 in London, the firm has organically grown to 27 offices in 18 countries across the Americas, Europe, Middle East, Africa, Asia and Australia. We operate as a “one-firm firm” with no individual profit centers. This allows us to assemble fully integrated, bespoke teams for each client, able to draw on the full resources of Brunswick anywhere in the world. Brunswick is an equal opportunity employer. All qualified applicants will be considered without regard to race, religion, color, national origin, gender, sexual orientation, age, disability, pregnancy, genetic information, or any other status protected by applicable law. Please read our Global Privacy Notice to understand how your data is managed.
OPPORTUNITY The Senior Applications Developer and Data Specialist will join Brunswick’s ICT team within the Business Applications function, reporting to the Group Head of Business Applications. The role is critical in ensuring the stability, security, and continued development of Brunswick’s core non-AI business systems, while supporting all data and automation initiatives within the ICT department. ABOUT THE ROLE We are a key service provider to the business and deliver Internal ICT services to Brunswick colleagues across 27 offices around the world. Our ICT department is made up of several core teams, Service, Infrastructure, Applications and our Programme management office. Working in close collaboration with the ICT Security team, our Security team integrates seamlessly into our processes and security-oriented projects. You will be responsible for the development, integration, and ongoing support of Brunswick’s business‑critical applications and data platforms, working closely with stakeholders in business teams such as Finance, Business Intelligence, Marketing, HR and with all internal ICT teams:- Infrastructure, Information Security, Projects and Service delivery. Key responsibilities include: * Develop, support, and maintain core business applications, including Dynamics 365 (Finance, CRM, Marketing), Microsoft Power Platform (Power Apps, Power Automate, Power BI, Dataverse) and Microsoft Forms. Collaboration platforms such as Egnyte and SharePoint; and the data warehouse / data lake. * Manage API implementations, integrations, and automation workflows. * Develop and support internal ICT data and reporting mechanisms, engaging with all ICT teams to identify and execute automation initiatives * Support Power BI reporting and data warehouse solutions. * Embed and maintain secure development practices and support all ISO audit activities, ensuring that all application work aligns with Brunswick’s information security standards and governance framework * Reduce dependency on external contractors through in‑house delivery. * Contribute to application and data architecture decisions and longer-term platform roadmaps (non-AI systems) * Environment management for applications. * Act as a technical lead in vendor discussions, roadmap reviews, and third-party application assessments. * Take a lead role in defining data quality standards, validation processes, and ownership models across systems. * Oversight of DevOps and release management * Proactively engage business teams to identify opportunities for automation, reporting improvements, and process optimization. WHAT WE'RE LOOKING FOR Strong experience in Microsoft enterprise application development, systems integration, and secure development practices. A strong, data-literate systems thinker, and experience as a responsible owner of production systems * 3+ years of experience with Microsoft Dynamics – FSCM & CE * 5 + years of experience with * C#, .Net, JavaScript * SQL (PaaS), T-SQL * Python * Azure, (Web App Services, Azure Automation, Logic Apps) * Azure DevOps * Secure coding practices (OWASP Top 10) * Identity and access management concepts * Secure API design * Design & maintenance of RESTful and/or Graph API’s * Authentication and authorization (OAuth, SSO) * Modern frameworks and understanding of UX, performance, accessibility * Previous responsibility for Third party Saas Integrations (CRM, ERP, finance, Marketing tools) * Deep data literacy skills and previous experience of data modelling WHY JOIN US Whether you are joining a client facing team, a core services team, or starting out on your professional career journey, joining Brunswick unlocks a range of employee benefits to support your financial future, health and wellness, family and community and continuous professional development. ABOUT BRUNSWICK Brunswick is a global advisory firm. We help companies tackle high-stakes issues, navigate complex stakeholder relationships, and deliver high-impact outcomes. Our clients value our ability to anticipate, shape, and respond to the key players and forces in the financial and investment arena, regulatory and geopolitical universe, NGO community, workforce and beyond. They rely on us for deep experience, fresh perspectives and original thinking. So, in Brunswick you will find an exceptional range of experience and talent with a rich mix of backgrounds. From the beginning, we have prioritized attracting, developing, and retaining the best professionals in the industry, united by a culture of inclusivity, excellence, and intellectual curiosity. Founded in 1987 in London, the firm has organically grown to 27 offices in 18 countries across the Americas, Europe, Middle East, Africa, Asia and Australia. We operate as a “one-firm firm” with no individual profit centers. This allows us to assemble fully integrated, bespoke teams for each client, able to draw on the full resources of Brunswick anywhere in the world. Brunswick is an equal opportunity employer. All qualified applicants will be considered without regard to race, religion, color, national origin, gender, sexual orientation, age, disability, pregnancy, genetic information, or any other status protected by applicable law. Please read our Global Privacy Notice to understand how your data is managed.
At Bynder, we don’t just store creative assets; we enable brands to deliver exceptional content experiences that drive business impact. In an era of exploding content volume and complexity, the world’s most iconic brands, including Spotify, Campari, and Lacoste, trust Bynder as their single source of truth for creative content. Our industry-leading DAM platform serves as the strategic engine for brand governance and control. We are leading the shift from management to AI-powered content orchestration. By integrating human-led, customizable AI Agents directly into our enterprise-grade infrastructure, we enable brands to augment their workforce and intelligently automate high-effort workflows without sacrificing brand integrity. We turn creative content into intelligent assets that accelerate personalization and drive measurable business outcomes. Ready to grow your career by helping the world’s leading brands deliver exceptional content experiences? Join our global team of 600+ ‘Byndies’ and help 4,000+ organizations work smarter with their content. Explore this opportunity and apply now to join our team. At Bynder, we believe security should never be an afterthought. We’re looking for a Security Engineer who thrives in a growth-oriented environment, someone who sees security as a starting point, not the finish line. If you’re hands-on by nature, energized by breadth, and serious about building security that actually scales in a cloud-native SaaS environment, you’ll feel right at home here. MEET THE TEAM We’re Bynder’s Security team: pragmatic, sharp, and relentlessly focused on enabling secure growth. We favor automation over repetition, integrations over point solutions, and smart security design over checkbox compliance. You’ll report directly to the VP Information Security and work alongside an Associate Security Engineer who brings strong application security and tooling chops. Together, you’ll cover the full security stack: AppSec, cloud, detection, and governance across a modern, cloud-native SaaS platform used by thousands of brands worldwide. Security at Bynder is a team sport. We work hand-in-hand with Platform teams, engineering, and business stakeholders to challenge assumptions, take calculated risks, and continuously raise the bar. It’s how we scale securely, and it’s part of how we win together. WHAT YOU’LL DO * Plan and (help) execute penetration tests against web applications, APIs, and cloud infrastructure, and manage external pentest engagements including scoping, vendor coordination, and remediation tracking. * Embed security across the full SDLC: leading threat modeling, security assessments, and vulnerability remediation in close collaboration with our engineering and product teams. * Own and evolve our cloud security posture across our AWS environment, working with Wiz (CSPM, CNS, Code, AI Security) to drive risk prioritization, misconfiguration remediation, and shift-left security workflows. * Champion security controls within our CI/CD pipelines, from IaC scanning and SAST integration to secure deployment practices, working closely with DevOps and development teams. * Support security incident response, investigation, containment guidance, and post-incident review and help mature our detection and response workflows over time. * Translate compliance requirements (SOC2, ISO 42001, GDPR) into concrete technical controls and act as a technical point of contact for customer security discussions, questionnaires, and enterprise onboarding. * Conduct vendor and third-party security risk assessments to protect our supply chain and advise on emerging AI/ML security risks as these technologies become more deeply embedded in our product. * Share knowledge and raise the craft, you’ll naturally become a technical anchor for your teammate and a collaborative voice across engineering on what good security looks like in practice. WHAT YOU BRING * 3–7 years of hands-on experience in application security, cloud security (AWS), or a broad security engineering role. * Proven experience conducting penetration tests on web applications, APIs, and/or cloud environments, with a solid grip on OWASP Top 10 and common vulnerability classes. * Solid understanding of AWS security: IAM, VPC design, cloud-native architecture and a clear intuition for what secure cloud infrastructure looks like. * Familiarity with application security testing tools (SAST, DAST) and a practical understanding of DevSecOps: you know where to plug in and how to make it stick with developers. * Strong communication skills, you can explain security risks clearly to both engineers and non-technical stakeholders, and you don’t default to “no” when there’s a smarter path forward. * A growth mindset and genuine curiosity, you’re comfortable operating across domains, actively building skills you don’t yet have, and you see a broad scope as an opportunity, not a burden. BONUS POINTS IF YOU… * Have hands-on experience with Wiz, or other CSPM/CNAPP platforms. * Hold an offensive security certification (OSCP or similar) or have contributed to bug bounty programmes. * Have experience with AI/ML security risks and frameworks (OWASP LLM Top 10, MITRE ATLAS). * Write security scripts, tinker with tools, or keep a personal GitHub with automation or research projects. * Have experience with Terraform or IaC security scanning. * Have hands-on experience with Kubernetes and container security. * Are familiar with common programming languages (e.g. Python, Java, Scala) and can read and reason about code to support security reviews WHAT WE HAVE * Challenging and inspiring work environment * Learning and Development budget * Commuting budget * Mental Health and Well-being Support * Bynder Love "stipend” * Unlimited vacation policy * Volunteer Time Off * Team and Company activities * Complimentary Lunches and Snacks * Offices in Amsterdam or Rotterdam If you don’t tick every box but you’re the kind of person who figures things out, speaks up, and raises the standard around you, we’d still love to hear from you. OUR COMMITMENT Bynder Love is the principle that guides the way we grow our teams, support our employees, and celebrate our differences. At Bynder we strive to create a culture that embraces every Byndie because differences in background, experience, and perspective make Bynder even better. At Bynder a diverse, inclusive, and equitable workplace is one where all employees, whatever their ethnicity, color, sex, age, religion, disability, sexual orientation, gender identity, national origin, or physical and mental ability are valued and respected. Our commitment is for all Byndies to have the freedom to be their true authentic selves. Just as we are never finished innovating, Bynder’s commitment to being An Even Better Bynder is a constant, evolving commitment that includes education, listening, and action. #LI-Hybrid #LI-MF1