Northmill

• Take part in the process of designing, developing, and improving security-related platform capabilities used across modern financial systems. • Help strengthen the security posture of our AWS-based environments by working on cloud security controls, threat detection, vulnerability management, incident response, and operational security processes. • Have an impact on our platform and engineering standards by partnering with development teams, the Security team, and external partners such as penetration testers and auditors. • Support product and engineering teams in designing secure solutions and improving the security of applications and platform components used in highly controlled and regulated environments, including web application security practices and secure design reviews. • Take part in internal security reviews and technical auditing activities, helping identify risks, improve security posture, and ensure that security-related requirements are properly implemented in practice. • Act as one of the main technical owners on the Platform side for selected security, compliance, and audit-related activities, including helping engineering teams understand and implement requirements related to our environment and industry standards such as PCI DSS. • Drive vulnerability remediation efforts by helping engineering teams identify, prioritize, and address security findings practically and effectively. • Work with AWS security services and tools such as AWS Web Application Firewall (WAF), Amazon GuardDuty, AWS Network Firewall, AWS CloudTrail, AWS Key Management Service (KMS), and AWS Shield, as well as Wiz, Microsoft Sentinel, incident.io, Jira, Confluence, and Git. • Work using modern AI dev tools.