Cyber Security- Analyst

Since our launch in 2015, we’ve lent over £15bn to ambitious entrepreneurs up and down the UK. That’s led to the creation of over 40,000 new jobs and over 29,000 new homes – and we’re not about to stop there. We’re dedicated to helping trailblazing businesses thrive and our strong Cyber Security capabilities help us build trust and secure our digital assets and customer data.  This is a fantastic opportunity to join a fast-paced, growing bank with a reputation for doing things differently. We don’t want another cog in the machine, we’re looking for self-starters and bold thinkers who want to pave their own career. In a nutshell this exciting and high-performing role, will play a pivotal part in ensuring OakNorth’s adherence to security related regulatory requirements aligned to global standards and frameworks, and continually improve our security posture aligned to leading industry practices.

Responsibilities:

• Perform application security testing and penetration testing of web application, APIs and mobile (ios/android) applications to identify potential vulnerabilities and risks.
• Conduct threat modelling, secure architecture review and application security assessments.
• Run DAST and SAST tools against the application and code and engage with the development team to prioritize and remediate findings in a timely manner.
• Drive the adoption of static and dynamic code analysis capabilities to catch flaws as part of the design and continuous integration.
• Provide guidance and direction for the evolution of security capability within our development processes and platform environment.
• Conducting security training and awareness sessions for developers and other stakeholders.
• Contribute to the adoption of bug bounty program in the organization.

Desired Skills:

• Extensive hands on experience with security assessment of web/mobile applications and APIs.
• Hands on experience in network and server vulnerability assessment.
• Familiarity with security testing tools such as Burp Suite, Snyk, OWASP ZAP, or Nessus.
• Ability to analyze and interpret code to identify security risks.
• Understanding of common web application vulnerabilities including OWASP Top 10 and SANS Top 25 risks.
• Understanding of bug bounty platforms such as HackerOne.
• Familiarity of testing applications hosted within AWS environments, virtualisation/containerisation technologies (Docker, Kubernetes), and cloud-native security solutions.
• Excellent communication skills, particularly written communication, and collaboration skills, as well as the ability to work independently.
• Familiarity with risk profiles specific to banking and fintech organizations, including emerging threats, classes of attack, and ongoing campaigns.

About UsWe’re OakNorth Bank and we embolden entrepreneurs to realise their ambitions, understand their markets, and apply data intelligence to everyday decisions to scale successfully at pace.  Banking should be barrier-free. It’s a belief at our very core, inspired by our entrepreneurial spirit, driven by the unmet financial needs of millions, and delivered by our data-driven tools. And for those who love helping businesses thrive? Our savings accounts help diversify the high street and create new jobs, all while earning savers some of the highest interest on the market.  But we go beyond finance, to empower our people, encourage professional growth and create an environment where everyone can thrive. We strive to create an inclusive and diverse workplace where people can be themselves and succeed. Our story OakNorth Bank was built on the foundations of frustrations with old-school banking. In 2005, when our founders tried to get capital for their data analytics company, the computer said ‘no’. Unfortunately, all major banks in the UK were using the same computer – and it was broken.  Why was it so difficult for a profitable business with impressive cashflow, retained clients, and clear commercial success to get a loan?  The industry was backward-looking and too focused on historic financials, rather than future potential. So, what if there was a bank, founded by entrepreneurs, for entrepreneurs? One that offered a dramatically better borrowing experience for businesses? No more what ifs, OakNorth Bank exists.  
For more information regarding our Privacy Policy and practices, please visit: https://oaknorth.co.uk/legal/privacy-notice/employees-and-visitors/