Job Specifications
As a Security Engineer at tails.com, you will play a key role in strengthening the organisational cyber security function.
Changing the world of pet food for good
We’re Tails.com, a dog food subscription company with a big difference. We create truly tailored food for each and every dog we serve. We start by asking people a few simple questions about their dog. Then we use that information to create their dog’s unique Tails.com recipe – so their dog gets exactly the nutrition they need, in the taste they love, delivered to their door every month. It’s clever stuff.
We’ve got bold plans. Having created an entirely new category in pet food, we’re now scaling fast – backed by Purina, one of the world’s largest pet food companies. You’ll join a bunch of smart people working towards the same goals – and a bunch of smart-ish dogs, all working on their own thing.
Together, we’ll change the world of pet food for good.
Build our brand
We’re building an international brand, fast. We set ambitious goals. We challenge and support each other in equal measure. At the pace we’re moving, we prefer to test ideas and learn quickly rather than spend months building a business case. That means we celebrate when things go right, and we learn when things go wrong.
Sound like a team you want to join? Here’s how you’ll make a difference:
The role
As a Security Engineer at tails.com, you will play a key role in strengthening the organisational cyber security function. You’ll define, embed, and assure the security standards, guardrails, and risk management practices that shape how technology is designed, delivered, and operated across the business.
Working closely with engineering, infrastructure, data, and business teams, you’ll ensure security requirements are understood and consistently applied, balancing operational pragmatism with strong governance. While your focus is on direction and assurance, you’ll get hands-on when needed to validate controls, support investigations, or verify technical implementation.
You’ll collaborate deeply with the Nestlé Cyber team—drawing on their expertise, intelligence, and tooling as an extended part of the tails.com security capability. With full access to their resources, you’ll help maintain a secure, resilient, and well-governed technology environment that supports tails.com’s growth and day-to-day operations.
You will be responsible for:
Security Standards, Guardrails, and Governance
Define and maintain security standards, guardrails, and controls across tails.com.
Ensure standards are clear, pragmatic, and consistently applied across teams.
Align controls to recognised frameworks (e.g. ISO 27001, PCI-DSS, GDPR).
Embed security expectations through collaboration and enablement.
Promote secure-by-design principles across delivery lifecycles.
Provide oversight to ensure controls remain effective and proportionate.
Collaboration, Assurance, and Operational Oversight
Partner with engineering, infrastructure, data, and business teams to embed security requirements.
Provide practical guidance to help teams implement secure patterns independently.
Collaborate with Nestlé Cyber, leveraging SOC intelligence, tooling, and insights.
Lead assurance activities and support audits with clear, accurate evidence.
Conduct risk assessments, identify gaps, and track remediation to closure.
Translate central insights into local actions and ensure accountable ownership.
Support incident response through structured analysis and hands-on validation where needed.
Deliver targeted communications and training to improve security awareness.
Security Maturity, Improvement, and Governance Evolution
Review and evolve standards and practices to stay effective and business-aligned.
Improve automation, efficiency, and consistency across governance and assurance activities.
Monitor emerging threats and technologies, updating guidance as required.
Drive measurable improvements through maturity tracking and regular review cycles.
Contribute to the ongoing development of the tails.com cyber security function.
The skills you’ll bring:
Experience in cyber security, security engineering, or security governance roles.
Strong knowledge of security frameworks (ISO 27001, NIST CSF, CIS, PCI-DSS, GDPR).
Understanding of secure design, cloud security, and infrastructure security patterns.
Experience defining, assessing, or assuring security controls and standards.
Familiarity with SOC operations, threat intelligence, and incident response.
Ability to translate technical risk into clear, actionable requirements.
Basic scripting or automation skills (e.g. Python, Bash, PowerShell).
Strong written and verbal communication skills across technical and non-technical audiences.
Relevant certifications beneficial but not required.
Key Attributes:
Governance-minded: Applies structured, standards-led security practices.
Operationally aware: Adapts security expectations to real delivery environments.
Collaborative: Builds tru