Information Security Engineer

As part of our growing operational security function we are looking for a passionate Information Security Engineer eager to get hands on with today's security issues to join our team in Bristol, UK.

With 2+ years experience in an Information Security role preferably with exposure to PCI-DSS compliance and operating in a FinTech environment, you will be responsible for implementing information security best practices and procedures to ensure our systems are secure and that we continue to deliver Level 1 PCI-DSS compliance and above.

Passionate about Information Security, you will be comfortable working in a fast paced dynamic environment proactively responding to emerging threats swiftly and appropriately. You should have experience of working as part of a wider Information Security Team and liaising with IT teams.

What will I be doing?

You will be joining a small team, split between the UK and the US and be responsible for maintaining security systems, tuning security tools and ensuring compliance with relevant policies and procedures across a number of environments. You will monitor our Vulnerability Management platform and external vulnerability sources, help run our SIEM, Endpoint Security solution. You will help NMI identify and evaluate threats, vulnerabilities and risks that affect our payment processing and enterprise environments. You will also be working with our Compliance team to support the company's compliance programmes helping to audit settings and provide evidence of compliance.

You will work closely with Infrastructure and Development teams to ensure that risk is minimised and managed effectively across our payment platform and enterprise environments. The role will be hands-on and varied with tasks ranging from Vulnerability management, SIEM management, Log Reviews,, IPS, Anti-Virus, Software reviews and others. No two days will be the same.

You will be expected to communicate effectively at all levels of the business adapting your approach based on the technical understanding of the target audience. You will understand compliance requirements and be able to deliver evidence as well as address compliance issues in a timely fashion. You will be a point of contact within the company on security queries from internal and external sources.

Requirements

Essential

• A positive “can do” attitude
• 2+ years in an Information Security role
• Enthusiastic and passionate about Information Security
• Exposure to Windows, Linux, VMware and Network Security
• Exposure to SIEM, security logging and event management
• Solid background in vulnerability management, system hardening and patching
• Exposure to EDR
• Good understanding of security principles
• Experience of a risk based approach to security
• Track record of acting with integrity and confidentiality, in accordance with professional codes of ethics and the law.
• Passionate about learning new skills and self-development.
• Excellent written and verbal communication skills
• Ability to work on your own initiative with excellent analytical and problem solving skills
• Thorough and meticulous attention to detail
• Flexible approach to dealing with changing business needs
• Willing and able to travel (USA in particular)

• Information Security Certification (CISSP, CISMP, CEH etc).
• Previous experience in Cloud technologies
• Direct experience of PCI-DSS Level 1 audits
• Basic understanding of encryption including PKI
• Previous experience of Incident Response procedures
  
• Previous experience of SecOps and automation
• Experience assessing third parties for risk
  
• Experience in threat hunting
  
• Previous experience managing a vulnerability program
  

Benefits

As well as being a part of something exciting everyday, you will also receive the following benefits:

• Annual salary of £45,000 - £60,000 based on your experience and skills
• Annual bonus scheme
• 25 days holiday each year (+ bank holidays + 1 day after each year of service with up to a max. of 30 days)
• Workplace pension scheme
• Private medical insurance (upon successful completion of your probationary period)
• 7 hours per day, 35 hours per week
• A flexible hybrid working arrangement
• Great work-life balance with our Flexi-time policy
• Family Friendly policies (Enhanced Maternity and Paternity Pay and Shared Parental Leave).
• A chance to develop with an allocated company training budget
• Bike2Work Scheme
• Lifeworks, an Employee Assistance Programme which offers wellbeing, family and financial support services, such as assessments, resources and even 1:1 counselling sessions. It also offers interesting perks such as discounts on gyms, restaurants, high street retailers and cinema tickets.
• A strong commitment to employee wellbeing including mental health first aiders and weekly yoga sessions.
• Employee referral scheme with generous financial reward
• Bonusly colleague reward scheme

We’re looking for creative and passionate people who share our vision of making payments easy. If that sounds like you and you meet the requirements above, then please click on 'Apply for this job'!

We are an Equal Opportunities employer and will provide reasonable support throughout the recruitment process to applicants who have a disability. Please let us know in advance so that any support, aids or adaptations can be put in place to assist you.

Please be aware that all offers of employment are made subject to receipt of satisfactory background and financial checks.