Ebury is a hyper-growth FinTech firm, named in 2021 as one of the top 15 European Fintechs to work for by AltFi. We offer a range of products including FX risk management, trade finance, currency accounts, international payments and API integration.
Senior Security Engineer - Full-Stack Work Pattern: 4 days in the office, 1 day from home
About the role Ebury is investing in the expansion of its security engineering team to help with security feature implementations across our entire product portfolio. In this role you will be able to work closely with application, platform, and product teams to embed security best practices in every deliverable. You will be joining a team of experienced security professionals with a diverse range of skills and backgrounds.
This hands-on role will present you with many opportunities to work on the technical implementation of security features and controls. You will help develop and drive adoption of our Security Engineering Principles, and you will be a critical part of a growing security programme, autonomous to action on your ideas and own them from start to finish.
You will report to the Head of Security Engineering.
About the candidate You are passionate about security. You have working knowledge of encryption standards, frameworks, and coding best practices. You're aware of the established and emerging security threats for applications and infrastructure design. You have hands-on experience. You have worked on security subsystems such as secrets databases, security automation, CI/CD release pipelines, application hardening, or similar. You're able to analyse applications, systems, and infrastructure to identify key security risks and recommend and drive security improvements. You have full-stack proficiency. Ebury's platform is built on AWS, GCP, and Python. You have developed and reviewed code running on customer-facing production servers or applications. You have a logical mindset and can hunt for bugs and debug code. You know your way around Linux, TCP/IP, and secure software running in the cloud. You understand DevSecOps. You recognise the importance of security-as-code and subscribe to DevOps methodologies to implement your code and socialise your documentation with other teams. You love tooling and code quality. You're proficient with version control systems and automation and produce high quality documentation. You are a team player. You work well with others and have the ability to effectively and succinctly convey points with confidence. You speak the language of software and platform engineers to ensure that security is built into the design of all projects and initiatives across the business. You can contribute to business and security requirements in product evaluations via an RFP process. Experience and qualifications Bachelor's degree in computer science or equivalent experience Understanding of Linux and TCP/IP fundamentals Experience in shell scripting and version control systems, ideally git Experience in Python, JavaScript, Golang or similarly modern object-oriented programming languages Experience with cloud providers such as AWS, GCP, and Azure Experience with containerisation and orchestration solutions such as Docker and Kubernetes
#J-18808-Ljbffr