Cloud Security Engineer
LHV Bank, a fully licensed UK bank, specialises in Banking Services for global fintechs and SME Lending solutions for UK businesses. The SME Lending division offers commercial real estate investment loans and trading loans from £0.5m to small and medium-sized businesses in the UK.
As a leading Banking Services provider, LHV Bank delivers a wide range of services, including real-time multi-currency payments, accounts, acquiring, indirect scheme access, open banking, and FX solutions. Over 200 renowned fintech companies, such as Airwallex, Currencycloud, Truelayer, and Wise, utilise LHV Bank to serve more than 10 million end customers and access a pool of 500 million potential customers across the UK and Europe.
LHV Bank gained its UK banking licence in May 2023 and launched into the retail savings market through deposit aggregators in August 2023. It is in the process of developing its direct to customer retail banking proposition for launch in 2024. More information: lhv.com
The Role
We are seeking a motivated and detail-oriented Security Engineer to join our security team. The ideal candidate will have foundational knowledge in cloud security, network security, and cryptography, and a strong desire to learn and grow in a fast-paced environment. This role will report to the Senior Cloud Security Engineer to manage the security of our AWS cloud infrastructure, collaborating with cross-functional teams, and contributing to the continuous improvement of our security posture.
Please note this is a predominantly office-based role that requires you to be in the office 2-3 days a week in Manchester.
Duties and Responsibilities:
- Oversee AWS security services, tools, and processes, including alerting on risks, managing IAM policies, and enforcing the Principle of Least Privilege (POLP).
- Collaborate with cross-functional teams to promptly remediate vulnerabilities, manage AWS WAF, and DDoS protections, monitor for security incidents, and lead incident response efforts, including investigating breaches and recommending corrective actions.
- Provide guidance on AWS best practices, maintain security reference architectures, and ensure compliance with cloud security standards through continuous assessment and improvement.
- Develop and deploy automation tools to streamline security operations, monitor public-facing resources, and optimise solutions for engineers.
- Communicate security risks and recommendations to leadership, maintain security documentation, and conduct training to educate stakeholders on best practices.
- Maintain WAFs, monitor for security incidents, and lead incident response efforts, including investigating breaches and recommending corrective actions.
- Stay updated with the latest AWS security updates and best practices. And provide training to development teams and business stakeholders on cloud security policies and procedures.
Skills and experience:
- Current experience within a similar cloud engineering role
- Experience with Terraform creating Infrastructure as Code.
- Knowledge of AWS native security services
- Experience maintaining Web Application Firewalls is beneficial
- Knowledge of Cloud Security Standards PCI DSS/NIST/CIS
- Experience managing, supporting, maintaining and improving the security of cloud infrastructure.
- Experience working in the financial sector is beneficial.
- Experience supporting the organizational adoption of cloud infrastructure is beneficial.
Some of our benefits
• Competitive salary & progression
• Open and inclusive culture
• Hybrid working
• Fantastic offices and great working environment
• Vitality Health Plan (includes private health insurance, travel insurance, gym discounts)
• Medicash health plan (Level 3)
• 5% employer pension contribution
• Life assurance
• Income protection insurance
• 28 days holiday plus 3 additional days, bank holidays & further days for various key life events
• Team socials
Apply for this job
*
indicates a required field