Security Engineer
at Moneyhub
Remote, Scotland, United Kingdom -
| Start Date | Expiry Date | Salary | Posted On | Experience | Skills | Telecommute | Sponsor Visa |
|---|---|---|---|---|---|---|---|
| Immediate | 25 Oct, 2024 | Not Specified | 27 Jul, 2024 | N/A | Communication Skills,Oauth | No | No |
Required Visa Status:
| Citizen | GC |
| US Citizen | Student Visa |
| H1B | CPT |
| OPT | H4 Spouse of H1B |
| GC Green Card |
Employment Type:
| Full Time | Part Time |
| Permanent | Independent - 1099 |
| Contract – W2 | C2H Independent |
| C2H W2 | Contract – Corp 2 Corp |
| Contract to Hire – Corp 2 Corp |
Description:
WHO ARE WE AND WHY DO WE DO WHAT WE DO?
We are a data and payments company on a mission! We’re a group of developers, financial experts, and optimists who share a vision for improving the financial wellness of people, their businesses, and their communities.
We started this company with the aim of changing how the industry used and viewed data. As architects of Open Banking, Open Finance, and Open Data, we strive to be a force for good — changing the status quo of how businesses interact with people. We strive to serve the whole population through every change in their finances.
We do this by powering businesses through our APIs and Personal Finance Tech solutions as well as our own personal financial management app for consumers.
We can only do that by being an inclusive and diverse organisation. We invest in our people, and enjoy an environment focused on innovation, collaboration and openness.
Requirements:
- Good experience with Node.JS and containerised applications
- Experience with OAuth 2.0 token-based authentication
- Strong problem-solving and communication skills, including very strong documentation skills.
- Ability to work independently and as part of a team
- Knowledge and experience of the OWASP Top 1
Responsibilities:
We are seeking a Security Engineer to join our DevOps and Platform Team. As a Security Engineer, you will be responsible for working with our dev teams to ensure that our system is secure and that we follow best current practices with regards to API, Mobile, Web and Infrastructure security. You will work closely with the DevOps and Platform team to identify and address security issues, and implement appropriate measures to protect our systems and data.
Responsibilities:
- Work with dev teams to review and ensure the security of our system and compliance with best current practices, and helping product teams prioritise security tasks.
- Identify and address security issues within the system
- Implement appropriate measures to protect our systems and data; this may include making code changes
- Arrange and liaise with external security vendors, for example pentesters
- Collaborate with the DevOps and Platform team to identify and address security issues
- Contribute to the development and maintenance of security documentation
- Collaborate with the wider DevOps and SRE team to help with operations, especially from a security perspective
- Maintain Infosec and Cyber security ISO controls.
- Support prospects and clients with security governance or due diligence responses.
Requirements:
- Good experience with Node.JS and containerised applications
- Experience with OAuth 2.0 token-based authentication
- Strong problem-solving and communication skills, including very strong documentation skills.
- Ability to work independently and as part of a team
- Knowledge and experience of the OWASP Top 10
Nice to have:
- Experience with key based authentication - mutual TLS and JWT
- Experience with modern security tooling, including SAST and DAST products
- Experience with AWS
- Experience as a JavaScript developer
- Experience with Snyk or similar and how to gain maximum benefit across development teams.
REQUIREMENT SUMMARY
Min:N/AMax:5.0 year(s)
Information Technology/IT
IT Software - Network Administration / Security
Software Engineering
Graduate
Proficient
1
Remote, United Kingdom
