Lead Security Engineer

About the roleWe’re on a mission to make affordable loans available to more people. We have built award-winning technology to look beyond credit scores and offer fair credit to people ignored by traditional lenders.We have two parts of our business. On the consumer side, we have Abound. Abound has helped us prove that our approach works at scale. While other lenders only look at your credit score, we look at all of the full picture – what you earn, how you spend, and what’s left at the end. We’re able to do this thanks to Open Banking.On the B2B side, we have Render. Render is the platform that allows Abound to make better lending decisions. By better we mean less risky. And less risky decisions mean we can offer customers better rates than they can usually find elsewhere. We’re taking Render global so that more companies can offer affordable credit to their customers.We're looking for a Lead Security Engineer. You will be part of a multi-disciplinary team, responsible for security engineering on a multi-tenant AWS-based lending platform. The role offers a mix of architecture and development challenges, with the unique opportunity to be part of a team that's on the leading edge of lending innovation.Who you are5+ years professional experience as a security engineer3+ years professional experience with AWSA deep knowledge of AWS services, in particular those related to security (e.g. GuardDuty, IAM, Inspector, Network Firewall, and WAF)Proven ability to work with at least one infrastructure-as-code platformProven ability to script in at least one programming languageIdeally, you'll haveExperience defining infrastructure using AWS CDKExperience scripting in PythonWhat you'll be doingAppling a critical eye to the entire software estate to help harden our applications and infrastructure against attackDesigning and implementing a multi-account intrusion detection strategy within AWSHelp coordinate periodic pentesting exercises and resolve any findingsHelp shift security left in the delivery process, by leveraging new tools and services to analyse code and dependenciesManage the flow of relevant events into NewRelic and refine our security monitoring and alertingWhat we offerEveryone owns a piece of the company - equity25 days’ holiday a year, plus 8 bank holidays2 paid volunteering days per yearOne month paid sabbatical after 4 yearsFree gym membershipSave up to 60% on an electric vehicle through our salary sacrifice scheme with LoveelectricTeam wellness budget to be active together - set up a yoga class, a tennis lesson or go bouldering
#J-18808-Ljbffr