Lead Cloud Security Engineer

About Stenn Technologies:

Stenn is one of the leading b2b FinTechs in Europe. Founded in 2015, we’re a Series A ‘Soonicorn,’ profitable and, based on our $50M funding in 2022, valued at $900m USD. 

Our mission is to transform how SMEs bank by providing them with frictionless access to capital. We have issued over $18 billion (USD) in more than 70 countries, with capital provided by several blue-chip banks and institutional fund managers. This enables us to bridge this sector's reported $3.6 trillion (USD) financing gap. 

Our underserved customers are the focal point of everything we do, and through technology, we empower them to grow globally. Our goal is to be the category leader in our space and, in time, the next neo-bank by building a great platform where SMEs have total access to the capital they need. 

Our HQ is in London, and we have employees worldwide, including in the USA, Spain, India, and China. We are made up of diverse, highly skilled professionals who work innovatively to develop and drive our business further. Our people are empowered to work autonomously through a trusting leadership style that encourages ownership and continuous learning. 

The Role:

We're searching for a Senior Cloud Security Engineer to spearhead our journey into an ever-evolving digital landscape. You'll be the pioneer, building the framework for a robust cloud security program from the ground up. This means partnering with DevOps and Platform teams, forging a path towards secure SDLC practices, and designing/implementing  a comprehensive security toolset. As our cloud security maestro, you'll not only secure our present, but pave the way for a secure future, guiding subsequent hires and establishing enduring best practices.

Responsibilities:

• Spearhead  the cloud security program, collaborating closely with DevOps teams.
• Develop and implement policies, Identity and Access Management (IAM), and Web Application Firewalls (WAFs).
• Conduct comprehensive system design and architecture reviews, identifying insecure design elements and proposing secure alternatives
• Perform thorough configurations and code reviews on critical changes, ensuring adherence to secure coding practices
• Configure and monitor security tools for ongoing threat detection and proactive security posture management.
• Collaborate with product and tech teams to prioritise vulnerabilities/misconfigurations, verify fixes, and integrate security into the development process
• Perform threat modeling using techniques such as STRIDE to identify and mitigate potential security threats
• Choose, implement, and manage essential security tools for cloud environments.
• Educate developers on secure code best practices, fostering a security-conscious culture within our engineering teams
• Act as a mentor to future hires in the growing cloud security team.

Background/Experience:

• 7+ years of experience in security, with a strong focus on cloud security.
• 3+ years of hands-on experience in Azure or AWS.
• Proven ability to build and implement cloud security programs from scratch.
• Experience with security tools and technologies: IAM, WAFs, SIEM, vulnerability scanners, etc.
• Strong expertise in one scripting or coding language.
• Familiarity with threat modeling techniques such as STRIDE and PASTA
• Bachelor's degree in Computer Science, Information Security, or a related field

Soft skills:

• Collaborative Expertise: Effective collaboration with cross-functional teams and clear communication across all levels.
• Leadership: Ability to guide and inspire teams towards a common security goal.
• Perseverance: A determination to tackle complex security challenges head-on.
• Navigating Unstructured Environments: Comfortable in dynamic and evolving settings.
• Initiative: Proactive in identifying and addressing security risks.
• Autonomy: Capable of driving initiatives independently.
• Influence: Skilled at persuading and leading without formal authority.
• Conflict Resolution: Adept at resolving disagreements to achieve consensus.
• Self-Motivation: Driven to excel and continuously improve.
• Creative Thinking: Capable of devising innovative security solutions.

Life at Stenn:

• Growth and Learning: Constantly expanding with opportunities for professional and personal development.
• Positive Global Impact: Democratizing access to capital for businesses worldwide, driving customer success.
• Dynamic Fintech Environment: Rapid technological advancements and exciting sector changes.
• Inclusive Culture: Celebrating diversity, fostering a sense of belonging, and valuing unique perspectives.
• Collaborative Success: Embracing innovation, teamwork, and celebrating achievements to drive continuous growth.

Benefits:

• Health Insurance: Your well-being is our top priority, with comprehensive health coverage to ensure you stay healthy and secure.
• Continuous Learning: We care about your career progression. Enjoy access to Udemy for ongoing professional development and skill enhancement.
• Performance Bonuses: We recognize and reward your hard work and dedication with performance-based bonuses.
• Hybrid Working Model: Flexibility matters! Benefit from a flexible work environment that combines remote work with three days in the office, centrally located in Urquinaona.
• Team Activities: We foster a great atmosphere with regular social events and activities to build team spirit and collaboration.

If you're a security champion eager to shape the future of cloud security in a dynamic fintech environment, we invite you to join our journey. Come build, secure, and empower our growth in the cloud, one byte at a time.