We are looking for a talented Senior Security Engineer to help support our internal security policies and developement. We are building solutions that help reveal the truth for a safer world and stop money ending up in the hands of terrorists.
Since launching in 2014 we have been on a mission to fight financial crime on a global scale. In that time, we have raised over $35m in funding, opened offices in New York, Singapore and Romania, and have grown to over 200 employees, and we're not stopping there!
We aim to grow to over 500 employees in the next 18 months, as we continue to fight the good fight against financial crime, and help make compliance less painful for our client base of over 450 customers across 45 different countries. We're leveraging game-changing tech to help us on our mission, building our platform around AI, Machine Learning and Big Data, meaning that our platform is unrivaled in it's capabilities.
No fight against crime is complete without the right values, and we take ours very seriously!
Focus on the Team- We're Collaborative, Human, and Humble
Kaizen- We're Curious, Proactive and Agile
Deliver Results- We're Tenacious, Accountable and Focused
We can only defeat financial crime if we have the right people with the right values in place to do so, and we're committed to investing in passionate people who are experts in their field. Our culture and working environment is second to none- Don't believe us? See what our employees have to say on Glassdoor
In this role you will be responsible for the following;
Accountable for identifying security issues and solutions through the use of best practices across the whole business, with respect to cloud infrastructure and application development.
Identify, assess and rollout security tools and products as appropriate to address identified security issues and business needs. This may include areas such as intrusion detection and static/dynamic code analysis.
Engage in design and review processes, ensuring that security is embedded in the design of any new project.
Work with engineers and tech leads and information security teams across the engineering organisation (currently in London and Cluj) to drive security best-practices.
Help ensure ongoing ISO27001 compliance across infrastructure and application security controls, through practices and projects to mitigate or eliminate risks as appropriate.
Stay up to date with developments in cybersecurity and cloud security.
Evaluate emergent threats (eg vulnerabilities, day-zero attacks) and implement proportional responses
Build and maintain systems to monitor identity and access management, including monitoring for abuse of permissions by authorised system users
Build and maintain systems to monitor for attacks, intrusions and unusual, unauthorised or illegal activity
What does success look like after 3 months
Achieved excellent understanding of current business practices, risk profile, and current systems
Worked closely with at least one development team on assessing InfoSec risks and embedding a security-first mindset within that team.
Taken ownership of identified risks assigned to CloudOps team, and create and manage associated risk treatment plan.
You will have supported/worked on production services with at least one cloud provider (AWS, GCP, Azure)
Designed or implemented and built new cloud infrastructure
Docker-based application packaging/distribution experience
Running docker services in production under Kubernetes, ECS or another orchestration system
You will have worked with continuous integration systems (Gitlab CI, Jenkins)
You will have good Python development skills
25 days' holiday
Flexible working hours
Company pension scheme
Company health care plan
Season ticket loan
Cycle to work scheme
£2000 training and development budget
Sign up for our newsletter to stay up to date on news from Balderton, and our portfolio.