Job Specifications
Description
Thought Machine's mission is bold - to properly and permanently rid the world's banks of legacy technology. To achieve this, we have developed the foundations of modern banking and built core and payments technology which runs natively in the cloud. What we are attempting is hard and means we need great people working together to build great technology.
We have grown rapidly in the past few years - growing our team to more than 500 individuals across offices in London, New York, Singapore and Sydney. We have raised more than $500m in funding and are now valued at $2.7bn. Our investors include Molten Ventures, Eurazeo, Intesa Sanpaolo, Temasek, Nyca Partners, JPMorgan Chase, Standard Chartered, and more.
We have created a culture enabling our team to produce the best work in the industry, ensuring we have fun along the way. We're regularly cited as having a fantastic workplace culture and have been recognised by Sifted magazine as having one of the highest Glassdoor ratings for a UK fintech company and the most generous employee share package in the industry. We've been named AltFi's B2B Fintech of the Year, placed in the FinTech50, and named one of Europe's fastest-growing companies by the Financial Times in 2023.
A Threat Operations Security Engineer is an individual contributor within the larger Threat Operations team. We desire engineers who can think creatively about security threats, how to detect them, and how to respond to them. We encourage exploration and an eagerness to share when there are unique ideas or perspective you can bring to a challenge.
The Threat Operations security team is focused on identifying threats, identifying security events, performing event analysis, responding to security incidents, and monitoring the security state of the environments at Thought Machine.
Duties
Contribute to a programme of continuous threat assessment, intrusion detection and vulnerability review
Develop, integrate, and operate security event detection and incident management services using Elasticsearch.
Automate repeatable incident response workflows to minimise the amount of manual work required in incident response.
Maintain documentation to ensure the repeatability and standardisation of incident response procedures.
Respond to security incidents as they occur as part of an incident response rotation, managing incident response throughout the incident lifecycle
Perform investigation and analysis of security incidents in collaboration with engineers across the company.
Perform threat intelligence research to provide proactive insight into new threat vectors.
Develop, integrate, and operate data and metric reporting on relevant security measures.
Participate in the team on-call rotation (compensated).
Requirements
Essential
Experience with logging and incident detection platforms, creating new detections, triaging alerts and conducting security investigations.
Understanding of security incident management and vulnerability management processes.
Coding experience in a programming language, such as Python or Go.
Comfortable using the command line in Linux and MacOS environments.
Familiar with good investigation and evidence handling techniques.
Creative thinking and analytical skills focus on incident and threat investigations, and an ability to assemble thoughts and data for communication to stakeholders.
Strong interpersonal and communication skills to support collaboration with other teams during investigations and communications of data and investigation results.
Desirable
Familiarity with Cloud and containers technology (AWS, GCP, Kubernetes, Docker).
Contributions to the security community (open source tools, public research, blogging, presentations, etc)
Benefits
Highly competitive salary
Pension plan (match up to 7%)
Life insurance - three times annual salary
Competitive maternity (six months fully paid) and paternity leave (four weeks fully paid)
Shared parental leave (matched to our maternity leave for the same point in time)
25 days holiday and bank holidays
Private health insurance with Bupa for you and your family
Health cash plan (including dental and optical)
Flexible working hours
Cycle-to-work scheme
Electric car scheme
Season ticket loan
Access to outstanding learning materials and courses
Sports and hobby clubs, subsidised by Thought Machine
All the latest tech you need
Start the day properly with fresh fruit and cereals
Huge range of healthy (and not-so-healthy) snacks, smoothies and drinks
A talented and experienced team as your colleagues
An environment where we encourage learning and progress
Two charity days a year
Weekly food pop-up
About the Company
Our team’s mission is a bold one – to create technology that can run the world’s banks according to the best designs and software practices of the modern age. In doing so, we will properly and permanently rid the world’s banks of the problems generated by poor technology running on legacy infrastructure.
Our solution to this is Vault Core: a complete core banking platform that is capable of being configured easily to suit the needs of any bank. We have built Vault Core from the ground up as a cloud-native, microservices an...
Know more