Security Operations Engineer

We’re very proud of our achievements:

In July 2024, we secured a $200M investment led by General Atlantic to help revolutionise women’s health, and became the first purely digital consumer women’s health app to achieve unicorn status! 🦄

We’ve had 380M+ downloads, have over 70M monthly users, are #1 by installs in the iOS Health category, hit 4.9 stars on the App Store (3M+ reviews), are backed by 9 VCs, had a 40% revenue increase last year, and topped a valuation of $1B.

We’re a growing, ambitious HealthTech business building the essential digital health partner of tomorrow to empower women, girls, and people who menstruate with the knowledge and support they need to stay well and live better.

Our cycle, ovulation and pregnancy tracking, educational content and anonymised community platform have been trusted for years by millions to help them feel more in control of their health every day.

Now, we’re harnessing the power of data analytics and AI to build a smarter future, one where we all know our bodies better, with an aim to become the essential health partner to women worldwide.

The Job

As a Security Operations (SecOps) Engineer, you will play a key role in shaping and strengthening our security monitoring and response capabilities, ensuring they scale effectively with our growth. This is an exciting opportunity to be part of a new and evolving team, giving you the autonomy to influence and define the vision of security operations at Flo Health.

At Flo, we follow modern engineering principles, meaning everything is built and managed through code where possible. Infrastructure provisioning, security detections, and operational workflows are all treated as code, ensuring consistency, scalability, and automation at every level. Your work will focus on improving detection coverage, reducing the attack surface, and building automated, engineering-led security solutions.

Collaboration will be at the heart of your role. You will work closely with key stakeholders across the company to embed security best practices and enhance monitoring capabilities. As part of a rotational on-call team (approximately every six weeks), you’ll provide security guidance and first-line security support, helping teams navigate security challenges effectively.

This role offers a unique blend of technical depth and strategic influence, allowing you to develop creative security solutions, automate operational processes, and contribute to forming a high-impact security function from the ground up.

What you'll be doing:

• Develop and enhance detection rules to improve coverage of critical systems and key business processes—beyond simple log collection and SIEM ingestion.
• Automate and optimize security workflows, from detection to response, leveraging engineering-driven solutions.
• Work on SecOps automation, implementing solutions that reduce manual effort in detection, enrichment, response, and broader security-related processes.
• Collaborate with key system owners to ensure relevant log data: not just collected but also properly structured, processed, and made actionable. This includes designing and improving log ingestion pipelines and parsers where needed.
• Fine-tune security alerts to reduce noise and improve response efficiency.
• Monitor, investigate, and respond to security threats, ensuring rapid containment and remediation.
• Participate in incident response activities, including post-incident reviews and continuous improvement initiatives.
• Contribute to threat intelligence gathering, leveraging insights to enhance detection and response strategies.
• As part of on-call duties, act as a security champion, providing security advice and acting as the first point of contact for security-related queries.

Your Experience

• Proven experience in cloud security with a strong focus on engineering-led security practices.
• Experience with declarative Infrastructure as Code (IaC) (Terraform or similar) for provisioning and managing security controls.
• Strong knowledge of detection-as-code approaches, leveraging code-driven security monitoring and response solutions.
• Experience with security automation, including automated detection, response, and process workflows.
• Experience designing, implementing, and fine-tuning detections across SIEM, EDR, and other security platforms.
• Understanding threat detection techniques, including log analysis, anomaly detection, and behavioral analytics.
• Incident response expertise, with hands-on experience investigating and containing security incidents.
• Knowledge of defence-in-depth security layers, including email security (DMARC, SPF), network security (IDS/IPS, firewalls), and endpoint security.
• Experience with cloud-native security solutions and modern security tooling.
• Excellent collaboration and communication skills, with the ability to work closely with stakeholders across different teams.

Salary ranges may vary depending on your skills, competencies and experience.

Reward

People perform better when they’re happy, paid well, looked after and supported. 

On top of competitive salaries, Flo's employees have access to:

• A flexible working environment with the opportunity to come into the office and work from home
• Company equity grants through Flo’s Employee Share Option Plan (ESOP)
• Paid holiday and sick leave 
• Fully paid female health and sick leave, in addition to holiday and regular sick leave
  
• Workations - an opportunity to work abroad for two months a year
• Six months paid maternity leave, and one months paid paternity leave (subject to qualifying conditions) inclusive of same-sex and adoptive parents
• Career growth, progression, and learning development resources
• Annual salary reviews
• Unlimited free premium Flo subscriptions
• A whole host of other benefits (health/pension/social schemes)

Our Culture

We’re problem solvers, we’re adaptable, we’re empathy driven and results led. 

People here like working in a fast-paced, multi-national, multi-cultural and ever changing environment. Everyone has an impact on a powerful mission, and is happy to roll their sleeves up to ideate solutions and put them in place. Being part of a  growing business means that sometimes it's not easy and we work hard, but our mission is always at the forefront of what we do. 

Diversity, Equity and Inclusion

The strength of our workforce is in the diverse backgrounds of our employees, and Flo is committed to applying its equal opportunities policy at all stages of recruitment and selection. This means recruitment and selection of talent into Flo Health companies is only based on individual merit and qualifications directly related to professional competence. Shortlisting, interviewing, and selection will always be carried out without regard to gender identity or expression, sexual orientation, marital or civil partnership status, color, race, nationality, ethnic or national origins, religion or beliefs, ancestry, age, veteran status, mental or physical disability, medical condition, pregnancy or maternity status, trade union membership, or any other protected characteristics.

By applying for the above role, you confirm that you have reviewed our privacy notice for job applicants: https://flo.health/privacy-policy-for-job-applicants