See yourself being part of a large, transformational change? This could be the role for you!
About the Role
As part of the Global Information Security team, but working within various project functions, Security Engineers are responsible for the implementation and configuration of IT Security controls and systems in Iress business projects and BAU - across all of Iress operating locations and the cloud. They are also responsible for the implementation and maintenance of security tooling and systems used by the Global Information Security Team.
Role purpose
Reporting into the Head of Security Engineering, Architecture & Enablement, (HSE), this role is responsible for performing all activities of the Security Engineering, Architecture & Enablement squad. By working with pragmatism, this role will help the HSE deliver ongoing and increasing business value from the function for Iress and its clients.
The role acts as a security engineer for the organisation and is responsible for implementing and communicating technical security policies and standards - and critically, assisting the business to implement and build its systems so they meet these security policies and standards.
Accountabilities & Deliverables
Delivery of security services and capabilities that enable speed and scale supporting the global IRESS Cloud platform.
Knowledge of cloud services, trends in security and engineering principles and practices
Writing Infrastructure as Code (IaC) in an AWS cloud-based environment via an infrastructure CI/CD pipeline and implementing Automated Security testing.
Socialise security policy and standards across relevant areas of the organisation - empowering and educating our people to build secure and compliant systems.
Implementation, build and handover of Technical Strategic Security Projects.
Assess security controls in existing and proposed IT architecture, identify and risk assess gaps - recommend changes or solutions as appropriate.
Is able to provide advice and expertise in the use of security capabilities.
Works as an effective team member in a cross-functional, cross regional security team, delivering a global alignment of security technology.
What you will need
Experience with Terraform coding and deployment, ideally Docker and Kubernetes.
Experience with some of the Cloud Native security tooling in areas of Vulnerability management, Encryption, Cloud security, Network security.
Good understanding of AWS IAM, VPC, WAF, Security groups and KMS with up to date modern security principles and standards.
Logical analytical thinker, with strong problem solving skills with the ability to express ideas confidently. Thinking critically about technical and delivery issues and their impact on platform, product solutions and our users.
Strong interpersonal skills to manage shifting priorities and deadlines and build positive and constructive relationships with others within their own team and externally.
Why Work With Us?
8 paid days per year to extend your weekends + 25 days annual leave
State-of-the-art offices
Free on-site gym in our Cheltenham office open 24/7
Equity grants for our top 25% performers
Annual Profit Share when Iress meets its annual profit targets
Casual dress, Hybrid & Flexible Work Policy
Access to learning and development programs
3 days’ leave per year for charity initiatives
Global 36-hour hackathon
Starting school leave - 8.5 days of leave to assist your kids with the transition to school
Life, Income & Private Medical Insurance
Enhanced Maternity & Paternity Policy