Plum

Security Specialist

Plum  •  Athens, GR (Onsite)  •  1 day ago
Apply
Save Job
Mark Applied Mark Interviewed Mark Offered
Hide Job Report Job
AI can make mistakes so check important info. Chat history is never stored.
75
AI Success™

Job Description

Hey! We’re Plum, your smart saving and investing app on a mission to help grow money for life. Whether you’re stashing the cash for tea and toast in your first home or catching some rays during retirement, Plum’s got your back.

Since 2016, over 2 million people in 10 European markets have set aside more than £2 billion with our clever automation and AI – that’s the magic of Plum! As recognition for our work, we’ve received awards from the likes of Deloitte, Finder, and more.

That’s all down to our passionate team of 200+ Plumsters, who work around Europe to help us achieve our mission. And now we’re looking for more brilliant people to join us on our journey.

The Role

As our Information Security Specialist, you will be the CISO’s "force multiplier." You aren't just a gatekeeper; you are a builder and a guardian. This role is designed for a security professional who wants to touch every part of a modern Fintech ecosystem, from cloud architecture and DevSecOps to compliance and culture. You will bridge the gap between high-level policy and technical execution, ensuring our platform remains resilient in a rapidly shifting threat landscape.

Your key responsibilities 🎯

  • Security Operations (SecOps): Be our first line of defense. You’ll monitor our posture using SIEM/EDR tools, participate in incident response, and turn vulnerability scan results into actionable remediation plans.
  • Vulnerability Orchestration: Act as the bridge between scanning tools and Engineering teams; help prioritize the backlog of vulnerabilities (SLA tracking) and validate that fixes are actually implemented correctly.
  • Resilience Testing: Assist the CISO in coordinating and documenting annual Business Continuity and Disaster Recovery tabletop exercises to ensure the organization can recover from a major security event.
  • Compliance & Audit Support: Work directly with the CISO to maintain our ISO 27001 and GDPR frameworks. You’ll help gather evidence for audits and perform internal risk assessments to ensure we stay "audit-ready" at all times.
  • Security Architecture & DevSecOps: Partner with Engineering to ensure "Security by Design." You’ll review CI/CD pipelines, assist with TDD (Tech-Design Document) reviews, and ensure AWS/GCP infrastructure changes meet our security baseline.
  • Identity & Access Management (IAM): Own the "Principle of Least Privilege." You will audit and manage access controls across production and corporate environments to ensure only the right people have the right access.
  • Risk & Third-Party Management: Help evaluate the security of our vendors and financial integrations. You’ll identify risks in our supply chain before they become our problems.
  • Document Governance: Assist in the annual review and update of the Information Security Management System (ISMS) policies and procedures to ensure they reflect current technical realities and regulatory requirements.
  • Security Culture: Support internal phishing simulations and security awareness training programs for all staff.

Who you are 👀

  • Around 4 years in information security, ideally within Fintech, Banking, or a high-growth SaaS environment.
  • Familiarity with Cloud Security (AWS/GCP), Container Security (Docker/Kubernetes), and integrating automated security controls within DevSecOps pipelines.
  • Strong technical understanding of network protocols, encryption standards, IAM, application security (OWASP), authentication & authorization (OAuth/SAML), and data lifecycle controls.
  • Knowledge and good understanding of security standards and frameworks
  • Familiarity with AI/LLM security risks
  • Regulatory Knowledge: Solid understanding of financial data regulations and security frameworks ( ISO 27001, GDPR, etc.
  • A proactive problem-solver with a 'security enablement' mindset, focused on finding secure ways to achieve business goals rather than acting as a traditional gatekeeper.

Plum's Perks

  • We're all in this together! Own part of the company through stock options 💷
  • Private health insurance
  • Annual training budget
  • Plum Premium
  • Referral scheme: earn competitive rewards
  • Flexible approach to remote working: we encourage at least 2 days a week in one of our beautiful offices in London, Athens or Cyprus
  • Team breakfasts and team lunches.
  • 25 days holiday + bank holidays
  • 45 work-from-anywhere days: giving you the flexibility to work your way.
  • 2 weeks sabbatical after 4 years to take the break you deserve.
  • Enhanced parental leave
  • lAnnual team trip: to a surprise destination!
  • A fun, inclusive company culture (think 🦄🌈💯)

If you think this sounds like a bit of you then don’t hesitate to get in touch!

Thanks,
Plum Τeam 💜

* Plum is an Equal Opportunity Employer. Plum does not discriminate on the basis of age, race, religion, sex, gender identity, sexual orientation, non-disqualifying physical or mental disability, national origin or any other basis covered by appropriate law. All employment is decided on the basis of qualifications, merit and business need.

Plum

About Plum

Pay yourself first with Plum 💜

Industry
Finance & Insurance
Company Size
201-500 employees
Headquarters
London, GB
Year Founded
2016
Website
withplum.com
Social Media