United Kingdom - London
About the role:
* Determine the strategy to secure the company’s platforms, including the Kubernetes technology stack and the legacy solutions, while adapting a pragmatic approach balancing security and development velocity.
* Improve the company’s security standing by developing security features and deploying security products in the company’s cloud infrastructure (account management, network infrastructure, identity and access management, secret management, security monitoring and automation, and production machine access).
* Represent the Security Team as point of contact and source of knowledge in Design Review meetings across Engineering; perform threat analysis, define security controls and security KPIs for implementation and tracking across the organisation.
About the team:
We are a team of experienced security practitioners and hands-on engineers. We manage a complex set of cloud applications and infrastructure, with petabytes of sensitive data flowing through numerous datastores and thousands of cloud compute instances providing the logic for real-time decision making. The team needs to meet the challenge of sophisticated external attacks, while still providing the engineers with a smooth development experience. We work with every engineering team on their level, building new products and features while also re-evaluating and overhauling everything that has been built over the years. Our customers are the internal R&D teams, but also Legal, InfoSec, C-level management, and Forter’s actual e-commerce customer companies. We are enablers by nature, and have an excellent working relationship with other teams across R&D.
Why should you join us?
Take an active role with great impact and ownership potential, work independently and within the team to shape the security process across Engineering during an active growth phase of the company.
What you will be doing:
* Design, build, promote, and maintain security infrastructure and tools used by all of Forter's engineering teams.
* Work across teams and functions, think critically, and make hard decisions while making your tradeoffs transparent.
* Perform risk assessments and negotiate with other teams on where to invest effort.
* Mentor and build relationships with “Security Champions” in Engineering to design and build secure applications.
Who are you?
* 3+ years experience working in a security-focused role.
* 3+ years of experience working with public clouds (AWS / GCP / Azure).
* 3+ years of experience with complex software projects (Python / Ruby / Go / NodeJS / etc.) or infrastructure as code tools (CloudFormation / Terraform / Pulumi / etc.).
* Extensive knowledge of every layer of the stack (Hardware / OS / Network / Application / Database / Storage / etc.).
* Hold yourself and others to a high standard when working with production.
* Fluent written and spoken English, excellent listening and presentation skills.
* Experience leading cross-team efforts (champion an idea, get buy-in, and reach widespread adoption).
It’d be really cool if you also:
* Have experience with threat modeling, performing security audits, penetration testing, and SAST tools.
* Have production experience with technologies like Kubernetes, Docker, Istio, Prometheus, Vault, Consul, and infrastructure as code.
* Have published security papers, blogs, or talks, or contributed to open-source application security tooling or standards.
* Have experience with certification and compliance programs such as PCI-DSS, SOC II, and ISO27001.
Benefits include:
* Quarterly company bonus.
* Private health insurance, including vision and dental coverage.
* Restricted Stock Units (RSU’s).
* Generous PTO policy.
* Half day Fridays, every Friday.
* Work from home allowance.
* Pension plan with an option for salary sacrifice.
About us:
Digital commerce is built on trust. At every point along the eCommerce journey, businesses must make a critical decision: Can I trust this customer? Answering this simple question accurately and instantly is powerful—it can accelerate revenue growth and strengthen a company’s connection with its customers. How do we do it? Forter was founded on the insight that it's not about what is being purchased, nor where—but who is behind the interaction.
The Forter Decision Engine finds patterns across more than one billion identities in our dataset. We isolate fraudsters and protect customers—ensuring everyone gets the experience they deserve. Given that trust is central to how we operate, Forter is very much driven by a defined set of values. We attract remarkable talent and have retention and engagement levels that are well above benchmarks. We’re meticulous about strengthening our culture as we grow and ensuring this is an environment where people can have outsized impact.
Trust is backed by data – Forter is a recipient of over 10 workplace and innovation awards, including:
* Great Place to Work Certification (2021, 2022, 2023).
* Fintech Breakthrough Awards – Best Fraud Prevention Platform (2023).
Life as a Forterian:
We are a team of over 500 Forterians spread across 3 different continents. Since 2013, we've raised $525 million from investors such as Tiger Global, Bessemer, Sequoia Capital, March Capital and Salesforce Ventures. We're on a mission to bring trust to global digital commerce so that companies like Nordstrom, Priceline, Instacart and ASOS can block fraud, drive revenue and improve customer experience.
At Forter, we believe unique people create unique ideas, and valuable experience comes in many forms. So, even if your background doesn't match everything we have listed in the job description, we still encourage you to apply and tell us why your skills and values could be an asset to us. By welcoming different perspectives, we grow together as humans and as a company.
Forter is an Equal Employment Opportunity employer that will consider all qualified applicants, regardless of race, color, religion, gender, sexual orientation, marital status, gender identity or expression, national origin, genetics, age, disability status, protected veteran status, or any other characteristic protected by applicable law.
#J-18808-Ljbffr