Senior Manager Security Engineering

London, England, United Kingdom - Remote

Applications have closed

ClearBank

Financial institutions — from fintechs and crypto platforms, to banks and credit unions — use our API to offer their customers fully regulated banking…

View company page

About us

ClearBank was built on the belief that banking infrastructure would no longer slow down progress. Instead, it’s the catalyst that unlocks the potential to innovate. That’s why our clients — financial institutions from fintechs and crypto platforms, to banks and credit unions — use our API to power their banking infrastructure.

But we wouldn’t be ClearBank without our people. They’re what powers our innovative technology and the reason we love what we do every day. We’re a group of spirited people who are never afraid to challenge the norm – becoming stronger, more energised, and that much better when we’re together. It’s our belief in fairness, autonomy and choice that means our people are empowered with the tools to learn, grow, and contribute to ours and our clients’ success. Interested in joining us? Read on or visit our website for more information.

About the team

The Security team at ClearBank is all about making security easy for engineering teams. We reduce the risk of software being used as an attacker vector for cybercrime and help engineers protect customer data. We are engineers first, we write code and understand how to build quality products, with an added speciality in security. This is a team that has an ambitious roadmap of building great security products, advocate security and reduce the cognitive load for engineers. As a cross cutting concern, we are involved with teams across the bank, as well as working closely with technology leadership to ensure security is baked into what we deliver. Our day to day is split between SDLC improvement activities, building internal security products, aiding with governance, risk and compliance activities as well as building a resilient and scalable security engineering practise. We are a 100% remote team with members all over the UK. If you are based near a ClearBank office hub (Bristol/London) then you may choose how often or little you wish to be in the office!

About you

You’re an experienced software engineering professional with a specialty in security. You will have delivered SDLC transformation initiatives and are experienced in roadmap development and execution. You’re self-motivated, have great communication skills and clearly articulate your plan to a range of stakeholders, and our comfortable as part of the senior leadership teams within engineering. You understand that your job is to build a sustainable quality security engineering capability, including recruitment, career planning, and org design to support your vision.

As Senior Manager for security engineering you will be responsible for a team of 8 security engineers, including recruitment, retention and personal development of the team and its junior managers. Some days you will act as scrum master, some days as product manager, some days as architect – you are flexible to make up the role mix within the teams to ensure they succeed. You will play a leadership role within information security alongside peers in SOC, GRC and IAM and the strategy to help secure an international bank. You will also be the key advocate as part of the engineering leadership, using your influence to ensure that initiatives that reduce security risk in the estate are baked into the technology roadmap.


Requirements

You will be

  • Acting as a product owner that builds and maintains the security engineering roadmap. Discovering, prioritising, sizing, and communicating a continuously rolling roadmap. You will have autonomy to work on what’s best to improve Clear Bank security posture
  • Delivering and resource allocation of the security engineering roadmap, coaching, and mentoring team members where required, working with cross departmental stakeholders to remove impediments. Reporting and escalation of roadmap activities to senior management
  • Defining and maintain security metrics for engineering, automation, and reporting. Communicating progress and demonstrating a return for the investment
  • Mentoring and supporting a team of x8 engineers that range from junior to principal and team leads. 1:2:1’s, objectives settings and coaching
  • Facilitating security conversations, whether that is part of the design of a new internal system or integrated with a 3rd party. Drawing out security requirements and providing recommendations
  • Dealing with emerging requirements, such as new IAM or security requirements because of new work or incident actions.
  • Facilitating of risk management process within engineering, ensuring risks and raised, ownership identified, and risks managed
  • Building and growing relationships throughout the business, such as Engineering, Infosec, Product, Risk, IT Ops etc. Proactive identification of new emerging relationships as the organisations expands
  • Building business cases for tooling investment, running light weight RFPs to assess products, managing 3rd party suppliers and delivery tools into the business
  • Ownership of SDLC security controls, their maintenance, testing and involvement in ISO27001 and scheme attestation activities

What we are looking for

  • Must have a background in software engineering. Your primary customer will be the engineering department and you will need credibility and compassion in supporting our engineers build great products
  • Must have experience in Secure SDLC – understand what good looks like and has had experience improving the way engineers work through tools, process, or education. At a minimum we would expect experience in SAST/SCA implementations, threat modelling and risk management
  • Someone who thrives on autonomy, is self-motivated and capable of building relationships across an organisation. You will be the leader for security within engineering, you will be trusted to do what’s right but must also be able to operate transparently and bring your stakeholders on the journey
  • Experience building roadmaps or programme of activities, delivery, and reporting
  • Experience managing and leading a team of engineers of various seniority
  • Experience managing a quality service. The engineering teams are your customers, whether that is supporting tools, providing consultancy, or guidance on process
  • Experience with risk management and risk controls such as ISO27001. You will take ownership of SDLC controls in our risk framework, and to be able to demonstrate they are effective to various stakeholders

Benefits

About what we offer

  • We’re remote-first and flexible, so work from home or visit the offices in London and Bristol
  • 27 days annual leave per year, plus bank holidays and x 2 ‘Bigger Than ClearBank’ days
  • You have the option to work outside of the UK for up to 30 days per year
  • Regular in-person and online company-wide meetups
  • A flexible option to finish early on a Friday if it works for you and your team – we call this our ‘Fresh Air Fridays’
  • Take a couple of days per year to volunteer with your chosen charity to do something bigger than ClearBank
  • Private healthcare through Healix and discounted Bupa dental cover, with employee healthy living perks and discounts through YuLife
  • Enhanced family friendly leave
  • Plus, you’ll have the opportunity to join an energetic team that’s building a bank fit for the future! 🚀

The legal bit

By submitting your CV, you confirm that you can demonstrate you have the right to work in the UK. Regretfully we are not in a position to sponsor applicants for immigration purposes at the current time. By submitting your CV to ClearBank Limited you are providing your consent for us to use the information you provide for recruitment purposes. For more information on how we manage your data go and check out our Candidate Privacy Notice on the ClearBank website to see how we process, manage and look after your data. You are also allowing us to communicate with you by email and telephone for recruitment purposes.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: APIs Automation Banking Compliance Crypto Cyber crime Governance IAM ISO 27001 Privacy Risk management SAST Scrum SDLC SOC Strategy

Perks/benefits: Career development Flex hours Flex vacation Team events

Regions: Remote/Anywhere Europe
Country: United Kingdom
Job stats:  29  6  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.