Our goal is to create a world where communities and individuals prosper. By enhancing our clients financial security, we enable them to accomplish amazing feats like purchasing a house, starting a business, or setting aside money for various purposes.
We are seeking a skilled Security Engineer to collaborate with our Security Partner in our Assurance Chapter to oversee and enhance our Platform's security controls posture by offering a thorough technical understanding of security threats and potential vulnerabilities.
Responsibilities
Assisting our teams in aligning and gathering data against rules to achieve operating effectiveness.
Helping Assurance and Security Partner teams find ways to automate the gathering of evidence.
Offering technical guidance to groups regarding the appropriate application of security setups, including IAM, network policies, API authentication, and other cloud-based components.
Encouragement of the teams to create safe CI/CD pipelines
Helping the Security Partners analyze vulnerabilities and Pen-test results that could impact parts of the solution that aren't application-code-specific.
Specifying policies in assurance tooling as code.
Testing novel security tools and implementations through proof of concept operations.
Collaborating with other security engineers and penetration testers to assist in the creation of threat models and misuse scenarios.
Qualifications
Must have
A desire to learn about and discuss new technical and security opportunities in a wide forum.
Practical understanding of one or more security standards and frameworks.
Experience with cloud engineering and familiarity with cloud security standards.
An understanding of the code review process, CI/CD tools, and software development life cycle.
Capacity to write automation and policies in code.
Participate in the discoveries, triage, and action suggestions of vulnerability management.
Find fresh chances for security automation by applying your study and analytical abilities.
Have the capacity to absorb and comprehend in-depth security requirements.
Capable of solving day-to-day issues through efficient communication with both security and non-security parties.
Fluent in English both verbal and non-verbal communication
Nice to have
Experience with security and compliance in financial services.
An understanding of Kubernetes and Google Cloud Platform.
Proficiency in creating safe guards for SaaS and PaaS-oriented services.
Expertise in developing and constructing novel software systems and their integrations.
Proficient in programming languages like Go, Java, or comparable ones.
Report design for stakeholders, with a focus on compliance and security posture.
Salary and Benefit
Hybrid working mode (3 working days at office, flexible time)
18 paid leaves/year
Insurance plan based on full salary
Attractive Package including 13th month salary and Performance bonus
100% full salary and benefits as an official employee from the 1st day of working