Job Overview
About Railsr
Railsr is a leading embedded finance experience platform that enables any business to prototype, build and scale financial products. Our vision is to make finance an amazing experience for consumers and companies globally, working alongside brands and fintechs to power innovation. This is an exciting space and Railsr has one of the first digitally-native products in the FinTech platform space. Following a period of rapid growth, followed by consolidation, Railsr is returning to growth once again and looking to develop our product capabilities and expand our customer base. It’s an exciting time and the potential for any brand to use Railsr to power and deliver their customers’ financial experiences is enormous.The OpportunityWe are looking for an AppSec Engineer to join us. You’ll be an integral part of our Engineering community, working closely with other Squads to increase our security posture, explore ways to improve code and processes, reducing our cybersecurity risks and increasing the awareness of security and privacy by design, building reusable components and setting standards that follow best-practices along the way. This mission is for an experienced Software Engineer that’s found the world of security fascinating, and has branched off into a security-focussed role.This position will be key for the organisation as we optimise the platform and prepare it for the growth phase the business is set for.
The RoleAs an AppSec Engineer, you will be responsible for executing on the Infosec and Cloud Engineering strategy for Railsr.You will ensure that platform vulnerabilities are addressed in a timely manner, based on their severity, surface area and other risks – facilitating the remediation or taking some level of ownership for getting these deployed.You will contribute (as an individual contributor) to our Cloud Infrastructure code-base (Terraform), including reviewing code from a security and operationally resiliency perspective.You will build and maintain the DevSecOps CI/CD pipelines.You will work with third-party penetration testers, to facilitate the process and ensure a productive assessment and remediation of the findings.You will ensure policy-as-code is followed, in conjunction with the broader DevSecOps Squad.You will maintain our Software Bills of Materials and licensing register.You will increase our use of ZeroTrust approaches.You will increase our minimal access model across our multiple AWS accounts methodology.
About you – Skills & ExperienceExperience with Infrastructure-as-Code on AWS and Policy-as-CodeStrong understanding of cloud-native approaches (security groups, AWS best practices, containers and orchestration)Knowledge of contemporary security best-practices, standards and benchmarksExperience with security testing and assessment (e.g. Burp) as well as vulnerability scanningExperience with any of the following is a big plus:ISO 27001 / SOC2 / Cyber Essentials+Undertaking AWS Well Architected Reviews & Security Improvement ProgrammesWorking in a financial services firm Threats and Vulnerabilities that are being actively exploitedIdentity & Access Management / OauthHuman Application Security Testing (HAST)
What we can offer youHybrid working model: Choose whether you want to work from home, office or any other location.Work/life balance: We offer you a generous amount of 28 days’ annual leave and 2 special days off (birthday, anniversary – you name it), in addition to public holidays.Private health care: We cover your medical expenses in private health institutions and offer life insurance.Employee referral program – Bright minds should work together – you will be financially rewarded for successfully referring those in your personal network.
Diversity, Inclusion & Belonging Our global team is amazing, with over 150 colleagues spread across multiple countries and more than 15 languages spoken, we empower them to bring great ideas, drive new plans and help make Railsr a fantastic place to work. We’re proud of how well our diverse mix of people collaborate and are fully committed to continuing to make diversity, equity and inclusion part of everything we do.
Our flat structure encourages open communication, to ensure that all voices, opinions and ideas are heard and considered. At Railsr we’re all striving towards a common goal, and are passionate about creating an inclusive and rewarding working environment where everyone can be their best self.Railsr is an equal opportunities employer and we actively encourage all applications.
Whilst we strive to ensure our recruitment process is fully accessible to all applicants, please do contact us on jobs@railsr.com if you would like to discuss any specific requirements.
Job Detail
Related Jobs (387)
-
Web Developer – Freelance – REMOTE on January 14, 2025
-
Web Project Manager – REMOTE on January 14, 2025
-
Writer/Community Manager – HYBRID on January 14, 2025
-
Transformation Manager – HYBRID on January 14, 2025
-
Travel Senior Analyst – HYBRID on January 9, 2025
-
Treasury & Finance Analyst – REMOTE on January 14, 2025
-
UE5 Game Programmer – HYBRID on January 3, 2025
-
User Experience Lead – REMOTE on January 14, 2025
-
Vice President, Strategic Account Management & Customer Success – REMOTE on January 14, 2025
-
Video Editor – Freelance – REMOTE on January 14, 2025