Cloud Information Security Engineer
Description
NMI is looking for a talented, passionate Cloud focused Security Engineer to join our growing Information Security team. Distributed between the US and UK, NMI’s Information Security team provides operational security and regulatory compliance solutions to support all aspects of the business.
As a collaborative process, the team is responsible for review and enforcement of multiple PCI compliance frameworks (PCI-DSS Level 1 Service Provider, PCI-PIN, and PCI-P2PE), implementation and administration of security systems, supporting a DevSecOps development organization mentality, and delivering general security advice, monitoring, and support to the whole company.
Requirements
Essential
- A positive “can do” attitude
- 5+ years in an Information Security and/or PCI-DSS compliance role
- Prior experience evaluating PCI-DSS compliance requirements
- Understanding of encryption technologies, including PKI and Symmetric methods
- Basic exposure working with various coding languages and creating/reviewing automation scripts and infrastructure as code
- Enthusiastic and passionate about Information Security
- Exposure to Windows, Linux, Virtualization and Network Security
- Exposure to SIEM, security logging, and event management
- Understanding of vulnerability management, system hardening and patching
- Good understanding of security principles
- Experience of a risk based approach to security
- Track record of acting with integrity and confidentiality, in accordance with professional codes of ethics and the law.
- Passionate about learning new skills and self-development.
- Excellent written and verbal communication skills
- Ability to work on your own initiative with excellent analytical and problem solving skills
- Thorough and meticulous attention to detail
- Flexible approach to dealing with changing business needs
- Willing and able to travel (potentially including international)
Desirable
- Information Security Certification (CISSP, CISMP, CEH etc).
- Basic understanding of encryption including PKI
- Experience conducting log analysis and configuring alerting/signatures
- Previous experience designing and assessing services and systems within cloud provider environments (GCP, Azure, AWS)
- Previous experience working in a collaborative DevSecOps team and building automations to support an Agile environment
- Experience working in a software development organization
DUTIES AND RESPONSIBILITIES:
- Design and implement cloud security solutions for our infrastructure, including identity and access management, network security, and data protection.
- Assist with the development and maintenance of security policies, procedures and standards to ensure compliance with industry regulations
- Conduct security assessments across both cloud and on-prem systems and recommend solutions to mitigate identified security issues.
- Monitor and analyze security logs to identify security risks and respond promptly to security incidents.
- Researching, developing, implementing, and supporting security solutions and procedures to meet various company security goals.
- Administering and improving industry standard security controls/toolsets (e.g. EDR/XDR, MDM, WAF, Vulnerability Management, SIEM, etc…) implemented across the organization.
- Identifying, reviewing, and assessing information security risks in a diverse and distribute technology environment.
- Supporting objectives to ensure internal services and external products are built in a secure manner, assisting with collaborative design efforts and ongoing compliance auditing.
- Assisting various teams in the organization with the secure design and implementation of services.
- Maintaining a positive relationship with all of the People and teams in the NMI organization, providing a security experience that is open, practical, collaborative, and educational.
Benefits
As well as being a part of something exciting every day, you will also receive the following benefits:
- Competitive Annual Salary based on Experience
- Personal Skill Development from Allocated Team Training Budget
- Health, Dental and Vision Insurance
- Vacation and Sick time
- 13.5 Paid Holidays (including your birthday and floating holidays)
- Life, AD&D, Short-term and Long-term Disability Insurance
- 401k Retirement Plan
- Casual Dress
- Flex-time scheduling
- Fun Culture Events (Game nights, Book Club, Summer/Winter parties, and more)
Do you feel like you have a slightly out of the ordinary career path or history? We are open to all walks of life and very willing to hear your story. Please don’t feel like this should be a barrier to securing a great career at NMI! We appreciate success can come in all shapes and sizes. Fill in the ‘Additional Info’ box on our application to tell us more about your path.
What we do!
NMI enables our partners with choice, and challenges the one-size-fits-all approach to payments. You've probably used NMI in the last 24 hours without even realizing it. We’re the platform that powers success for innovative tech created by SMBs, entrepreneurs and fintech startups. We’re creative problem solvers who help visionaries smash through boundaries and think beyond what’s possible so they can think about what’s next. But we’re not just built for the tech savvy. We democratize the latest payments technology so that everyone can realize the benefits of easy payments across the full spectrum of commerce. We’re all about enabling more payments in more ways and more places.
We believe that having a diverse group of employees strengthens both our work and our workplace. We’re focused on making NMI more diverse and welcoming with initiatives like having a dedicated Diversity, Equity & Inclusion action group, diversity goals for hiring, anonymized resume screening, affinity groups such as our Women's network and LGBTQ+ Network, open forums for discussions on diversity and social justice, and measuring inclusion and belonging as part of our regular employee engagement surveys.
Equal Opportunity
NMI is committed to providing equal employment opportunity for all persons regardless of race, color, religion, sex, age, marital status, national origin, sexual orientation or sexual identity, genetic information, citizen status (except those that do not have the legal right to be employed in the United States), disability, military service, service member, veteran status, or any other basis protected by applicable law.
Please be aware that all offers of employment are made subject to receipt of satisfactory background and financial checks.
Please be aware that NMI does not operate a license for the sponsorship of those who are not already eligible to work within the US. Unfortunately, therefore we cannot process any application from individuals unable to provide documentary evidence of their eligibility to commence work in the US.