Senior Security Engineer

ComplyAdvantage

  • Location
    • London
  • Date Posted
  • 03 Mar 2020
  • Function
  • Tech Ops
  • Sector
  • Business Applications, Fintech

We are looking for a talented Senior Security Engineer to help support our internal security policies and developement. We are building solutions that help reveal the truth for a safer world and stop money ending up in the hands of terrorists.

About us

Since launching in 2014 we have been on a mission to fight financial crime on a global scale. In that time, we have raised over $35m in funding, opened offices in New York, Singapore and Romania, and have grown to over 200 employees, and we're not stopping there!

We aim to grow to over 500 employees in the next 18 months, as we continue to fight the good fight against financial crime, and help make compliance less painful for our client base of over 450 customers across 45 different countries. We're leveraging game-changing tech to help us on our mission, building our platform around AI, Machine Learning and Big Data, meaning that our platform is unrivaled in it's capabilities.

  • No fight against crime is complete without the right values, and we take ours very seriously!
  • Focus on the Team- We're Collaborative, Human, and Humble
  • Kaizen- We're Curious, Proactive and Agile
  • Deliver Results- We're Tenacious, Accountable and Focused
  • We can only defeat financial crime if we have the right people with the right values in place to do so, and we're committed to investing in passionate people who are experts in their field. Our culture and working environment is second to none- Don't believe us? See what our employees have to say on Glassdoor

The Role

  • In this role you will be responsible for the following;
  • Accountable for identifying security issues and solutions through the use of best practices across the whole business, with respect to cloud infrastructure and application development.
  • Identify, assess and rollout security tools and products as appropriate to address identified security issues and business needs. This may include areas such as intrusion detection and static/dynamic code analysis.
  • Engage in design and review processes, ensuring that security is embedded in the design of any new project.
  • Work with engineers and tech leads and information security teams across the engineering organisation (currently in London and Cluj) to drive security best-practices.
  • Help ensure ongoing ISO27001 compliance across infrastructure and application security controls, through practices and projects to mitigate or eliminate risks as appropriate.
  • Stay up to date with developments in cybersecurity and cloud security.
  • Evaluate emergent threats (eg vulnerabilities, day-zero attacks) and implement proportional responses
  • Build and maintain systems to monitor identity and access management, including monitoring for abuse of permissions by authorised system users
  • Build and maintain systems to monitor for attacks, intrusions and unusual, unauthorised or illegal activity
  • What does success look like after 3 months
  • Achieved excellent understanding of current business practices, risk profile, and current systems
  • Worked closely with at least one development team on assessing InfoSec risks and embedding a security-first mindset within that team.
  • Taken ownership of identified risks assigned to CloudOps team, and create and manage associated risk treatment plan.

Requirements

  • You will have supported/worked on production services with at least one cloud provider (AWS, GCP, Azure)
  • Designed or implemented and built new cloud infrastructure

Docker-based application packaging/distribution experience

  • Running docker services in production under Kubernetes, ECS or another orchestration system
  • You will have worked with continuous integration systems (Gitlab CI, Jenkins)
  • You will have good Python development skills

Benefits

Competitive salary

Options

25 days' holiday

Flexible working hours

Company pension scheme

Company health care plan

Season ticket loan

Cycle to work scheme

£2000 training and development budget