Senior Cloud Security Engineer - Sponsorship

Senior Cloud Security Engineer - Sponsorship Remote

Form3 Financial Cloud
Full Time Remote 10.56 - 12.04 GBP Today
Job description

Location

100% Remote (UK/EU*)

Share this position

Our Cloud Security Team are focused on enhancing Form3’s ever growing cloud-native environments. From reviewing cloud-agnostic architectures, to implementing some of the newest tools and technology or even build your own. This opportunity encompasses the full spectrum of Security Engineering allowing you to specialise and develop your skill-set to a new level.

*** We provide sponsorship in the UK, Netherlands, Germany ***

We accept applicants from any country in the world.

WHO ARE WE?

Launched only 5 years ago in London, Form3 have gone from start-up to scale-up at a sensational pace and are now considered one of the top FinTech’s to work for in the UK & Europe. We are currently looking to further build out our platform as we enter new international markets whilst scaling the team by 700% as part of our jaw-dropping 5-year roadmap!

VISA SPONSORSHIP

Our NEW SPONSORSHIP INITIATIVE provides an exciting opportunity to relocate to the UK, Netherlands or Germany and collaborate with top engineers to revolutionise the world of payment technology and security. Once relocated you can work 100% remotely!

THE TEAM

The team is comprised of our Defensive and Offensive Engineering teams alongside our Information Security Officers, whilst our CISO leads the operation. Our security team interact with the product and platform engineering teams across the company to promote best practices and awareness. They’re continually baking security into our culture, utilising new technologies and open-source tools to ensure high standards of security are maintained.

THE ROLE

We are expanding the Security Engineering team extensively, meaning that there are many skill-sets and experiences required. Your place within the team will depend on your individual strengths and interests, to give you an idea of some of the areas that of expertise we are looking for, here are some of the key projects/ workloads our team take on:

  • Creating a Secure Software Development Lifecycle (SSDLC)
  • Securing our cloud-native (AWS, GCP and Azure) distributed system architecture
  • Creating security tools and implementing them to enhance our specific security landscape
  • Advocating the DevSecOps mindset that we have created across our engineering teams

THE TECH

  • Infrastructure: AWS, GCP, Azure, Kubernetes (this will increase as we go cloud-agnostic)
  • Platform: CockroachDB, EKS, GKE, PostgresDB, Vault, Consul, Linkerd, Cilium, NATS
  • Tools: Terraform, Github, Flux, Prometheus, Pact.io, TFSec, Travis CI
  • Code: Go, (a little Java), CQRS, Open-Source, Python (Security tools)
  • Ways of working: DevSecOps, GitOps, TDD/BDD, Pair Programming, 100% Remote

WHAT WE'RE LOOKING FOR

  • Experience in securing SDLCs, conducting SAST and DAST testing, threat modelling, code analysis and incident management. Our engineering teams are constantly developing new products that are added to our singular API gateway so the CI/CD pipeline must be secure by design.
  • Ability to create, deliver and enhance security of cloud-native distributed systems (we use AWS and GCP at present with Terraform as our Iac tool), following the best practices and implementing security controls post assessment. We are also looking to become cloud-agnostic meaning there will be opportunity for you to showcase your abilities across other cloud platforms.
  • Strong programming skills, we are flexible on languages, we use Go as our main language for production so a willingness or interest to learn Go is fundamental. In security we write our own scripts for automation in Python, Go and other languages while contributing to open-source tools so we can utilise them.
  • Familiarity with containerisation and microservices architecture security concepts is also crucial to being successful in this role.
  • Willingness to be part of the on-call rota.

DESIRABLES AND YOUR SPECIALISMS

SDLC Based:

  • 3+ Years of expertise in Kubernetes, securing clusters and meshes (Cilium is preferable), networking best practices and RBAC implementation (CKA, CKS qualifications are a plus)
  • Experience in hardening Linux OSs
  • +3 Years of container security knowledge including container image provenance (Sigstore and Notary as examples) with an in-depth knowledge of container runtimes/ Docker and the security controls and best practice that surround microservice architectures
  • Involvement in DevSecOps operations within Agile environments on to CI/CD pipelines (Travis CI and Flux are our tools) with the ability to choose the right tool to fit purpose
  • Hands on work within agile DevOps environments that follow the DevSecOps best practices, where you expressed the ability to choose the right tool to fit purpose
  • CI/CD pipeline (Travis CI and Flux are our tools) security management

Wider Security:

  • Hands on experience taking your company through any of the following ISO27001, ISAE3000, SOC2/1, GDPR, PCI-DSS
  • Previous experience in developing security road maps and architectures alongside Security Architects in cloud-native or hybrid-infrastructures including network security (AWS solutions architect or GCP professional cloud architect are a plus)
  • Previous experience in network security, preferably in hybrid infrastructure based environments, you will have managed, switches, network segmentation, ports and firewalls across the entire OSI model.

Personal Interests:

  • Keen interest in new and emerging threats, vulnerabilities and adversary advancements coupled with the ability to present these to the wider team
  • Active contributor to open-source projects and passion for developing internal tools (our engineers were some of the main contributors for TFSec)
  • Additional Qualifications (nice to have but not necessary): OSCP, CASE, CCSP, AWS Security Specialist or GCP Professional Cloud Security Engineer
BENEFITS
  • 30 days annual leave plus public holidays
  • Remote friendly environment
  • Remote working equipment allowance
  • Health and wellness allowance
  • Flexible working arrangements
  • Learning days, Udemy and educational reimbursements
  • Primary caregiver leave
  • Full details are available on our careers page
Form3 appreciates that we all lead different and often really busy lives. We work remotely 100% of the time and many of us work part time. If you’re interested in hearing what different flexible working arrangements may be available, we’d love to chat.

ABOUT US
We are an award-winning cloud-native payment technology provider for financially regulated institutions. Launched in 2016, we've doubled in size year on year as we continue to redefine what a truly instant payment experience means.We celebrate diversity, promote entrepreneurialism and are committed to giving everyone a say in shaping our business. Here you will grow as a person and accomplish incredible things. A career at Form3 is empowering, inspiring and fun. Join us and help shape the future of payments.


OUR DEI&B COMMITMENT

We hire talented people from a variety of backgrounds and experiences and are committed to a work environment based on diversity, open-mindedness and curiosity. We’re united by our company values (we even created them together!) and we celebrate our unique differences.

Our employee lifecycle processes are designed to embrace equal opportunity and prevent discrimination against our people regardless of personal characteristics. It is our strong belief that the more inclusive and belonging we are as a business, the better our work will be.

As an inclusive employer, we guarantee to interview all neurodiverse and physically disabled applicants who meet the minimum criteria for this role. We also encourage candidates to notify us of any reasonable adjustments that may be required during the recruitment process. This includes providing job adverts in alternative, accessible formats or adjustments required at interview stage.

If you consider yourself to be neurodiverse or physically disabled under the UN definition of disability and would like to be considered under this scheme and/or require any reasonable adjustments please let us know by sending an email to [email protected] clearly stating your consent for us to process this data.

For more information please refer to our Recruitment Data Policy.

Senior Cloud Security Engineer - Sponsorship
Form3 Financial Cloud

https://www.form3.tech/
London, United Kingdom
Michael Mueller
Unknown / Non-Applicable
501 to 1000 Employees
Company - Private
Financial Transaction Processing
Finance
2016
Related Jobs

All Related Listed jobs

Customer Service Advisor
EE Merthyr Tydfil, Wales 21408 GBP ANNUAL Today

Huge discounts of EE & BT products including your Mobile and Broadband saving you hundreds of pounds every year. Salary: 21,408 plus regular bonuses.

Customer Service Assistant
Tyneside Cinema Newcastle upon Tyne, England 10.9 GBP HOURLY Today

Ensure accurate and safe cash handling. Experience of working in a fast-paced environment. Encourage guests to engage with the full Tyneside Cinema offer Have

Starbucks Barista
Village Hotels - Warrington - Starbucks Warrington, North West England, England Today

Pay attention and take pride in getting to know your regular customers and welcoming new ones. Flexible and home working opportunities.

driver
AVAIL LOGISTICS Launceston, England 40000 - GBP ANNUAL Today

AVAIL drivers earn more...


Do you want to earn more for every hour you drive?

Higher wages, paid weekly and more freedom to...

Client Account Manager
UBS London, England 40000 - 52000 GBP ANNUAL Today

Experience dealing with private clients and supporting client advisors. Be point of contact for clients with account queries, stock orders, payments, etc.