DevSecOps Platform Engineer

Job Description

The Security Admin in the Security Engineering team is a new role responsible for supporting, maintaining, automating and improving our IT Security platforms. You will ensure IG’s security platforms are reliable and effective, and will proactively develop improved automation and integration among our systems. As IG migrates towards greater use of modern approaches like CI/CD pipelines, infrastructure-as-code, and immutable infrastructure, you will be responsible for developing and improving our platforms to align with these approaches. You will gain hand-on experience with many modern Enterprise security products, and play a key role in applying these tools to the challenges of an in-house SOC and Security team.

So, who are we?

Hello, we’re IG Group. No, not Instagram – though we're a pretty big deal ourselves.

We’re a global, FTSE -listed company made up of a collection of progressive fintech brands in the world of online trading and investing. The best part? We’ve snapped up many awards for our top-class platforms, forward-thinking products, and incredible employee experiences.

We believe in financial freedom. And our purpose is to help ambitious people achieve it. Around , people use our groundbreaking technology and forward-thinking platforms to trade the financial products they know and love.

Did we mention we have offices in countries? Yes, when you join IG Group, you'll have the chance to work across multiple brands, with people all over the world. Join us for an exciting future and let’s innovate together

Your role in the Team

The Security Admin is responsible for supporting, maintaining, automating and improving our IT Security platforms. You will perform a wide and growing variety of technical tasks within the Security Engineering team. Your role will be to ensure the smooth and effective operation of a growing set of on-premise and cloud-based security products and solutions. Beyond maintenance, you will be the go-to person for adding functions and features to these tools such as onboarding new log sources, configuring new product integrations and developing custom automation.

Maintain our key platforms by performing upgrades, designing and implementing health monitoring, extending functionality with new integrations and providing new capabilities with automation.

Manage our SIEM platform, including SaaS SIEM & SOAR products and on-premises log collection with WEC and Rsyslog.

Support the SOC team by ensuring that audit logs are collected, integrations function and any new requirements are developed and added.

Builds and maintains the tools and integrations for IG’s in-house SOC

Selects and implements technical security controls and platforms Provides security SME support to IT infrastructure and development projects

Collaborates with architecture and application security teams to continually improve IG’s security posture.

What you'll do

Provide Maintenance & Support

Perform necessary upgrades and troubleshoot issues with all security tools, especially the SIEM/SOAR/Logging platform, Vulnerability Scanner, Secrets Vault and Cloud Security Posture Management solution.

Maintain and improve the growing variety of scripts and utilities used to perform many regular tasks within the SOC.

Assist the SOC team with any questions or challenges they have with our toolset.

Deliver Continuous Improvements

Seek out and implement improvements to our existing tools for better performance, reliability or capability.

Adapt our tools to an ever-changing environment, keeping pace with IG's own technology journey and the wider world of best practices.

Take on and deliver requests from the wider security team for changes to the way our tools currently work.

Enable Automation

Act as an SME for scripting and systems programming, delivering new scripts and utilities to meet the needs of the security team.

Drive improved integration between our various tools to enable new capabilities or solve exiting problems.

Enable the transition of our existing tools and configuration to a CI/CD and Infrastructure-as-Code model.

Who we’re looking for?

You’re curious about things like the client experience, the rapid developments in tech, and the complex world of fintech regulation. You’re also a confident, creative thinker with a knack for innovating. We know that you know every problem has a solution. Here, you can try new ideas, and lead the way in creating inspiring experiences for our clients and everyone around you.

We don’t fit the corporate stereotype. If you want to work for a traditional, suit-and-tie corporate that just gives you a pay cheque at the end of the month, we might not be for you. But, if you have that IG Group energy and you can stand behind what we believe in, let’s raise the bar together.

What you’ll need for this role
 

This is a mid-level role with significant independence, and therefore candidates are expected to convincingly satisfy most of the listed technical requirements while possessing the ability to work both independently and as part of a team. Successful candidates will demonstrate an independent and self-motivated approach to continuing the development of their own skills and knowledge.

+ years of experience in technical IT and/or security roles in an enterprise IT environment is required.

Scripting and/or programming capability is vital to this role. You will have the ability to code in at least two of the following languages, and the willingness to learn the others:

Python PowerShell Bash Terraform

A strong understanding of technical IT concepts is required, including the majority of the following:

Windows and Linux operating systems and system administration. Virtualisation and Containers Public Cloud Networking & DNS Gitlab / GitHub

Strong analytical and problem solving skills

Able to communicate complex information clearly and logically, both verbally and in writing.

Able to collaborate effectively across teams within a complex, rapid-moving environment.

How you’ll grow

When you join IG Group, we want you to have more than a job – we want you to have a career. And you can. If you spot an opportunity, we want you to chase it. Stretch yourself, challenge your self-beliefs and go for the things you dream of. With internal and external learning opportunities, and the tools to help you skyrocket to success, we’ll support you all the way.

The perks

It really is more than a job. We’ll recognize your talent and make sure that you can still have a life – at work, and outside of it. Networks, committees, awards, sports and social clubs, mentorships, volunteering opportunities, extra time off… the list goes on.

Where you’ll work

We follow a hybrid working model; we reckon it’s the best of both worlds. This model also feeds into our secret ingredients for innovation: diversity, flexibility, and close connection.

Plus, you’ll be welcomed into a diverse and inclusive workforce with a lot of creative energy.

Ask our employees what their favorite thing is about working at IG, and you’ll hear an echo of ‘our culture’ That’s because you can come to work as your authentic self. The things that make you, you – like your ethnicity, sexual orientation, faith, age, gender identity/expression or physical capacity – can bring a fresh perspective or new skill to our business.

That’s why we welcome people from various walks of life; and anyone who wants to help us realize our vision and strategy.

So, if you’re keen to connect with our values, and lead the charge on innovation, you know what to do.

Apply now

And these opportunities truly are endless because we have some bold targets. We plan to expand our global presence, increase revenue growth, and ultimately deliver the world’s best trading experience. We’d love to have you along for the ride.

---