Senior Security Engineer in London

Copper is a digital asset technology company dedicated to helping institutional investors safely acquire, trade, and store crypto assets. Built and led by Dmitry Tokarev, the firm provides a comprehensive suite of custody, trading and settlement solutions that reduce counterparty risk and bring greater capital and operational efficiency to digital asset markets. At the heart of Copper's offering is Multi-Party Computation (MPC) technology – the gold standard in secure custody. Copper’s multi-award winning custody system can be connected to centralised exchanges, DeFi applications and even staking pools without the assets leaving the custody. ClearLoop is the first solution in the market that overcomes a growing industry challenge; counterparty risk with exchanges. This solution underpins a full prime services offering, connecting global exchanges and enabling customers to trade and settle directly from the safety of their MPC-secured wallets.

Department environment: Copper’s Information Security department keeps the business’ systems and network resources secure and protects the company, employees, and client data. The Infrastructure Security team focuses on providing objective oversight and validation of Copper’s infrastructure security controls and processes. As a Senior Security Engineer, you will be instrumental in strengthening Copper's security infrastructure, technical controls, and assurance. You will collaborate with various teams to implement and maintain robust security measures, ensuring the effectiveness of our security posture across Copper, and safeguarding our digital assets against threats.

Key Responsibilities of the role

• Identity and Access Management (IAM): Responsible for configuring and implementing Identity and Access Management solutions and supporting systems, including Entra ID (AAD), Identity Governance, and AWS Identity Centre. Manage permission settings and access controls to ensure secure and efficient user access to company resources.
• Security Systems Configuration and Analysis: Ensure security systems are configured according to specified requirements and industry best practices. Analyse current security setups, recommend improvements, and assess against standards like CIS, STIG, and internal control frameworks.
• Security Solution Inventory and Maintenance: Maintain an inventory of security solutions like firewalls and anti-virus software. Regularly review and recommend changes or upgrades to existing security tools.
• Security Practices and Technical Advice: Consult with staff, managers, and executives to advocate best security practices. Provide technical advice on security measures and potential enhancements. Create or update policies and procedures to align with industry regulations and best practices.
• Security Risk Management: Manage vulnerability scanning tools (Wiz, Defender, Armorcode) to identify and mitigate security risks across endpoints and cloud infrastructure. Conduct risk assessment activities to identify potential threats and develop plans to address vulnerabilities. Ensure security controls comply with SOC2 framework and other regulatory requirements.
• Scripting and Automation: Design and implement solutions for log shipping to managed SIEM systems, such as Microsoft Sentinel. Oversee the integration of diverse data sources, including network logs, application logs, and security feeds, to enhance the analytical capabilities of our security systems. Develop and maintain scripts for efficient operation and response within the security infrastructure, utilising a variety of high-level programming languages (notably, PowerShell and/or Python).

Your experience, skills and knowledge

• Essential: Proficient in managing corporate identity solutions, including integrations with third-party applications to ensure secure access to resources. Skilled in configuring and reporting across Identity Governance and entitlement management within a Microsoft and AWS environment.
• AWS Security: Skilled in leveraging AWS security services to fortify cloud infrastructure, deploying GuardDuty and AWS Security Hub for continuous security monitoring and threat detection, managing AWS Identity and Access Management to ensure robust access controls, and utilising Route 53 and Key Management Service for enhanced security and encryption.
• Microsoft 365 and Azure Security: Demonstrated expertise in securing corporate environments using Microsoft 365 and Azure Security tools, effectively managing Azure Active Directory, implementing robust identity governance frameworks, and deploying Azure Sentinel for advanced threat protection.
• Scripting and Automation: Demonstrated ability in using scripting languages like PowerShell, Bash, and Python to automate security tasks, streamline processes, and enhance system efficiencies.
• System and Application Hardening: Skilled in the assessment and hardening of operating systems and SaaS applications, adhering to CIS and STIG standards.
• Network Perimeter Security: Experience in securing, configuring, and managing outbound and inbound network traffic using tools for filtering and securing web traffic, network security devices that control traffic, virtualised network environments and Web Application Firewalls (WAF).

Desirable: Experience in configuring and managing Secure Web Gateways, familiarity with Enterprise Risk Management (ERM) programmes and compliance with standards like IS27001, SOC2, and NIST CSF, and awareness of the global regulatory landscape as it pertains to cryptocurrencies and digital assets.

The benefits offered

• Holidays: 27 days per annum paid holiday, in addition to bank holidays.
• Years of Service Days: Employees are awarded one additional day of paid time off per year of service (up to three years).
• Vitality Health: Medical Insurance, Dental Insurance, Audiology Cover, Optical Cover, Menopause Support, and additional benefits through the Vitality programme.
• Home Working Energy Support Scheme: Monthly top-up of £60 or £75 (subject to your energy supplier).
• Pension: Up to 10% matched contribution to our company pension scheme via Smart Pensions.
• Cycle to Work.
• Life Insurance cover: Four times your base salary.
• EAP: Access unlimited mental health consultations and contact a 24/7 confidential helpline for emotional support.
• Sponsored Learning and Development opportunities.
• Regular company events and social activities.

If you think you have everything we’re looking for and more, then we’d love you to apply for the opportunity. Copper is an equal opportunity employer. We embrace diversity and equal opportunities in a serious way. We are committed to building a team that represents a variety of backgrounds, perspectives, and skills.