Senior Security Engineer

The Apex Group was established in Bermuda in 2003 and is now one of the world’s largest fund administration and middle office solutions providers.

Our business is unique in its ability to reach globally, service locally and provide cross-jurisdictional services. With our clients at the heart of everything we do, our hard-working team has successfully delivered on an unprecedented growth and transformation journey, and we are now represented by over circa 13,000 employees across 112 offices worldwide.Your career with us should reflect your energy and passion.

That’s why, at Apex Group, we will do more than simply ‘empower’ you. We will work to supercharge your unique skills and experience.

Take the lead and we’ll give you the support you need to be at the top of your game. And we offer you the freedom to be a positive disrupter and turn big ideas into bold, industry-changing realities.

For our business, for clients, and for you

The Senior Security Engineer is a critical role within Security Engineering & Information Security, responsible for supporting and executing Apex’s Security & Security Engineering requirements. The role reports to the Head of Cloud and Product Security.

Key duties and responsibilities:

Security Engineering

• Oversight of security tooling, including multiple vendor technologies e.g., Mimecast, Tessian and Netskope and public cloud security tools (such as Azure Security Center, Conditional Access and MCAS).   
• Designing and implementing security tooling as well as strategic vision for toolsets.   
• Ensure cloud security tooling is delivering the security value/reducing loss exposure and has the appropriate people, process, and metrics to prove it is designed and operating effectively.
• Reviewing Cloud Security Patterns written by Security Engineers. 
• Oversee any Post-Incident Review actions, Audit findings/similar. 
• Collaborate with the Head of Cloud and Product Security to develop and implement the Cloud Security Strategy and associate roadmaps & patterns. 
• Providing input and feedback on security policies, standards, and best practices.   
• Mentor and coach Security Engineers. 
• Ensure cloud security standards are up-to-date and serve intended purpose. 
• Review cloud security vulnerabilities to ensure they are relevant and managed properly (I.e. in line with a risk-based approach).
• Deputise for the Head of Cloud and Product Security in committees and forums, sharing expertise and shaping the future of Cloud security. 

Experience and Knowledge:

• Minimum of 7-10 years’ experience in Information & Cyber Security.
• Strong Experience with security tooling e.g., Tessian, Mimecast and Netskope.  
• In depth understanding of cloud security across major cloud providers (i.e., Azure, AWS, GCP) as evidenced by industry certifications (AZ-500, MS-500 etc.) 
• Wide range of experience in Security roles with a focus on Cloud security, CI/CD and Software Security. 
• Knowledge of industry standards with a focus on SOC II, ISO27001 and NIST. 
• Knowledge of IAM and PAM tools such as SailPoint and CyberArk would be advantageous. 
• Able to lead calmly through periods of high pressure while inspiring people and teams to achieve excellence and grow their skills. 
• Proven experience enabling the use of Cloud in highly regulated business environments. 
• Experience using niche/3rd party products to resolve security gaps that cloud native controls do not offer. 
• Experience working with Cloud security controls in hybrid environments, where shared responsibility may be further sub-contracted. 
• Thorough and broad understanding of security technology from Cloud infrastructure to application. 
• Experience of mentoring and growing junior team members enabling them to grow.  
• Willingness to continuously improve knowledge and skills in Cloud Security and Security Engineering. 
• Passion for implementing change. 
• High communication skills required at all levels. Excellent command of verbal and written communication (English). Effective presentation style for all levels of stakeholders.
• Strong problem solving, decision making, issue analysis and resolution skills. 
• Highly organised.
• Ability to work well in a multicultural global work environment. 
• Demonstrated ability to work with multiple stakeholders and manage competing priorities with internal clients.
• Ability to gather and address both business and technical requirements. Must be highly motivated.

What you will get in return:

• A high level of visibility within a large organization on an upwards trajectory.
• Opportunity to work with a diverse, agile and global team.
• Exposure to all aspects of the business and cross-jurisdiction.
• The opportunity to innovate, lead, bring discipline to brand activity and really make a difference.
• A genuinely unique opportunity to be part of an expanding large global business.
• Work for a fast developing and one of the world's leading independent fund administrators.
• Opportunities for professional development.
• Positive and hospitable work environment.
• A genuinely unique opportunity to be part of an expanding large global business.

Disclaimer: Unsolicited CVs sent to Apex (Talent Acquisition Team or Hiring Managers) by recruitment agencies will not be accepted for this position. Apex operates a direct sourcing model and where agency assistance is required, the Talent Acquisition team will engage directly with our exclusive recruitment partners.