Information Security Officer

About Us

Form3 is a disruptive fintech startup on a mission to make payments easier, faster and cheaper for  fintechs, challenger banks, ecommerce gateways, card providers and traditional banks wanting to reinvent themselves.  Our customers include everyone from FinTech, challenger banks, ecommerce gateways and card providers, through to older traditional banks that are trying to reinvent themselves.   

What we're looking for

We’re looking for an experienced Information Security Officer to support our current Head of Information Security. A security specialist with strong working knowledge and understanding of information security frameworks (IS027001, ISAE3000/SOC2, SOC1, GPDR and PCI DSS), security operations and application security best practices. A versatile Security Officer, with experience working with public cloud, in particular AWS and the AWS security services. Particular exposure to developing, implementing, auditing and improving information security policies and procedures aligned to relevant industry frameworks/standards.

Your skills

• Creating/maintaining an ISO27001 ISMS or PCI compliance project and operation.
• Performing Business Impact Analysis, risk assessment and treatment.
• Operating, maintaining, auditing and improving Vulnerability Management, SIEM and Threat Intelligence systems.
• Perform response analytics during and after an incident, determine root cause and proper mitigation of cyber security events.
• To remain up to date with the latest threats and vulnerabilities to ensure operational tools and processes are up to date, introduce process improvements and ensure incident response plans are up to date and effectively tested.
• Ensure that customer information and information systems are protected from unauthorised access / intrusion, use, disclosure, disruption, modification or destruction.
• Perform periodic internal audits against policies and procedures to ensure conformance.
• Participate and assist in external audit activities.
• Perform periodic audit, review and contribute to the continuous improvement of IT security standards, processes and procedures.
• Knowledge of various technologies and operating systems and their related security configuration, hardening and risks, ie Linux/Unix, Mac OS, Containers, Office 365, etc.
• Deliver Information Security and awareness training programs.

Our Benefits

• Competitive Salary  
• 30 days holiday (plus Bank Holidays)  
• Flexible hours/Remote Working  
• Company Bonus Scheme  
• Pension Contribution  
• Team Events  
• An incredible team to work with  
• A strong and clear company culture  
• You’ll get the opportunity to be part of a rapidly scaling FinTech company, working alongside some of the brightest talents in tech and payments