Platform Security & Observability Engineer - London

About Us

We operate in 9+ geographies across the UK, EU and the US.

We believe that the future of financial services will be delivered by customer-oriented tech companies that embed financing in their customer journeys, and we are building the solutions that will power that future.

The Role:

We are seeking a seasoned Platform Security & Observability Senior Engineer to join our IT Security team. This role is crucial in enhancing our security posture and ensuring operational excellence across our platforms. The ideal candidate will possess a comprehensive skill set in cloud security, CI/CD processes, application security, containerization, coding, site reliability, systems architecture, and security testing.

• Design, implement, and manage security architectures for cloud-based environments, focusing on identity and access management, privileged access management, and secrets management.
• Develop, secure, and maintain CI/CD pipelines using GitOps principles and tools such as Jenkins or other continuous deployment services.
• Apply best practices in static application security testing (SAST), dynamic application security testing (DAST), software composition analysis (SCA), pre-commit container scanning, and shift-left approaches to ensure early detection of vulnerabilities.
• Conduct penetration testing to identify and address security vulnerabilities within the system.
• Manage vulnerability identification, assessment, and remediation processes across all stages of software development.
• Secure Kubernetes clusters and manage Docker container security to protect against unauthorized access and threats.
• Write and maintain scripts for automation across various languages including Python, TypeScript, or C#.
• Utilize infrastructure as code (IaC) tools such as Terraform, CloudFormation, or Pulumi to manage and provision resources securely and efficiently.
• Design and implement monitoring solutions and alerting mechanisms using Datadog to detect and respond to security incidents and system anomalies promptly.
• Re-architect and develop on-call systems to enhance response capabilities and operational reliability.
• Establish and manage service catalogues and service delivery processes to streamline IT operations.
• Set up and maintain Service Level Objectives (SLOs) and Service Level Agreements (SLAs) to ensure consistent and reliable service delivery.
• Maintain impeccable documentation standards, contribute to corporate knowledge sharing via blogs or presentations, and engage in regular show-and-tell sessions to disseminate information and best practices.

• AWS Professional certification or equivalent practical experience.
• AWS Certified Security Specialist certification or equivalent experience.
• Extensive experience in managing AWS Secrets Manager and implementing robust access controls.
• Proven expertise in securing CI/CD pipelines and integrating security practices in DevOps processes.
• Strong background in application security, including SAST, DAST, and container security practices.
• Hands-on experience with Kubernetes and Docker, focusing on securing containerized environments.
• Proficient in scripting and automation with languages such as Python, TypeScript, or C#.
• Experience with infrastructure as code (IaC) using tools like Terraform, CloudFormation, or Pulumi.
• Demonstrable skills in creating effective monitoring and alerting systems using Datadog for maintaining platform reliability and security.
• Experience in architecting and developing on-call systems.
• Experience setting up service catalogues and delivering IT services effectively.
• Proven ability to develop and maintain Internal Business SLOs and SLAs.
• Experienced in conducting penetration testing and vulnerability management.
• Excellent record of maintaining documentation, writing technical blogs, and performing knowledge sharing and show-and-tell sessions.

• Excellent problem-solving skills and the ability to work independently as well as collaboratively.
• Strong communication skills and the capability to articulate complex security issues to stakeholders.
• A proactive approach to security that integrates innovative solutions to prevent and mitigate risks.

Benefits

• Award-Winning Workplace: YouLend has been recognised as one of the “Best Places to Work 2024” by the Sunday Times for being a supportive, diverse, and rewarding workplace.
• Award-Winning Fintech: YouLend has been recognised as a “Top 250 Fintech Worldwide” company by CNBC.

We offer a comprehensive benefits package that includes:

• Stock Options
• Private Medical insurance via Vitality
• EAP with Health Assured
• Enhanced Maternity and Paternity Leave
• Modern and sophisticated office space in Central London
• Free Gym in office building in Holborn
• Subsidised Lunch via Feedr
• Deliveroo Allowance if working late in office
• Monthly in office Masseuse
• Team and Company Socials
• Football Power League / Squash Club

At YouLend, we champion diversity and embrace equal opportunity employment practices. Our hiring, transfer, and promotion decisions are exclusively based on qualifications, merit, and business requirements, free from any discrimination based on race, gender, age, disability, religion, nationality, or any other protected basis under applicable law.