Who we are:
At TrueLayer, we're building the future of payments. We're on a mission to take on outdated payment methods with a solution designed for today's online, on-demand economy. By removing friction at the heart of commerce - the payment - we're making it faster, safer, and smarter for everyone.
To date, we've raised $300 million from world-renowned investors including Stripe, Tiger Global, Addition, and Tencent. With offices in London, Milan, and Dublin, we're trusted by industry leaders like RyanAir and JustEat Takeaway. But this is just the beginning.
We're reimagining how the world pays, invests, shops, and saves. We're transforming payments for industries like e-Commerce and iGaming, redefining what's possible with technology and innovation. Now, we're looking for people who are ready to help us build a brand that changes an industry.
Description
At TrueLayer, we want the financial system to work for everyone - so we've made it our mission to open up access and put fintech at people's fingertips.
We are seeking a Cloud Security Engineer who will provide security expertise for our cloud infrastructure. You will collaborate with engineering teams to design, build, and maintain security services, ensuring compliance with relevant regulations and industry standards. Key responsibilities include improving security monitoring and automation across our AWS and Kubernetes infrastructure, supporting ongoing security operations, and participating in an on-call rotation. You will also proactively test our systems for vulnerabilities and work with stakeholders to embed security standards and best practices.
What we expect from you as Cloud Security Engineer:
* Provide security expertise and guidance on our cloud infrastructure;
* Work with our engineering teams to design, build and maintain security services, hardening the security of our platform;
* Implement and maintain controls to ensure compliance with relevant regulations and industry standards (e.g., GDPR, ISO 27001, SOC 2).
* Work with our Security Operations Team to build, improve and drive security monitoring and automation across our AWS and Kubernetes infrastructure as we scale;
* Support ongoing operations of our security services, including being part of an on-call rotation for critical services;
* Pro-actively test and review our systems for security weaknesses;
* Work closely with stakeholders to embed standards and tools and drive the adoption of security best practices.
About you:
* Can demonstrate knowledge of Cloud Service Providers, especially Amazon Web Services including their security tools and services;
* Have hands on experience with Kubernetes and infrastructure as code, ideally Terraform;
* Are proficient with one scripting language, or one object-oriented programming language;
* Have an automation first approach to security, from development to operation and response;
* Good knowledge of applied cryptography including public key infrastructure;
* Can show a good understanding of the common vulnerabilities affecting modern environments;
* Have a talent for conveying highly technical security concepts to colleagues of technical and non-technical backgrounds.
We would be particularly excited if you have:
* Expertise Implementing and maintaining Hashicorp Vault for secrets management and PKI
* Experience hardening containerised environments including Kubernetes clusters
* A blog, GitHub account and/or bug bounty findings that demonstrate your experience.
What you can expect from us:
* Meaningful equity in the company
* This role can be flexibly remote in the GMT/GMT+3 Time Zone
* Need to collect the kids from childcare? Love a workout in the gym first thing? No worries, we trust you to do your best work within our hybrid framework
* A one-off remote-working budget to help you set up your home office
* 24 days holiday as standard with flexible bank holidays, so you can take those days whenever you like
* 12 fully-paid wellbeing days a year and your birthday off (on top of the holiday allowance)
* 2 volunteering days to support causes important to you
* 90 day 'work from abroad' policy
* Generous parental leave, above and beyond statutory requirements and with no minimum tenure
* Competitive pension contribution at 4% & 4%
* Private health insurance from the day you start
* Membership of mental wellbeing platform Spill and premium Calm subscription
* A EUR1000 budget to spend on learning & development each year
* Free lunch from Just Eat (If you choose to work from the office on Tuesdays, Wednesdays and Thursdays)
About our hiring process:
1. A call with one of our Talent Acquisition Partners.
2. A Technical Call with someone from the Security Team
3. A Technical and Behavioural call with someone from the broader Tech Ops team
At TrueLayer, we don't just do inclusion and diversity. We embrace people that have different opinions, perspectives and personalities. Because we believe that by seeing the world from all sorts of angles, we can make life better for all the people who live in it. We strongly encourage applications from underrepresented groups (e.g. people of colour, the LGBTQ+ community, people with disabilities, neurodivergent people, parents, carers, and people from all socio-economic backgrounds). If you'd like to discuss alternative working patterns, please let us know.
We will always aim to make appropriate adjustments to ensure we are fully inclusive to people with different needs during our interview process. So if you need us to make any adjustments to suit your individual needs please let us know - we'll be happy to support you.
#J-18808-Ljbffr