Cloud Security Engineer

Our Story Hello there. We’re Zopa. We began our journey in 2005 with the drive to deliver customer-first financial products. Fast forward to 2020, we shifted gears and became a digital bank, leveraging our customer knowledge, money expertise and technical agility to forge ahead. Our diverse team is united by a mission to create simple, fair and honest financial products that have the customers’ needs at their heart.  We’re regularly recognised at industry awards for our game-changing products and are proud to be one of the market leaders in consumer lending in the UK. But our work doesn’t stop there.   After securing £220 million in our 2021 funding round led by SoftBank, we’ve entered the next stage in our journey. So far, we’ve lent out over £6 billion and made money work better for over half a million people across the UK who were looking to borrow or save with us. In less than 2 years after becoming a bank, we hit £1 billion in customer deposits and we’re also a top 5 credit card issuer in the UK. And this is just the beginning. We’re set on achieving big things with ambitious growth targets to match. This means there's a range of opportunities for you to excel and develop through a career at Zopa, while building better banking products that truly matter to our customers.     If you embrace unconventional challenges, are unafraid to think differently and are driven to make an outsized impact, you’ll thrive here at Zopa. For a closer look at our culture, check out our latest video here. And if you want to join us, have a look at our current open roles!What's the challenge? The ZRE Security team are part of Zopa Reliability Engineering (ZRE) and are responsible for ensuring our Platform & Infrastructure is secure, and meets the controls required in a regulated environment. As a Cloud Security Engineer, you will be an owner for ZRE security work, whilst helping ZRE to maintain a strong security posture. This includes proactively aligning our platform/infrastructure with our InfoSec policies and standards, whilst defining work for remediation and improvement. You will be a champion for Security both within the ZRE team and in the wider business, helping to encourage a security mindset in everything we do. All the while automating consistently and helping to design and support the technology infrastructure to help Zopa grow.

Responsibilities:

• Work with our Infosec team to triage and define security work coming into ZRE
• Define remediation plans for security issues
• Define our AWS Account security baseline, including management of common Security controls using Organisations
• Contribute a security perspective to design discussions for new projects within ZRE, and the wider business
• Automate to improve response to security issues and reduce toil
• Use Threat Modelling to identify vulnerabilities and attack vectors across our infrastructure

About you:

• In-depth knowledge of AWS (Organisations, IAM, VPC Networking, KMS, GuardDuty, CloudTrail, Config)
• Experience using Infrastructure as Code (e.g., Terraform)
• Strong knowledge of Containers and Orchestration (Kubernetes, Docker)
• Experience with Linux administration, hardening and troubleshooting
• Operational experience with HashiCorp Vault (ACL management, auth methods, secret engines)
• A passion for Information Security, with experience applying this to Cloud Operations
• A well-rounded understanding of foundational security concepts including best practices and how to apply them. Such as, Threat Modelling, OWASP Top 10 & common vulnerabilities, PKI, TLS
• Comfortable with scripting languages e.g. Bash, Python, PowerShell
• Functional understanding of Networking & common protocols

Nice to have:

• Experience working in an FCA regulated organisation, ideally within the financial sector
• Exposure to Active Directory
• Hands-on experience with Networking e.g., CCNA or experience with physical networks

#LI-MW1Flexible working? Yes please!Whether you want to come into our open-plan, riverside London Bridge office or work from the comfort of your own home (or both!), you’ll be able to decide on an approach with your manager, looking at what works best for you, your role and your team.Not only that – you'll also have the option of working from abroad for up to 90 days a year!* But no matter where you are, we’ll make sure you’ve got everything you need to thrive, both in your work and home life, from day one. *Subject to having the right to work in the country of choiceTo thrive here, you’ll need to: Champion our customers. Whatever your role, you’ll be close to our customers. We care passionately about doing the best for them.  Help us make fearless choices. Our environment is fast-paced, agile and open. You’ll solve interesting and challenging problems, and be trusted and empowered to bring your ideas to life. Walk the talk. Like us, you’ll be honest, stick to your promises and face the tough moments head-on. Win smarter. You’ll be always on the lookout for a better way of doing things, going beyond ‘good enough’ and welcoming different points of view. Be in it together. You’ll join an ambitious, diverse and all-round approachable team with a mix of ideas and talents who inspire each other to be better every day.  Zopa is proud to offer a workplace free from discrimination. Diversity of experience, perspectives, and backgrounds leads to great products and unique company culture. We simply can’t expect to empower our customers to better manage their money without challenging the current status quo. Creating the best place for money is no easy task, which is why we need talent from all walks of life.