Backend Engineer 后端开发工程师 (职位编号：15857)

ensure compliance with various regulatory frameworks. You will work closely with our security, devx, and operations teams to develop scripts and tools that drive efficiency and support continuous compliance. DevOps skills are a strong plus as we aim to improve

our infrastructure and security posture.

Responsibilities:

Design and implement backend automation tools to support tech risk management, audit, and compliance processes.

Develop and maintain scripts and systems to automate security compliance checks and auditing tasks.

Integrate security and compliance monitoring into our CI/CD pipelines to ensure continuous compliance and risk mitigation.

Design and implement tools to track, manage, and mitigate tech risks across the infrastructure.

Ensure that the backend systems and scripts adhere to security best practices and compliance standards.

Work closely with cross-functional teams (security, platform, risk, etc.) to gather requirements and translate them into technical solutions.

Participate in security and compliance audits, contributing to the creation and maintenance of audit-ready systems.

Continuously improve backend automation solutions for scalability, efficiency, and security.

Participate in troubleshooting and remediating any security, audit, or compliance-related issues that arise in production.

Key Requirements:

Proven experience as a Backend Engineer or in a similar role with a focus on security, compliance, or automation.

Strong scripting skills in Python, Bash, Shell, or similar languages for automating tasks related to risk and compliance management.

Solid experience with microservices architecture and a good understanding of the microservices SDLC (design, development, testing, deployment, and monitoring) to recognize and mitigate associated risks.

Expertise with Kotlin and Spring Boot for building microservices-based backend solutions

Experience in designing and developing backend systems that support security auditing and compliance monitoring.

Experience with CI/CD pipelines and integrating security/compliance checks into automated workflows.

Knowledge of cloud platforms (AWS, GCP, Azure) and security features (IAM, encryption, monitoring).

Experience working with infrastructure as code tools like Terraform, CloudFormation, or Ansible.

Familiarity with audit logs and security monitoring tools (e.g., SIEM, Splunk, ELK stack).

Solid understanding of risk management principles and how to translate them into technical solutions.

Strong problem-solving skills and the ability to handle complex compliance challenges.

Attention to detail, especially when managing sensitive security or compliance data.

Excellent communication skills and the ability to work collaboratively across teams.

Preferred Qualifications:

Experience with DevOps practices such as infrastructure automation, CI/CD pipelines, and security monitoring.

Knowledge of identity and access management (IAM) and role-based access control (RBAC) in cloud environments.

Familiarity with compliance automation platforms (e.g., CloudHealth, Qualys, or similar tools).

Exposure to risk assessment tools and platforms for managing security posture and compliance status.

Previous experience in industries with heavy regulatory requirements, such as finance, healthcare, or enterprise tech.

Knowledge of penetration testing, vulnerability scanning, and other security practices to identify potential risks.

About our Transformation, Technology & Operations Team

Our Transformation, Technology & Operations (TTO) team is the powerhouse for the Bank. We aim to go further, faster, to ensure we're agile and ready for tomorrow, today. Our diverse network enables us to innovate and build banking solutions that support communities to prosper. We're a place where talented people are encouraged to grow, learn, and thrive, to drive their own career journeys, to reach their full potential.

When you work with us, you’re protecting the reputation and legacy of a 170 year organisation and building on it. We’re driven by progress and continuously evolving to ensure we’re agile and ready for tomorrow, today.

What we offer

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.

Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.

Flexible working options based around home and office locations, with flexible working patterns.

Proactive wellbeing support through Unmind, a market-lead digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health ***-aiders and all sorts of self-help toolkits

A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.

Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.

【福利待遇Benefits】

1.薪酬制度：基本工资、员工绩效奖励金、加班费/调休、年度薪酬回顾、试用期全额工资；

2.福利保障：五险一金、补充性商业医疗保险、免费年度体检、高温津贴、节日福利；

3.假期待遇：一周双休。除享有国家法定节假日外，还拥有至少12天带薪年假、15天带薪病假、3天志愿者假、婚假、产假以及陪产假等法定假期

4.混合办公：根据业务安排可以居家办公；

5.职业发展：线上线下培训，外部培训经费，内部转岗及晋升机会；

6.工作环境：办公环境舒适，免费咖啡无限畅饮，食堂、休息区等；

7.交通安排：紧邻3号线林和西地铁站，以及天河体育中心，交通饮食便利。