Transact

Are you looking for a Security role within a dynamic, innovative financial technology organisation? If so, we are recruiting for a Cyber Security Engineer to join our Cyber Security team! The Role Working alongside the team you will help to design, develop, and mature the companys cyber security capability, including the selection, implementation, and management of security tools/technologies, focused on detection, prevention, and analysis of security threats. This role offers a great opportunity to help define and shape the security function within a collaborative IT department, ensuring the protection of customer assets. Responsibilities include Work with technology and business teams to deliver security processes, technologies and controls, acting as the authority on security related queries. Define, design, implement, and maintain security solutions appropriate to the business needs. Support the definition, execution and continuous improvement of key cyber security processes including vulnerability & patch management, security incident response, security monitoring, endpoint security, identity and access management, network security, and cryptography. Assist with developing and maintaining security policies, processes and incident response management plans and playbooks. Prepare and document standard operating procedures and protocols. Provide expertise on security requirements into core technology processes like asset management, change management, third-party management, technology development & acquisition, configuration management, etc. Contribute as a team member in projects and change initiatives aimed at increasing enterprise security capabilities e.g., identity and access management, log aggregation, etc. Required experience: Minimum of 2 years experience in a Security Engineer/Analyst, role focusing on designing and implementing security solutions and managing security infrastructure. Previous experience working within a financial services environment and a working understanding of relevant regulations. Experience and in-depth technical knowledge of deploying, maintaining, and configuring a wide range of security technologies within a large and complex environment (anti-malware/EDR, SIEM solutions, vulnerability scanners, patch management, CASB, DLP, penetration testing tools, etc.) Knowledge of TCP/IP and related network protocols: knowledge of standard network protocols like TCP, ARP, ICMP, DHCP, DNS, HTTP, SNMP, VPN etc., and accompanying protocol/packet analysis/manipulation tools. Understanding of key operating systems and network appliances and the ability to assess their security posture based on their configuration/deployment. Experience of working effectively with a variety of stakeholders from different technology and business teams. Strong verbal and written communication skills. Desirable experience: Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or Certified Information Security Manager (CISM). Strong knowledge of Operating System security and system hardening concepts such as CIS Benchmarks. Experience in working with information security frameworks and regulatory requirements including ISO27001, NIST, PCI DSS, GDPR, Cyber Essentials. Experience of general IT Audit processes and conducting risk assessments. You will be a proactive self starter with strong communication skills and comfortable interacting with stakeholders at all levels. You will have a strong technical background with previous experience of implementing security solutions. You will have the ability to tailor your approach and translate requirements to non-technical members of staff. We offer a competitive remuneration package, including company discretionary bonus, excellent pension contributions, an attractive staff share scheme, BUPA health insurance, buying and selling of annual leave and sponsorship of relevant professional qualifications. The role is based in our central London office, working a minimum of two days a week in the office and three days a week from home. About Us Transact is a leading UK investment wrap platform for financial advisers and their clients. Our culture is collaborative, inclusive and open-minded. We work hard to continually challenge the way we do things to maintain our market leading status. As a customer-centric and client focused business, we put our clients, like Mrs Miggins, at the heart of everything we do. Our platform enables clients and their advisers to manage their financial portfolio in one single online place, and is supported by unrivalled personal service. Our goal is to make all aspects of portfolio management as easy and efficient as possible for everyone involved, through the features we develop, our integrations with other systems, and the support we provide. Our purpose: We enable the Miggins family and their adviser to hold their investments on a single platform across wrappers. We provide custody, tax wrapping, trading and reporting.

We are currently recruiting an exciting opportunity to join the IT team as an Integration Developer. Reporting to the IT Development Manager this role will act as the technical bridge between our robust, internal developed core systems and modern cloud based SaaS platforms. Working with the Development, Engineering and Project teams your primary focus will be to define API driven integrations and utilise Microsoft middleware to create seamless, event driven data flows across the business. Role Overview Your main area of responsibility will be to design, build, and orchestrate secure API integrations and complex data flows across disparate systems. You will manage the extraction, transformation, and routing of data working with multiple integration protocols such as REST and GraphQL to ensure reliable and efficient communication. You will be responsible for engineering and maintaining Microsoft-centric middleware solutions using the Azure integration stack, including API Management, Logic Apps, and Azure Functions. A strong emphasis will be placed on promoting scalable, decoupled, and event-driven integration patterns, moving the organisation away from brittle point-to-point connections and towards modern, resilient architectures. Your responsibilities will also include embedding "Secure by Design" principles across all integration solutions and ensuring best practices are followed throughout the full lifecycle of delivery. You will also create and maintain clear, comprehensive technical documentation covering APIs, middleware processes, and end-to-end system integrations, enabling maintainability, transparency, and effective knowledge sharing across technical teams.