You have opted out of job matches in .
To undo this, go to the 'Skills and Interests' section of your preferences.
Posted 7 months ago
Requirements and responsibilities
Our StoryHello there. We’re Zopa.We started our journey back in 2005, building the first ever peer-to-peer lending company. Fast forward to 2020 and we launched Zopa Bank. A bank that listens to what our customers don’t like about finance and does the opposite. We’re redefining what it feels like to work in finance. Our vision for a new era of banking puts people front and centre — we’ve built a business that empowers everyone to aim high, every day, to move finance forward. Find out more about our fantastic offerings at Zopa.com!We’re incredibly proud of our achievements and none of it would be possible without the amazing team here. It’s not just industry awards we’re winning, we’ve also been named in the top three UK’s Most Loved Workplaces.If you embrace unconventional challenges, are unafraid to think differently and are driven to make an outsized impact, you’ll thrive here at Zopa, so join us, and make it count. Want to see us in action? Follow us on Instagram @zopalifeThe engineering challengeThis role is focused on owning, maintaining, and evolving Zopa’s cloud-based network architecture and its supporting automation infrastructure. You will play a key part in designing secure, scalable and observable systems across our estate spanning AWS and Azure. The role emphasises strong collaboration with platform and application teams, especially around public ingress/egress management, internal security control and secure remote access in a multi-tiered environment. You will demonstrate a high level of business awareness, be able to understand and qualify stakeholder requirements and transform into technical designs.Your impact:Design, manage, and evolve the network architecture across multi-account, multi-region AWS environments.Implement and support partner integrations through mTLS, IPSec, Privatelink.Support centralized network services such as DNS & RADIUS.Maintain network security controls using Palo Alto Cloud NGFW (or AWS Network Firewall), Network ACLs, Security Groups.Implement and maintain infrastructure codebase and CI/CD pipelines.Ensure robust monitoring and alerting using Prometheus, Grafana, CloudWatch, and other observability tools.Collaborate on production incident response, provide network level visibility and troubleshooting support.Support the security, performance, and resilience of inter-service communication across all Zopa’s cloud & SaaS providers.Provide input into broader platform strategy, architecture reviews, and engineering best practices.Your toolkit:Proven experience designing and managing AWS networking: VPCs, Transit Gateways, Route53, PrivateLink, NAT gateways, security groups, etc.Practical knowledge of Palo Alto Cloud NGFW and cloud-native firewalling/security principles.Familiarity with Azure networking constructs.Strong hands-on experience with Terraform as the core IaC tool.Proficient in GitHub Actions for infrastructure CI/CD.Strong troubleshooting skills, including low-level tools like tcpdump and Wireshark.Understanding of TLS protocols, public/private key infrastructure, and x.509 certificate standards.Ability to debug certificate validation issues confidently and understand implications of cipher suites, trust chains, and expiry windows.Working knowledge of Kubernetes (specifically EKS) including ingress-controllers, ALBs and request handling with external CDN.Experience with Prometheus, Grafana, AWS CloudWatch, and centralized logging (e.g. Splunk or similar).Ability to set up effective monitoring and alerting for network and connectivity issues.Added bonus:AWS Certified Advanced Networking – SpecialtyAWS Certified Solutions Architect – AssociateHashiCorp Certified: Terraform AssociateAt Zopa we value flexible ways of working.We value face-to-face collaboration and a good work-life balance. This hybrid role requires you to come to our London office 2-3 days a week.You'll also have the option of working from abroad for up to 120 days a year!* But no matter where you are, we’ll make sure you’ve got everything you need to thrive, both in your work and home life, from day one.*Subject to having the right to work in the country of choiceDiversity StatementZopa is proud to offer a workplace free from discrimination. Diversity of experience, perspectives, and backgrounds leads to better products for our customers and a unique company culture for our people. We are made up of nearly 50 nationalities, have a DE&I forum made up of Zopians wanting to make a difference and we are proud of our culture where everyone can bring their full self to work. Our approach to DE&I is reflected in our hiring process so please let us know if you require any reasonable adjustments.We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
Optionally, you can add more information later (benefits, pre-screening questions, etc.)