Senior Cloud Security Engineer

THE ROLE 📝  You’ll design, implement, and maintain defensive security controls that protect our high-availability, multi-cloud payment systems built on modern technologies. Your deep understanding of current threats, exploitation methods, and risk trade-offs will enable you to guide engineering teams on effective security features and ensure the right defensive measures are prioritised.   WE’RE LOOKING FOR  🔍  Essential  You live on the linux command line  Your current research and experience back up your opinionated views on security practices and tradeoffs, which you love to openly debate and willingly share  You’re sought after for your security engineering expertise, having built multiple security controls that are actively proven in large production estates  Your security expertise extends to at least one public cloud, including essential security features and long-term security hardening practices  You have a good grounding in Kubernetes security and have ideally developed complex, heavily customised multi-cluser environments  You appreciate building systems with good engineering practices and may have a background in software engineering at scale  You’re open to being a part of our on-call rota, ready to respond if we have a severe, platform-impacting security tooling failure or need second-line security incident response assistance    Desirable  You have an interest in offensive security, potentially including participation in CTFs and past experience as a red team operator or pen tester  You’ve developed security configurations in multiple public and private clouds  You’re a confident presenter and have accelerated appreciation of security across engineering teams  You regularly support building and analysis of threat models using a well defined process  You have experience securing data centers and networking devices  You’re terrified by supply chain and CI/CD security, but have good patterns for reducing the risks  Your engineering experiences matches https://stackshare.io/form3/main – including Golang and Terraform    TECH STACK ⚙️  AWS, GCP, Azure and private Data Centers  Kubernetes, Helm, Flux  Distributed systems, mostly Golang based with CockroachDB and NATS  SIEM/SOAR, EDR, CNAPP, and a suite of open source tools with custom integrations    THE TEAM 👥  You will join a team of defensive security engineers directly maintaining and expanding security controls as well as advising the wider platform and application engineers within our R&D team. We report into the CISO and work alongside the other functional pillars of InfoSec.    INTERVIEW PROCESS ✍️  Stage 1: Screening Call with Talent Team  Stage 2: Technical Interview – Building secure cloud architectures & team alignment  Stage 3: Technical Interview – Container and Linux Security, including a short pre-interview research topic We always aim to stick to the above process, however there may be occasions when an additional interview stage is needed for us to be sure we’re hiring the right person!    HIRING LOCATIONS 📍  We are a remote-first organisation and are able to accept applications from the following countries; Germany, Netherlands, Spain, Portugal & UK  All new joiners start their first day in our office to collect the equipment needed to work remotely. We'll also arrange for some of your team to come in to say hi, ensuring you're supported and have a positive first few days with Form3!   ABOUT FORM3 💭  Revolutionising the world of payments with our cutting-edge technology and innovative solutions. For more information about life at Form3 check out the following pages:  https://vimeo.com/465419215 | https://www.form3.tech/culture | https://www.form3.tech/careers | https://flexa.careers/companies/form3https://podcast.form3.tech/     OUR DEI&B COMMITMENT  We hire talented people from a variety of backgrounds and experiences and are committed to a work environment based on diversity, open-mindedness and curiosity. We’re united by our company values (we even created them together!) and we celebrate our unique differences.  Our employee lifecycle processes are designed to embrace equal opportunity and prevent discrimination against our people regardless of personal characteristics. It is our strong belief that the more inclusive and belonging we are as a business, the better our work will be.  As an inclusive employer, we guarantee to interview all neurodiverse and physically disabled applicants who meet the minimum criteria for this role. We also encourage candidates to notify us of any reasonable adjustments that may be required during the recruitment process. This includes providing job adverts in alternative, accessible formats or adjustments required at interview stage.  If you consider yourself to be neurodiverse or physically disabled under the UN definition of disability and would like to be considered under this scheme and/or require any reasonable adjustments please let us know by sending an email to mailto:careers@form3.tech clearly stating your consent for us to process this data. For more information please refer to our https://www.form3.tech/legal/recruitment-data-policy.  Offices: London, Greater London, England, United Kingdom (Form3 London);