Senior Cloud Security Engineer (Kubernetes) at Form3

Posted on: 07/13/2021

Location: United Kingdom (REMOTE)

Glassdoor: 5.0 / 5 | Original Source

Tags: gcp kubernetes aws

**THE TEAM** Our Security Team is headed up by our CISO and consists of Ethical Hackers, Cloud Security Engineers and Information Security Officers. Together they work to keep Form3 secure, whilst educating our teams and promoting best-practices across all divisions. They’re consistently baking security into our culture and utilising some of the most modern and exciting technologies on the market. **THE ROLE** Form3’s Security team is at the pinnacle of Payment Services technology and this is your chance to join the Security Engineering team. As part of the team, you will have the opportunity to work end-to-end on greenfield and existing projects in a fully cloud-native environment, giving you the ability to take ownership from a Security perspective on boundary-pushing developments. This will include being involved with internal tooling, pen-testing, code reviews alongside a range an interesting Infrastructure work! **WHAT WE ARE LOOKING FOR** * Previous Experience as a Security Engineer with a clear focus on Container and Kubernetes Security best practices and implementation. * Explicit experience in: Linux hardening, implementing container/ cluster security best practices and container image provenance. * Strong software engineering understanding preferably with hands-on experience. * Experience working within cloud environments (preferably AWS/GCP) including security architecture and security roadmaps. * Ability to convey DevSecOps philosophy to Software Engineers and continue to develop our ‘Secure By Desin’ and ‘Security as Code’ culture. * Offer insights about security to non-technical people within the wider business to strengthen the security awareness here at Form3. * Relevant Qualifications: CKA, CKS, Cloud Certifications (AWS CSS, GCP PCSE ect.), CEH, eJPT, OSCP or CASE * Willingness to be the Security Engineering representative on the On-Call rota. **DESIRABLES** * Strong programming skills (we mainly use Go but we are flexible around this) * Experience in, or at least exposure to Penetration Testing and Secure Code Reviews * Capable of working on both business logic/ application code and architecting, configuring and maintaining platform infrastructure * Hands-on experience in implementing technical controls and automation to meet framework compliance (ISO27001, ISAE300/SOC2, SOC1, NIST, GDPR and PCI-DSS in particular) **ABOUT US** We are an award-winning cloud-native payment technology provider for financially regulated institutions. Launched in 2016, we've doubled in size year on year as we continue to redefine what a truly instant payment experience means. We celebrate diversity, promote entrepreneurialism and are committed to giving everyone a say in shaping our business. Here you will grow as a person and accomplish incredible things. A career at Form3 is empowering, inspiring and fun. Join us and help shape the future of payments. **EQUAL OPPORTUNITIES** At Form3 we embrace equal opportunity and are committed to building a diverse team of exceptional individuals. We do not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, age, marital status, or disability status and it is our strong belief that the more inclusive we are as a business, the better our work will be.