Senior DevSecOps Engineer

About Allica Bank

Allica is the UK’s fastest growing company - and the fastest-growing financial technology (Fintech) firm ever. Our purpose is to help established SMEs, one of the last major underserved opportunities in Fintech.

Established SMEs are the backbone of local communities - representing over a third of our economy - yet have been largely neglected both by traditional high street banks and modern fintech providers.

Department Description

Allica’s security team plays a crucial role in maintaining the integrity and security of the company's information systems. They ensure that the ISMS (Information Security Management System) controls are not only up to date but also effectively embedded across all departments. This requires a proactive approach and close collaboration with various teams, such as Engineering, Platform, Risk, and Compliance, to address any security concerns and implement necessary measures.

Role Description

We are looking for an experienced and dynamic DevSecOps Engineerto join our security team. The role will be pivotal in building, leading and enhancing our security posture. You will lead a team of security engineers, drive security initiatives and play a key role in ensuring the security of our rapidly expanding platform.

Principal Accountabilities

• Lead the development and deployment of endpoint monitoring strategies ensuring that all devices within the organisation are continuously monitored for threats and vulnerabilities. Proactively identify and mitigate risks related to endpoint

• Oversee the management of our cloud security posture, ensuring that our cloud infrastructure is configured securely, compliant with industry best practices and continuously monitored for misconfigurations or vulnerabilities.

• Leads efforts to enhance network security across the organisation.

• Lead the identification, investigation and mitigation on potential intrusions in real-time, collaborating with cross functional teams to respond to incidents effectively.

• Oversee the design and implementation of a robust identity and access management framework.

• Lead the development and enforcement of strategies to detect and prevent user impersonation, account takeovers and other malicious activities aimed at gaining unauthorized access to user accounts or systems.

• Drive continuous threat exposure management strategies, ensuring that our organisation is aware of, and can quickly respond to, emerging threats.

• Lead, mentor and grow a high-performing team of security engineers.

• Provide leadership in creation of security awareness programs.

• Be a key player in organisation’s incident response efforts.
  

Personal Attributes & Experience

• Deep experience with endpoint monitoring, CSPM, network security, intrusion detection and management.

• Proven track record in managing continuous threat exposure management programs and responding to security incidents.

• Strong understanding of identity and access management (IAM) systems, tools, and practices, including MFA, SSO, and RBAC.

• Experience in leading security teams, mentoring engineers, and working cross-functionally with other technical teams.

• Experience with cloud security across multiple platforms (Azure, Google Cloud).

• Expertise in security frameworks such as CIS, NIST, ISO27001

• Solid understanding of network protocols (TCP/IP, DNS, HTTP/S, VPN) and how to secure them.

• Excellent presentation skills – both to technical and non-technical audiences

• Proficiency in Python, Bash, or PowerShell for automation.

Working at Allica Bank

At Allica Bank we want to ensure our employees have the right tools and environment in which to succeed in their role and in support of our customers.

Our employees are at the heart of everything we do, so our benefits are designed with you in mind:

• Full onboarding support and continued development opportunities

• Options for flexible working

• Regular social activities

• Pension contributions

• Discretionary bonus scheme

• Private health cover

• Life assurance

• Family friendly policies including enhanced Maternity & Paternity leave

Don’t tick every box?

Don’t worry if you don’t have all the skills or requirements listed on the job description. If you think you’ll be a good fit, we’d still love to hear from you!

Flexible working

We know the ‘9-to-5’ isn’t right for everyone. That’s why Allica Bank is fully committed to flexible and hybrid working. Please let us know what is best for you and, if we can, we will do our best to accommodate.

Diversity

We’re a diverse bunch here at Allica, with all kinds of experiences, backgrounds and lifestyles. Our openness and differences make us stronger, and we want everybody to feel comfortable bringing as much of themselves to work with them as they like.

#J-18808-Ljbffr