Watch this video to learn more about Invesco, Ltd.
Job Type
Job Details
intelliflo is a global business that welcomes bold ideas and all points of view. Doing what matters inspires us, and we believe that we grow best – as people and businesses - by working together and always striving to get better without fearing failure.
We’re not looking for a ‘culture fit’. We want you to bring your unique skills and perspectives and add to our culture, not conform to it. This isn’t about finding the person who fits in; we want people who stand out.
Who is intelliflo?
Sound financial advice has the power to transform lives and should be accessible to the many, not the few. intelliflo widens access to financial advice through leading technology that powers the advisory experience.
We use open software architectures and unmatched industry experience to simplify a complex digital landscape and help advisors flourish and grow. Our solutions support over 30,000 financial advisors globally, who represent over three million households with over USD 1 trillion assets.
intelliflo operates independently under its own brand as a wholly owned subsidiary of Invesco, a global leader in the asset management industry.
Your Role :
The Cloud Security Engineer is primarily responsible for the security posture in our cloud environments and will be responsible for delivery of security requirements. The individual will be responsible for the deployment and maintenance of our security solutions, and remediating security findings. This role will be hands on contributing to and maintaining the security posture through the infrastructure (as code) and automations for the SaaS product. The individual will be responsible for managing and enhancing all security efforts in the cloud base infrastructure. You will be focused on delivering secure cloud-based infrastructure as code in order to maintain alignment with security policies and standards.
The candidate will work primarily as part of the Security and Privacy team and will be highly engaged with infrastructure teams to deliver security initiatives in the cloud environment. The role would suit someone who has proven expertise as a Security Engineer.
What you will be doing:
Maintaining cloud security tools and platforms.
Implementing and supporting secure infrastructure (e.g., monitoring, security services, network, compute, containers, data stores).
Enhancing cloud security solutions for monitoring, vulnerability remediation, and incident response.
Monitoring cloud infrastructure and respond to security misconfigurations.
Following incident response processes to remediate security findings.
Working with engineering teams to implement secure solutions.
Maintaining compliant cloud infrastructures using frameworks like CIS, ISO27000, SOC2, NIST.
Liaising with security vendors for problem resolution.
Following Secure Software Development Lifecycle (SDLC) and advise on improvements.
Reviewing and improve operational processes.
Creating metrics to understand security posture.
Implementing infrastructure as code and support disaster recovery testing.
Automating security and shift left using DevSecOps methodologies.
Working effectively with your team and share knowledge.
What you will bring:
Good understanding of cloud service architecture (Azure and AWS) with an emphasis on security.
Hands-on experience with logging, monitoring, and integrating cloud infrastructure.
Experience identifying security threats, misconfigurations, and responding to incidents.
Strong Linux and Windows sysadmin skills, including networking, filesystems, processes, and security.
Experience with Git workflows and CI/CD for infrastructure delivery.
Solid understanding of modern information security methodologies and standards.
Knowledge of information security principles, Cyber Kill Chain, MITRE ATT&CK, and other frameworks.
Experience assessing and consolidating the security posture of SaaS Cloud infrastructures.
Ability to break down complex problems into manageable tasks.
Experience securing SDLCs, conducting SAST and DAST testing, threat modeling, and incident management.
Ability to create and enhance the security of cloud-native distributed systems using Terraform and CloudFormation.
Familiarity with containerization and microservices architecture security concepts.
Hands-on experience with ISO27000 series, SOC2, CIS Controls, etc.
Effective communication in English, with excellent verbal and written skills.
Interest in contributing to a world-class cloud platform.
Cloud certifications (e.g., AWS Certified Solutions Architect – Associate, Microsoft Certified: Azure Solutions Architect Expert) desirable but not required
Experience with infrastructure-as-code, CI/CD, and other DevOps tools.
Knowledge of financial services, business processes, and relevant threat actors.
Security Certifications: OSCP, GCLD or GCSA
AWS Certifications: Security Specialist or Security Engineer
intelliflo’s workplace model is designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection when possible. Most teams within our England office work 1-day a week in the office, however, most of our teams within the United States and India operate in a remote working pattern. Certain limitations apply. Please consult with your Talent Acquisition contact during the interviewing process.
What’s in it for you?
intelliflo offers industry-leading Total Rewards that help you thrive – in and out of the office, including competitive pay, retirement savings plans, generous health and wellness benefits, and much more.
Our commitment to diversity, equality, and inclusion
Our aspiration is for our workforce to continually reflect the diversity of people and perspectives in today’s evolving society, which we believe is fundamental to our efforts to widen access to financial advice. intelliflo is proud to be an Equal Opportunity Employer. We are committed to equal employment opportunity for all job applicants and employees. Individuals seeking employment at intelliflo are considered without regards to race, religion, color, sex, gender, gender identity, sexual orientation, marital status, national origin, citizenship status, disability, age, military or veteran status; or any other characteristic protected by applicable laws.
The above information on this description has been designed to indicate the general nature and level of work performed by employees within this role. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job. The job holder may be required to perform other duties as deemed appropriate by their manager from time to time.
We’re proud to be an investment firm that achieves moretogether. One that’s focused on doing work that matters. One that gives a voice to every... Read more