Senior Security Engineer

Award - The Best FinTech Trading Platform of The Year 2019.

Zeal group of companies (collectively Zeal Group) is a business portfolio of the parent company Zeal Holdings Limited, comprising regulated financial institutions and fintech companies specializing in multi-asset liquidity solutions in regulated markets backed by proprietary technology.

We are a people focused business and our team of 500+ professionals globally are dedicated to maximizing the success of our employees and customers. Headquarter is located in the UK with global presence in 12 countries across Asia, Middle East, & Europe with 22 offices internationally.

The estimated monthly trading volume in an average of USD 100B executed by 100,000 retail investors, professional traders, and financial institution clients.

Principal Accountabilities

• Provide consulting services to Development, Infrastructure, Business Departments and vendors regarding Information Security and Risk management
• Support IT and Business departments with risk analysis programs (Risk assessment management matrix)

• Provide appropriate review and quality assurance as preparation for upcoming audit (external and internal)
• Provide appropriate review and risk assessment of external connectivity and services facing Internet/DMZ, review and confirm high/medium risk changes (dual control and 4 eyes principle)
• Provide Development, Infrastructure, external vendors with guidance on the risk resolution and risk mitigation processes
• Develop in cooperation together with Infrastructure platform engineering forces the core build for the company
• Implement security related products and controls (like SIEM, DLP, security tools, etc)

• Participate actively and support company security driven projects and initiatives
• Create security processes and technical best practices for their implementation across all IT functions, setup security and quality management process within the company
• Work closely with Development and Infrastructure teams to develop secure best practice solutions
• Build and define an overall application and infrastructure security approach for use across the company
• New solutions research and development

• Work closely with Compliance and HR teams to ensure the execution of information security related awareness program in the company globally
• Participate in selection, implementation, and support of company’s Information Security systems.
• Deliver SIEM and SOC solutions
• Build and manage the on boarding of new security tools to SIEM (Security Incident & Event Management), infrastructure processes and SOC (Security Operations Centre)
• Manage security incidents in interaction with other support and business functions

• Drive engineering, architecture, and reporting quality improvements.
• Provide, manage, and report on deliverables as a member of the team (design deployment and support documentation, support procedures and handover to other teams)
• Budget management and requests for approval of spend
• Provide consultancy to other teams, contribute to the projects and day-to-day activities
• Contribute to the management of the technology direction and roadmap of security tools, investigate technologies, run proof of concepts and testing

Requirements

• At least 3 years of experience in a Fintech or Financial services environment, in a senior position
• Expert knowledge and solid technical expertise on information security

• Security products knowledge (antivirus/malware scanning blocking, anti-spam, enterprise security suits) current internal and external network threats
• Information security principles for business applications practical knowledge is a plus
• Information Security experience in international financial institution is a strong plus
• Solid knowledge of WINTEL and UNIX platforms and surrounding technologies
• Advanced knowledge of Networks design and architecture – firewalls, proxies, etc

• Advanced knowledge of Databases security design and architecture (MySQL and PostgreSQL)
• Banking/Finance applications overview, trading and infrastructure platforms, application flows
• ITIL knowledge (change control process, change management, problem/incident management, procedures, guidelines, etc)
• Team player with energy and a desire to progress in a fast moving, demanding and progressive environment
• Good communication skills, result driven and pro-active approach, responsible, ready for overtimes

• Good presentation, leadership and communication skills
• Project management skills, vendor management
• Ability to thrive under stressful situations
• Able to deal with the tasks with minimum information and troubleshoot/perform on the fly
• CISSP and / or CISA certifications would be a benefit

• English language is a must

Benefits

• Bonus structure for each job role
• Paid 21 days of holidays per year and 10 additional days for national holiday
• Training opportunities for growth and expansion of knowledge
• Ability to work remotely
• Flexible and hybrid schedule – we value work-life balance
• Referral Bonus Program