Middle Information Security Engineer, Financial System in DataArt

## About the vacancy This UK-based client of DataArt is a leading specialist in commercial foreign exchange. Headquartered in London, the company offers a suite of foreign exchange products designed for corporate clients and high net-worth individuals. DataArt experts are responsible for building and supporting all internal and customer-facing systems, including the company’s mission-critical back-office platform, online trading and payment platform, mobile apps (iOS, Android), and API for clients. The systems store all of the company's data (client contacts, transaction history, algorithms for calculating bonuses, pay lists, etc.) and run on the Microsoft technology stack: the database is managed by MS SQL, .NET is used as the framework, JavaScript and AngularJS are used for creating the interface. A native iOS application was also implemented using a similar .NET-base API but slightly expanded. The user is granted access to a restricted set of data contained in the system. We hire people not to a project, but to the company. If the project (or your work in it) is over, you go to another project or to a paid “Idle”. ## Responsibilities * In collaboration with the client, define the mature and sensible approach to securing the client’s systems * Build and maintain systems, security controls, and records in compliance with the client’s Global financial and data compliance requirements * Collaborate with the team to develop secure architecture, security requirements, and guidelines * Perform cloud environment assessment and hardening * Support the team during third-party penetration testing and remediation activities * Prepare security documentation for auditors and regulators * Select and integrate security tools into CI/CD pipeline ## Must have * 2+ years of experience in IT security industry * Familiarity and experience with network-level and application-level security controls, mechanisms, and vulnerabilities * Knowledge of security software and features as well as the processes to manage and maintain them * Strong experience in Azure cloud environment and Microsoft technology stack * Ability to work well with customers, self-manage through difficult situations, be focused on client satisfaction * Good spoken English