Find your next tech and IT Job or contract role.

Description At Engine by Starling , we are on a mission to find and work with leading banks all around the world who have the ambition to build rapid growth businesses, on our technology. Engine is Starling's software-as-a-service (SaaS) business, the technology that was built to power Starling, and two years ago we split out as a separate business. Starling has seen exceptional growth and success, and a large part of that is down to the fact that we have built our own modern technology from the ground up. This SaaS technology platform is now available to banks and financial institutions all around the world, enabling them to benefit from the innovative digital features, and efficient back-office processes that has helped achieve Starling's success. As a company, everyone is expected to roll up their sleeves to help deliver great outcomes for our clients. We are an engineering led company and we're looking for people who are will be excited by the potential for Engine's technology to transform banking in different markets around the world. Our purpose is underpinned by five values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness. Hybrid Working We have a Hybrid approach to working here at Engine - our preference is that you're located within a commutable distance of our offices so that we're able to interact and collaborate in person. About the role: As a Cloud Security Engineer at Engine, you will be a hands-on builder, responsible for engineering and automating the security of our core platform. Your primary mission is to treat security as an engineering discipline, creating robust, scalable, and automated solutions to protect our cloud infrastructure and development lifecycle. You will spend your time writing code (Go, Python), defining secure infrastructure-as-code (Terraform), and building the tooling that ensures our platform is secure by design and compliant by default. This is a role for an engineer who loves to build, automate, and solve complex security problems through code. You'll be working on projects covering identity and access management, cloud and network security, vulnerability management, security monitoring, security hardening, compliance reviews, and more. It's a very varied role with lots of close interaction with the infrastructure, security engineering, cross cutting and compliance teams. Engine by Starling engineers are excited about helping us deliver new features, regardless of what their primary tech stack may be. Hear from the team in our latest Blog or our case studies with Women in Tech . Primarily, we are looking for an experienced Cloud Security Engineer to join our growing Security Engineering team, but we are also keen to talk to talented Cloud Engineers who possess strong programming skills and a genuine desire to apply their knowledge to solving security challenges. In this role, you will work closely with the GRC team and the various Engine Technology teams to make sure security is at the heart of all our technical processes. Your place within the team will depend on your individual strengths and interests. This role will cover a wide array of security areas across our multi-tenant SaaS cloud environments and internal infrastructure and will require a skilled individual to spearhead efforts in fortifying both infrastructure and application platforms, against potential threats. What you'll get to do? Design, build, and maintain security automation and tooling to enforce security controls and simplify compliance (e.g., automating evidence collection for frameworks like SOC 2, ISO 27001, or PCI DSS) Build, manage, and automate identity and access management controls to ensure secure access to our cloud platforms and applications Write and review Infrastructure-as-Code (Terraform) to securely configure our AWS and GCP environments Secure our CI/CD pipelines by implementing and interpreting results from SAST/DAST/SCA tools and ensuring the integrity of our software supply chain Develop and maintain preventative and detective security controls within our cloud environments, responding to and automating the remediation of security alerts Implement and automate technical controls based on the findings from security assessments, audits, and architecture reviews Engineer solutions to secure our Kubernetes environments, focusing on RBAC, network policies, and runtime security Collaborate with engineering teams to implement security best practices and provide hands-on support for remediation efforts Contribute to incident response efforts, including the investigation, remediation, and post-mortem analysis of security breaches

Description At Engine by Starling , we are on a mission to find and work with leading banks all around the world who have the ambition to build rapid growth businesses, on our technology. Engine is Starling's software-as-a-service (SaaS) business, the technology that was built to power Starling, and two years ago we split out as a separate business. Starling has seen exceptional growth and success, and a large part of that is down to the fact that we have built our own modern technology from the ground up. This SaaS technology platform is now available to banks and financial institutions all around the world, enabling them to benefit from the innovative digital features, and efficient back-office processes that has helped achieve Starling's success. As a company, everyone is expected to roll up their sleeves to help deliver great outcomes for our clients. We are an engineering led company and we're looking for people who are will be excited by the potential for Engine's technology to transform banking in different markets around the world. Our purpose is underpinned by five values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness. Hybrid Working We have a Hybrid approach to working here at Engine - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. About the Role To support our growth, we are looking for talented and motivated SOC engineers to join our foundational in-house SOC team. In this pivotal role, you will be instrumental in supporting the development, implementation, and operating of our security monitoring, detection, and response capabilities, with a particular focus on our cloud environments. You'll be at the forefront of responding to incidents and alerts, and helping shape the future of our security operations capabilities. What you'll get to do: Security Monitoring & Alert Triage: Monitor security alerts and events generated by various security tools Perform triage and analysis of security incidents and anomalies, distinguishing between true positives and false positives. Prioritise alerts based on severity, potential impact, and business criticality. Incident Detection & Response: Investigate security incidents thoroughly, leveraging logs from platforms, endpoints, applications, and other security tools. Create and follow incident response playbooks and contribute to their continuous improvement. Collaborate with Technology, Product and Engineering Teams to contain, eradicate, and recover from security incidents. Document incident details, findings, and remediation steps accurately and comprehensively. Additionally Stay informed about the latest cyber threats, attack techniques, and vulnerabilities, especially those targeting cloud environments. Participate in proactive threat hunting activities using available tools and data sources. Contribute to the optimisation, tuning, and maintenance of SOC tools Identify opportunities for automation to streamline security operations and enhance detection capabilities. Maintain detailed records of security incidents, investigations, and remediation actions.