Security Operations Engineer

We develop an independent payment orchestration platform operating in a highly regulated environment and subject to PCI DSS compliance. The platform includes multiple integrations with payment providers, processors, and third-party services, requiring strong operational security and access management practices.

This role focuses on maintaining and improving the company's security operations, employee access management, endpoint security, SaaS administration, and compliance processes. You will work closely with Infrastructure, DevSecOps, and Engineering teams to support a secure and scalable environment while helping strengthen UpGate's overall security posture.

Responsibilities

• Manage onboarding and offboarding processes for employees and contractors.

• Configure and maintain user accounts, permissions, and access rights across internal systems and services.

• Conduct periodic access reviews and participate in compliance controls, including PCI DSS requirements.

• Support employees with VPN connectivity issues, password resets, MFA/2FA troubleshooting, and other IT/security-related requests.

• Manage and maintain corporate devices using Jamf and related endpoint management tools.

• Prepare and maintain secure workstations and workplace setups for employees.

• Manage hardware inventory, including laptops, monitors, TVs, peripherals, and other office equipment.

• Coordinate hardware procurement, repairs, replacements, and vendor relationships.

• Administer and maintain SaaS platforms and subscriptions, including 1Password, Google Workspace, Pipedrive, Figma, and other internal systems.

• Manage software licenses, subscription renewals, and software usage.

• Participate in vulnerability management processes, including vulnerability tracking, validation, and remediation follow-up.

• Perform operational security checks and participate in security-related reviews within AWS environments.

• Assist in PCI DSS audit preparation and support compliance controls.

• Collaborate with DevSecOps, Infrastructure, and other technical teams on operational security initiatives.

• Create and maintain internal documentation, onboarding guides, and user documentation.

• Participate in the continuous improvement of internal security, IT operations, and compliance processes.

• Help improve the overall operational security maturity of the company.

Important and Challenging Tasks

• Develop and improve access management and operational security practices.

• Support and enhance the company’s endpoint and SaaS security posture.

• Participate in PCI DSS audit preparation activities.

• Continuously improve internal security and operational processes.

• Gradually take ownership of more advanced security and DevSecOps-related responsibilities.

Technologies and Tools

• Jamf

• Google Workspace Admin

• 1Password

• Jira

• Confluence

• AWS

• VPN / MFA / SSO solutions

• macOS

• SaaS Management Tools

Requirements

You will thrive if you have…

Required Qualifications

• 3+ years of experience in IT Administration, IT Support, Security Operations, or similar roles.

• Experience supporting office infrastructure and employees.

• Ability to independently manage operational processes and take ownership of assigned areas.

• Strong troubleshooting and communication skills.

• English proficiency at B2 level or higher.

• Experience managing onboarding and offboarding processes.

• Hands-on experience with user access management.

• Experience troubleshooting VPN connectivity, MFA/2FA issues, password resets, and user access problems.

• Experience administering macOS and working with MDM solutions (Jamf or similar).

• Experience managing and maintaining office hardware assets.

• Experience working with SaaS platforms and cloud-based environments.

• Understanding of fundamental information security principles and security operations processes.

• Understanding of vulnerability management processes.

• Basic understanding of AWS services, IAM, and cloud security concepts.

Preferred Qualifications

• Experience participating in PCI DSS or similar compliance programs.

• Experience conducting access reviews and security-related operational reviews.

• Understanding of Identity and Access Management (IAM) practices.

• Experience working with SSO and MFA solutions.

• Experience working with AWS environments.

• Experience with SaaS management and optimization tools.

• Basic scripting or automation skills.

• Russian language proficiency.

• Greek language proficiency.

Conditions

We know that great talent deserves great conditions, so here's what you can expect when joining us:

• EU-based employment contract.

• Transparent performance reviews twice a year, with bonus opportunities and salary adjustments.

• Private medical insurance for you and your family, a corporate mobile plan (unlimited in Cyprus with roaming included), and interest-free support for car purchases.

• Mindfulness & well-being support, including psychological assistance with 50% coverage.

• 50% coverage of school and kindergarten fees for your children.

• Fully covered sports benefits, and also access to in-house electric scooters and bike rentals, and cycling purchase compensation.

• Investment in your growth: paid language courses and access to suited-for-you development programs, including conferences, training programs, and coaching to support your professional journey.

• A culture of recognition: a peer reward program to celebrate your contributions.

• A fully equipped office in Limassol’s city center, with everything you need for deep work and collaboration.

• Free catering in the office and an in-house coffee bar with high-quality drinks and a health bar stocked with nutritious snacks.

• A strong engineering culture: international teams, corporate events, team buildings, and hackathons—because great work happens in great communities.

Recruitment process

• HR interview (40 min)

• Technical interview (1h30)

• Test task

• Final interview (45 min)