Security Analyst


Mambu logo
Apply now Apply later

Posted 1 month ago

Mambu is the leading SaaS core banking engine. If you’re a customer of the largest digital bank in the EU, then you’ve probably interacted with our platform and didn't even know it. We are at the heart of what makes digital banks and lenders work - the system that processes banking transactions and updates accounts and other financial records from deposits to loans and credit balances. But we are different. We are not just cloud-native, lean and flexible - we are helping to revolutionise financial services globally. We are in a growth phase and we’ve only just begun.
To help us on our mission, we bring together people with the best skills and attitude. It doesn’t matter where you are from, what matters is the impact you have and your passion to make a difference.
To continue our success story we are looking for an Security Analyst who will implement, enhance and manage security technologies, practices and training that support the mission to protect Mambu’s services and the information managed by its services from an application and infrastructure perspective. 
You will enable engineers’ autonomy on the management of security concerns and fix through education. Also, you wil strongly collaborate with Ecosystem Tribe engineers to evangelize by example: detection, analysis, understanding, mitigation, and permanent fix of vulnerabilities. The cherry on the top will be the governance over internal policies, contractual, legal and regulatory obligations.

Your Day-to-Day Activities:

  • Support in ensuring that all Tribe deliverables meet the high Mambu Security Standards

  • - Review the architecture of all connectors from a Security point of view- Review all implementations to ensure they follow the Security guidelines- Review infrastructure deployments from a Security point of view- Review vendors and tools from a Security perspective- Review security related events and incidents- Support integration partners due diligence from a security perspective
  • Implement the Security mindset inside the Tribe

  • - Create and deliver Security trainings inside the Tribe, with applicability on the engineer’s day-to-day work- Create and deliver trainings for Security tooling that is adopted in the Tribe- Create and maintain security practices to assure that engineers can assess and fix vulnerability independently- Create and maintain metrics and dashboards demonstrating Security for the Tribe’s practices and deliverables- Participate in Security Incidents resolution with the team and update existing practices with the new findings
  • Ensure Security alignment and compliance by the tribe with outside experts

  • - Support internal (Mambu) and external auditors with penetration testing, security and compliance checks- Review and understand reported vulnerabilities from different sources, support the team with necessary response actions and root cause analysis and prepare responses within agreed SLAs- Advice on vulnerability ratings for vulnerabilities that are reported- Prepare and participate in Audits and Compliance checks

Who you are:

  • 2+ years of experience as a Security Expert in the Software Industry
  • Understanding of cloud native applications and distributed systems
  • Knowledge of information security principles (ie. Confidentiality, Integrity, Availability) and their application in SaaS solutions (ie. cloud computing, web applications, networking)
  • Good knowledge of Security Standards (ISO 27001) and GDPR
  • Lean & Agile Engineering Mindset: Automation comes first. Constantly working on increasing security and adjusting practice and processes to support continuous flow and business delivery
  • Learner vs. Knower attitude: Curiosity and desire to find the truth comes first in every interaction. Not afraid to make mistakes and not to be always right. Asks more questions than provides statements.
  • Proactive Attitude: Suggests and implements changes based on “connecting the dots” on things that come up repeatedly. Find creative elegant solutions for issues in close collaboration with the teams without introducing security as a blocker.
  • Honesty & integrity: Does not cut corners with regards to ethics. Earns trust and maintains confidence. Does what is right. Speak plainly and truthfully.
  • Both independent, with high autonomy, and team-working ability
  • Strong communication, organizational and problem-solving skills
  • Very good English level
  • Ability to review Low Code implementations is a Plus

Compensation and benefits:

  • Competitive salary;
  • Flexible working hours;
  • Pre-paid parking ticket at Palas / Monthly bus pass;
  • Monthly digital meal tickets;
  • Easter and Christmas gift tickets;
  • Private Health Insurance;
  • 21 days of holiday;
  • Summer schedule (4-days/week);
  • Therapeutic massage;Sports package;
  • Eye glasses vouchers;
  • Fruits, coffee, tea, sweets, popcorn machine and many others;
  • Standup Desk in a very modern office and access to the best logistics;
  • Professional career growth by providing access to training and conferences.

Why Mambu?

  • Mambu has over 250+ live deployments, helping to revolutionise financial services in more than 46 countries globally, and we're just getting started;
  • We understand nothing ensures our customers' success more than a happy team, so Mambu is built on a culture of trust and a sense of ownership in everything we do;
  • Mambu proactively takes the initiative to improve the industry for the better;
  • Mambu is using top tool for development activities;
  • Because you want more, you want to know how your lines of code impact the world.

More about us:
To stay on top of the latest Fin-Tech trends and our success stories, please follow us on LinkedInFor more details regarding our global career opportunities, please visit Career Site

Job tags: Architecture Audits Automation Banking GDPR ISO 27001 Penetration testing SaaS Vulnerabilities
Job region(s): Europe
Share this job: