Careers

Location

Cambridge, GB

Job Term

Full-Time

Company Website

Featurespace is the world leader in Adaptive Behavioural Analytics technology for fraud and risk management. Using machine learning and anomaly detection, our ARIC platform helps financial institutions and organizations around the globe stop fraud in real time.

But we're more than just a tech company, our biggest asset is our people who are exceptionally talented and dedicated to fighting fraud and protecting our customers from risk.

Led by CEO Martina King, one of the 25 Most Influential Women in Payments 2018, and an award-winning management team (Sunday Times, 2018), we’ve had consecutive years of outstanding growth and commercial success. And it's only getting better; we received more than 14 awards and accolades in 2018, including the Queen's Award for Enterprise.

The Opportunity

In your role as Senior IT Security Engineer, you will join the Featurespace Security Team where you will be responsible for supporting the organisation through its security enhancement programme.

You’ll be responsible for taking on security tasks, ensuring good practices are being followed from a security perspective, implementation of information security tools, and contributing to policy and process enhancement. You’ll work closely with the IT team and other business stakeholders to maintain a robust security posture.

Day to Day
  • Iterate network security posture to better protect against attacks and detect new vectors
  • Research/evaluate emerging security threats and ways to mitigate them
  • Test and evaluate security products as part of designing new security systems or upgrading existing systems
  • Ensure all processes and controls that fall within your area of responsibility are operating effectively and are correctly evidenced as working
  • Ensure standards and best practices are adhered to for systems
  • Monitor for attacks, intrusions and unusual, unauthorised, or illegal activity
  • Use analytic tools to determine emerging threat patterns and vulnerabilities
  • Identify potential weaknesses and implement appropriate measures
  • Investigate breaches of security and recommend appropriate technology and control improvements
  • Engage in Red Team Exercises , e.g. simulating security breaches
  • Provide advice and guidance on security strategies to manage identified risks and ensure adoption and adherence to standards
  • Act on vulnerability information and conduct security risk assessments and business impact analysis on information systems
  • Liaise with stakeholders in relation to security issues and provide recommendations
  • Mentor and evangelise security practices through cross-functional work with IT and engineering teams
  • Stay up to date with the latest security and technology trends and development
  • Contribute to development of information security policy, standards, and guidelines
  • Ensure your work is compliant with legal requirements, external standards requirements, and Featurespace IT-related policies
About You

Must haves
  • Ability to review system changes for security implications and recommend improvements
  • Experience implementing security in AWS or other cloud service providers
  • Expertise in analysing and identifying security weaknesses across a heterogeneous IT environment
  • Ability to demonstrate initiative by suggesting modifications to existing tools or technologies or developing new tools that improve security for the business
  • Experience of analytic systems based on tools such as Elastic stack, Splunk or LogRythm Experience scoping, implementing, and managing some or all the following: 
  • SIEM – Security information and event management
  • IAM – Identity and access management
  • APT – Advanced Persistent threat detection
  • VA – Vulnerability Analysis and mitigation
  • DLP – Data loss prevention
  • Experience in one of the following areas: Securing networks, systems and/or application architectures
  • Experience and understanding across some of the following technology areas, SaaS, IaaS, networks, firewalls, storage, virtualization
  • Understand the concepts and application of Windows and Linux ACL, OS level security protection and common protocols e.g. TCP, HTTPS, IPMI, DHCP etc.
  • Current knowledge of technology capabilities and trends; types, and techniques of common hacking attacks in the wild
  • Proficient in Python, bash, PowerShell
Great to haves
  • Experience with automation tools such as Ansible, Chef, Salt or Puppet
  • Knowledge of Windows and Linux systems administration
  • Knowledge of OWASP (Open Web Application Security Project) Top Ten Risk Factors
  • Good awareness of ITIL standards and best practice within an operational environment
  • Experience working in an ISO27001/2, PCI-DSS, or SOC 2 environment
  • A relevant technical/professional security certification, such as COMP-TIA Network+, Security+, SANS GIAC, CISSP, for example
Personal Qualities
The work is often challenging and fast paced. We are looking for someone who has the following qualities:
  •  Enjoys working in a team of like-minded and intelligent people
  • A focus on personal achievement and responsibilities
  • A desire to work for one of the fastest growing fraud prevention technologies in the world
  • Enthusiasm
And most importantly, a small-company attitude: willingness to adapt to a variable role and a great can-do attitude.

Salary & Benefits


We believe in giving you the resources you need so that innovation can thrive.
In addition to competitive salaries, we offer:
  • Quarterly bonus awards
  • 25 days’ annual leave plus bank holidays
  • Career growth and training opportunities
  • Friday team takeaway delivered to the office
  • Quarterly social, team building events
  • Weekly lunchtime sports clubs
  • Discounted gym membership
  • Fridges full of treats and drinks for lunches and snacks
  • Freshly ground coffee machines
  • Pension scheme
  • Weekly board game evenings with pizza
  • Cycle to Work schemes
Apply now