Cloud Security Engineer

Barcelona, Spain. Warsaw, Poland. Amsterdam, Netherlands. Limassol, Cyprus

We are looking for a Cloud Security Engineer to join our growing security team, working directly with the CISO to build and scale the information security function. This is a hands-on engineering role where you will work closely with DevOps and infrastructure teams to embed security into our cloud-native fintech platform. The primary focus of this role is cloud and DevSecOps security, with participation in monitoring and incident response.

You will own the security tooling stack, drive vulnerability management, harden cloud infrastructure, and integrate security into the software development lifecycle. This is not a passive monitoring role; we need someone who can engineer solutions, influence development culture, and take ownership of security outcomes.

What You Will Own

Cloud & Infrastructure Security

• - Harden and maintain security across a multi-account AWS environment (IAM, VPC, EKS, RDS, S3)

• - Implement and manage cloud security posture monitoring

• - Maintain and extend SSO permission sets and Kubernetes RBAC configurations

• - Manage network security controls (firewalls, VPN, security groups)

• - Drive secrets management, including rotation policies, vault integration, and eliminating hardcoded credentials

DevSecOps & Application Security

• - Integrate SAST, DAST, and SCA scanning into CI/CD pipelines

• - Implement container image scanning and Kubernetes admission controls

• - Add IaC security scanning to the deployment workflow

• - Conduct security reviews of infrastructure changes and architecture decisions

• - Work with development teams to remediate application vulnerabilities

• - Participate in threat modeling for new services and architecture changes.

Vulnerability Management

• - Own the vulnerability management lifecycle (scanning, triage, remediation tracking)

• - Manage penetration test findings and coordinate fixes with development teams

• - Define remediation SLAs and report security posture metrics

Security Monitoring & Incident Response

• - Maintain and improve security monitoring and alerting pipelines

• - Manage log aggregation and alert routing for critical events

• - Participate in incident response and maintain IR runbooks

What We Are Looking For

Required

• - 3-5 years of experience in security engineering, DevSecOps, or infrastructure/cloud security

• - Strong hands-on AWS experience: IAM, VPC, EKS, CloudTrail, GuardDuty, Security Hub, KMS

• - Ability to automate security processes using Python and IaC tools

• - Kubernetes experience: RBAC, network policies, pod security, container image security

• - Terraform proficiency with ability to read, write, and review IaC

• - Experience integrating security tools into CI/CD pipelines (SAST/DAST/SCA)

• - Practical vulnerability management experience: scanning, triage, working with developers on remediation

• - Scripting skills: Python and Bash

• - Familiarity with SIEM platforms (ELK, Splunk, or similar)

• - Understanding of OWASP Top 10 and common web application vulnerabilities

• - Fluent Russian and English languages knowledge, both written and spoken

Nice to Have

• - PCI DSS knowledge or experience in a payments/fintech environment

• - Experience with Shodan, Censys, nmap, or similar reconnaissance and attack surface tools

• - Prior experience as an early security hire or building security processes from scratch

• - Experience with FortiGate / Fortinet security products

What We Offer

• Direct impact: you are shaping the security function, not just maintaining it

• Work directly with the CISO with high autonomy and ownership

• Opportunity to shape security architecture, tooling choices, and engineering culture

• An established infrastructure foundation with room to build and improve

• Growth into a lead role as the security team scales

As well as

• Opportunity to shape the future of fintech solutions within a growing company 

• Collaborative, horizontal team structure that values your expertise and ideas 

• Continuous learning and development opportunities to enhance your skills and career growth 

• Competitive salary and benefits package 

• Flexible work arrangements to support work-life balance