← 全部現有職位
GRV-007安全與基礎設施混合工作(倫敦)

Senior Security Engineer

Own the application security, infrastructure security, and security operations of the Gravenos platform.

薪酬: £80,000 to £110,000 base, plus equity

此內容僅提供英文版本。

關於此職位

A platform that handles financial data is, by its nature, a high-value target. The seriousness of the security posture is, in our reading, table stakes for credibility in the audience we serve. This role exists to set and maintain that posture.

職責

  • Establish and maintain the application security programme, including code review, dependency management, and vulnerability disclosure.
  • Own the infrastructure security posture: access controls, secrets management, network controls, and audit logging.
  • Lead the response to security incidents, including the disclosure process documented on the Security and Trust page.
  • Conduct and oversee the regular security assessments (penetration testing, threat modelling, red-team exercises).
  • Liaise with the third-party security advisors and the firm's compliance function as the platform matures.

我們所尋求者

  • Five or more years of professional security engineering experience.
  • Substantial application security and infrastructure security background.
  • Familiarity with the relevant frameworks (OWASP ASVS, NIST CSF, ISO 27001) and the standards expected in a regulated environment.
  • Disciplined approach to risk articulation, threat modelling, and incident response.

額外有助但非必要

  • Prior experience at a financial services firm or fintech with regulatory scrutiny.
  • CISSP, OSCP, or comparable credential.
  • Experience with AI and LLM security threat models (OWASP LLM Top 10).

如何應徵

請致函 careers@gravenos.com,並於主旨欄引用參考編號 GRV-007。請附上簡短之求職信、履歷或同等之工作紀錄,以及任何閣下認為相關之工作樣本。我們會作出回覆。