Information Security Officer
London (flexible/remote working)
Applications have closed
Form3
Form3 are revolutionising the way payments work from channel to payment scheme. We have developed an enterprise-grade, managed, payment technology platform that integrates across multiple payment schemes, and connects into your payment systems...THE TEAM
Our awesome Security team consists of Information Security Officers, Cloud Security Engineers and Ethical Hackers and we're now looking to grow this team.
THE ROLE
This is a challenging, exciting, varied and broad role. Some key duties include responding to alerts from the SIEM, Vulnerabilities Management with Qualys, managing and implementing security tools such as DLP and IPS, co-ordinating pen test and security remediation with the engineering team, Risk Management, updating Risk Register and Continual Improvement log where security issues have been identified, updating documentation when required, and participation in internal and external audit activities.
Some of our main security tools: Cloudflare, Trend Micro Deep Security, Alienvault USM, Carbon Black, Qualys, Jamf, Snyk, AWS GuardDuty, AWS Cloudtrail, AWS IAM, AWS Shield, Ubuntu Landscape, Vault, Auth0.
Occasional travel to our London office will be required.
WHAT WE'RE LOOKING FOR
ESSENTIAL
- 5+ years in Information/Cyber Security.
- A technical background.
- Working knowledge of security frameworks and security controls e.g. NIST CSF, ISO22301, IS027001, ISAE3000/SOC2, SOC1, GPR and PCI DSS.
- Exposure to security operations and application security best practices.
- Experience developing, writing, implementing, auditing and improving information security policies and procedures aligned to relevant industry frameworks/standards to ensure that security and compliance accreditations are achieved and maintained.
- Perform periodic internal audits, reviews and contribute to the continuous improvement of IT security standards, processes and procedures.
- Ability to perform Business Impact Analysis, risk assessment and treatment.
- Experience operating, maintaining, auditing and improving Vulnerability Management, SIEM and Threat Intelligence systems.
- Relevant certifications (CISSP etc.)
DESIRABLE
- Experience in security incident response, forensic security investigations, management and remediation of identified and day zero vulnerabilities, alerts, threats and breaches.
- Public Cloud Security experience.
BENEFITS
- 30 days annual leave plus Bank Holidays
- Remote friendly environment
- Remote working equipment allowance
- Health and wellness allowance
- Flexible working arrangements
- Udemy and educational reimbursements
- Full details are available on our careers page
Form3 appreciates that we all lead different and often really busy lives. We work remotely 100% of the time and many of us work part time. If you’re interested in hearing what different flexible working arrangements may be available, we’d love to chat.
ABOUT US
We are an award-winning cloud-native payment technology provider for financially regulated institutions. Launched in 2016, we've doubled in size year on year as we continue to redefine what a truly instant payment experience means.
We celebrate diversity, promote entrepreneurialism and are committed to giving everyone a say in shaping our business. Here you will grow as a person and accomplish incredible things. A career at Form3 is empowering, inspiring and fun. Join us and help shape the future of payments.
EQUAL OPPORTUNITIES
At Form3 we embrace equal opportunity and are committed to building a diverse team of exceptional individuals. We do not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, age, marital status, or disability status and it is our strong belief that the more inclusive we are as a business, the better our work will be.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: AlienVault Application security Audits AWS CISSP Cloud Cloudflare Compliance IAM Incident response IPS ISO 22301 NIST PCI DSS Qualys Risk assessment Risk management SIEM SOC 1 SOC 2 Threat intelligence Ubuntu Vulnerabilities Vulnerability management
Perks/benefits: Career development Flex hours Health care Team events Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open Clearance-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs