LHV Bank, a fully licensed UK bank, specialises in Banking Services for global fintechs and SME Lending solutions for UK businesses. The SME Lending division offers commercial real estate investment loans and trading loans from £0.5m to small and medium-sized businesses in the UK.
As a leading Banking Services provider, LHV Bank delivers a wide range of services, including real-time multi-currency payments, accounts, acquiring, indirect scheme access, open banking, and FX solutions. Over 200 renowned fintech companies, such as Airwallex, Currencycloud, Truelayer, and Wise, utilise LHV Bank to serve more than 10 million end customers and access a pool of 500 million potential customers across the UK and Europe.
LHV Bank gained its UK banking licence in May 2023 and launched into the retail savings market through deposit aggregators in August 2023. It is in the process of developing its direct to customer retail banking proposition for launch in 2024. More information: lhv.com
The Role
We are seeking a motivated and detail-oriented Security Engineer to join our security team. The ideal candidate will have foundational knowledge in cloud security, network security, and cryptography, and a strong desire to learn and grow in a fast-paced environment. This role will report to the Senior Cloud Security Engineer to manage the security of our AWS cloud infrastructure, collaborating with cross-functional teams, and contributing to the continuous improvement of our security posture.
Please note this is a Hybrid role but we do ask candidates to be in the office 2-3 days a week in Manchester.
Duties and Responsibilities:
* Review and design AWS architecture with Engineers.
* Work closely with cross-functional teams, including developers, DevOps, and compliance teams, to integrate security into the development lifecycle.
* Alerting on any public facing services/resources (such as public S3 buckets) and providing optimal solutions for Engineers.
* Participate in the security on-call ROTA with the wider security team to respond to P1/P2 incidents escalated by the SOC, ensuring timely investigation, resolution, and communication with stakeholders.
* Communicate security risks and recommendations to leadership and relevant stakeholders - contributing to monthly and quarterly ExCo + BRC security posture reports.
* Continuously assess and improve security processes and controls.
* Consult and provide guidance against best practices for AWS services and features and maintain security reference architectures and patterns.
* Configure AWS Virtual Private Cloud (VPC) and maintain network segmentation.
* Manage AWS security groups + Network Access Control Lists (NACLs) and fine-grained control over inbound and outbound traffic. Review any changes for unauthorized changes and inform Infra team.
* Manage AWS WAF (Web Application Firewall) and AWS Shield to protect against DDoS attacks.
* Work with Infra team to manage AWS Key Management Service (KMS) and SSL/TLS + supported cipher suites and alert on any unauthorized key deletion.
* Ensure data stored in AWS services like Amazon S3 and Amazon RDS is encrypted appropriately. With regular compliance reviews.
* Develop and deploy automation scripts and tools for security tasks.
* Implement Infrastructure as Code (IaC) security checks (Terraform) - basically providing the secure modules which engineers use to deploy latest builds.
Skills and experience:
* Significant experience within a similar cloud engineering role.
* Experience with Terraform creating Infrastructure as Code.
* Knowledge of AWS native security services.
* Experience maintaining Web Application Firewalls is beneficial.
* Knowledge of Cloud Security Standards PCI DSS/NIST/CIS.
* Experience managing, supporting, maintaining and improving the security of cloud infrastructure.
* Experience working in the financial sector is beneficial.
* Experience supporting the organizational adoption of cloud infrastructure is beneficial.
Some of our benefits:
* Competitive salary & progression.
* Open and inclusive culture.
* Hybrid working.
* Fantastic offices and great working environment.
* Vitality Health Plan (includes private health insurance, travel insurance, gym discounts).
* Medicash health plan (Level 3).
* 5% employer pension contribution.
* Life assurance.
* Income protection insurance.
* 28 days holiday plus 3 additional days, bank holidays & further days for various key life events.
* Team socials.
#J-18808-Ljbffr