Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Design and implement security measures to protect against cyber threats.
- Company: Join a leading fintech company with a remote-first culture.
- Benefits: Competitive salary, annual bonus, 25+ days holiday, and private medical insurance.
- Other info: Dynamic role with opportunities for professional growth and collaboration.
- Why this job: Make a real impact in cybersecurity while enjoying great work-life balance.
- Qualifications: Technical skills in security and familiarity with compliance frameworks.
The predicted salary is between 50000 - 60000 ÂŁ per year.
We are seeking an Information Security Engineer to help drive enterprise-level information security initiatives and embed information security across our operations. In this role, you will design, implement, and maintain robust security infrastructure and controls to protect the organization's computer networks, systems, and data from cyber threats. You will build and manage security tools, conduct vulnerability assessments, and respond to security incidents. You will also advise the business on cyber security matters. This is primarily a remote position, with occasional in-person responsibilities at our Bristol, UK office.
The Ideal Candidate
- Blends technical skills with business awareness
- Comfortable working across multiple areas of security and excited to learn more
- Has familiarity with compliance frameworks (PCI, GDPR) and protection frameworks (NIST, ISO 27001)
- Partners cross‑functionally to drive security, automation, and continuous improvement
- Communicates effectively across technical and non‑technical stakeholders
- Evangelises a proactive security culture organization‑wide
Key Responsibilities
- System Design & Implementation
- Design and deploy secure, scalable and reliable security tools
- Monitoring & Threat Detection
- Monitor systems for security incidents
- Analyze and troubleshoot alerts
- Tune alerting systems
- Incident Response
- Respond to security incidents
- Conduct investigations and coordinate cross‑functional response
- Identify vulnerabilities and/or gaps in security posture
- Coordinate and track remediation of any identified issues
- Vulnerability Management
- Perform regular vulnerability assessments
- Identify and remediate weaknesses
- Implement and maintain controls aligned with internal standards
- Penetration Testing
- Coordinate the company’s penetration tests with internal and external stakeholders
- Identify, surface, and track issues with the relevant system owners
- Automation & Scripting
- Develop scripts to automate security tasks and improve efficiency
- Identify processes where automation can be leveraged to create efficiencies
- Security Awareness & Training
- Educate internal teams on security responsibilities, procedures, and controls
- Help select appropriate security training modules
- Track completion of training requirements
- Cross‑Functional Collaboration & Enablement
- Contribute to creation and updates of security policies and procedures
- Engage with stakeholders across Engineering, Product, Legal, and HR to support security initiatives
- Support vendor risk and third‑party security assessment activities
Benefits
- Annual bonus scheme dependent on individual and company performance
- Annual salary of £50,000 – £60,000
- 25 days holiday each year plus bank holidays and one additional day after each year of service (up to a maximum of 30 days)
- Workplace pension scheme
- Private medical insurance (after 30 days of employment)
- 35 hours per week with 7 hours per day work schedule
- Remote‑first culture
- Great work‑life balance with a Flexi‑time policy
- Family‑friendly policies (enhanced maternity and paternity pay and shared parental leave)
- Allocated company training budget
- Bike 2 Work scheme
- Employee Assistance Programme providing wellbeing, family and financial support and counselling services
- Commitment to employee wellbeing, including mental health first‑aiders
- Employee referral scheme with generous financial reward
- Bonusly colleague reward scheme
Equal Opportunity
NMI is committed to providing equal employment opportunity for all persons regardless of race, colour, religion, sex, age, marital status, national origin, sexual orientation or sexual identity, genetic information, citizenship status (except those that do not have the legal right to be employed in the United States), disability, military service, service member, veteran status, or any other basis protected by applicable law. Please note that all offers of employment are made subject to receipt of satisfactory background and financial checks.
Information Security Engineer (Fintech/Payments) in Bristol employer: NMI
Contact Detail:
NMI Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Engineer (Fintech/Payments) in Bristol
✨Tip Number 1
Network like a pro! Reach out to folks in the fintech and security space on LinkedIn. Join relevant groups, attend virtual meetups, and don’t be shy about asking for informational interviews. You never know who might have the inside scoop on job openings!
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, especially those related to security tools or vulnerability assessments. This gives potential employers a tangible look at what you can do and sets you apart from the crowd.
✨Tip Number 3
Prepare for those interviews! Research common security scenarios and be ready to discuss how you’d handle them. Brush up on compliance frameworks like PCI and GDPR, and think of examples where you’ve successfully collaborated with cross-functional teams.
✨Tip Number 4
Apply through our website! We love seeing candidates who are genuinely interested in our company. Tailor your application to highlight your experience with security initiatives and your passion for creating a proactive security culture. Let’s get you on board!
We think you need these skills to ace Information Security Engineer (Fintech/Payments) in Bristol
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Information Security Engineer role. Highlight your relevant experience with security tools, compliance frameworks, and any specific projects that showcase your skills in protecting networks and data.
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're excited about this role at StudySmarter and how your background aligns with our mission to drive enterprise-level information security initiatives.
Showcase Your Technical Skills: Don’t forget to mention your technical skills! Whether it's vulnerability assessments, incident response, or automation, make sure we see how you can contribute to our security infrastructure and culture.
Apply Through Our Website: We encourage you to apply through our website for a smoother application process. It helps us keep track of your application and ensures you don’t miss out on any important updates from us!
How to prepare for a job interview at NMI
✨Know Your Security Frameworks
Familiarise yourself with compliance frameworks like PCI and GDPR, as well as protection frameworks such as NIST and ISO 27001. Be ready to discuss how these frameworks apply to the role and how you’ve used them in past experiences.
✨Showcase Your Technical Skills
Prepare to talk about your experience with designing and implementing security tools. Bring examples of past projects where you’ve successfully deployed security measures or conducted vulnerability assessments, and be ready to explain your thought process.
✨Communicate Effectively
Since this role involves working with both technical and non-technical stakeholders, practice explaining complex security concepts in simple terms. Think of examples where you’ve had to bridge the gap between different teams and how you managed those conversations.
✨Demonstrate a Proactive Security Mindset
Be prepared to discuss how you promote a proactive security culture within an organisation. Share any initiatives you’ve led or participated in that focused on security awareness and training, and how you measure their effectiveness.