oaknorth.ai logo

Application Security Engineer

London OakNorth - Product Development Full time
With offices in London, New York, Manchester, Istanbul, Gurgaon, Bengaluru, Shanghai, Singapore and Hong Kong, OakNorth is the next-generation credit platform that’s redefining lending to small and medium-sized businesses globally.
OakNorth was set up in 2015 by Rishi Khosla and Joel Perlman, who previously co-founded Copal Amba and grew it to 3,000 employees over 12 years, before selling it to Moody’s (NYSE: MCO) in 2014, returning 125 times capital to seed investors.
Since its inception, OakNorth has secured over $1bn from several investors, including: Clermont Group, Coltrane, EDBI of Singapore, GIC, Indiabulls, NIBC, Toscafund, and SoftBank’s Vision Fund.
In the UK, the platform has helped us build a profitable loan book (via OakNorth Bank) of over £4bn and secure over £600m of repayments. In terms of the impact this has had on the economy, OakNorth Bank’s loans have directly helped with the creation of 10,000 new homes and 13,000 new jobs in the UK, as well as adding several billion pounds to the economy. Globally, the platform has been deployed at various banks across North America, Europe, and Asia.
Today, the global team is made up of almost 730 people.

OakNorth has an Engineering team in London which has built out the first version of our Credit analysis platform. As we go live with more customers, security is more and more important so we are setting up a dedicated SecOps team 
We're looking for strong Application Security Engineers to join the team and ensure our platform is secure as it evolves. 
You will:
  • Undertake analysis and forensic testing on the entire OakNorth platform. 
  • Influence peers from other teams on secure coding, best practices and proactive security measures.
  • Develop, maintain and document relevant security documentation including security runbooks and response SoPs 
  • Work on our security model to ensure that other developers can build security and access control into their code with minimum effort.
  • You have
  • Understanding of the secure software development lifecycle with a focus on building access control structures and other security technologies in a large cloud-based application.
  • Knowledge of distributed systems and security protocols.
  • Excellent written and verbal communication skills.
  • Ideally, experience with the technologies used in our current stack: Python, PostgreSQL, ElasticSearch, Kafka, GraphQL and React. We deploy into K8s on AWS using Docker and Terraform.  
  • Fintech experience desirable but not required.

  • Thank you very much for your interest in OakNorth. We are happy to consider you for roles within our group of companies. If we can identify a match between your skill set and our immediate recruiting needs, please expect to hear from us very soon. If we are unable to identify a fit in the near term, please note that we intend to retain the data you send to us so we may contact you in the future.

    For more information regarding our Privacy Policy and practices, please visit: https://www.oaknorth.com/privacy-notice/employees/