Overview

We’re seeking a highly skilled and proactive Security Engineer to join our team. This role spans across the entire spectrum of information security. You’ll work closely with our CISO, shaping security strategy while also getting hands-on with implementation. Think of it as a builder-doer role: engineering security solutions, driving key initiatives, and ensuring security is embedded across the organization.

If you want to help define how security operates in a fast-growing fintech, and thrive on balancing strategy with execution, this is the role for you.

What you'll be doing

• CISO Partnership: Work hand-in-hand with the CISO on strategy and execution—owning projects, driving initiatives, and serving as a force multiplier across all areas of security.

• Application Security: Build and maintain security automation in CI/CD (SAST, SCA, secrets, API security), conduct code reviews, penetration testing, and threat modeling.

• Security Operations: Investigate security incidents, tune detection and response capabilities, and collaborate with engineering to strengthen our defenses.

• Governance, Risk & Compliance (GRC): Contribute to security policies, risk assessments, and compliance initiatives, ensuring alignment with regulatory requirements and industry best practices.

• Identity & Access Management (IAM): Drive improvements in identity lifecycle management, access controls, and privileged access security across the organization.

• Cloud & Infrastructure Security: Enhance visibility and governance across our AWS environments using CSPM/IaC tools, ensuring secure-by-default infrastructure.

• Threat Intelligence: Leverage brand protection monitoring solutions to assess emerging threats, relevance to our environment, and translate intelligence into actionable defenses.

• Awareness & Culture: Lead phishing simulations, training, and security awareness initiatives that empower employees to be the first line of defense.

What you'll need

Experience:

• 5+ years of experience in cybersecurity (application security, incident response, security engineering, or similar).

• Hands-on experience with security testing, cloud security, and incident response tools.

• Familiarity with threat intelligence, SIEM/SOAR workflows, and vulnerability management.

• Proven ability to build or mature IAM practices (SSO, PAM, RBAC/ABAC).

• Solid understanding of security architecture and application security practices.

• Strong understanding of regulatory frameworks (ISO 27001, SOC 2, GDPR) and how to operationalize compliance.

• Excellent communication skills with a track record of influencing engineering, product, and business teams.

• Ability to lead projects independently and adapt quickly in a fast-moving environment.

Technical Skills:

• Experience with SIEM, EDR, and CSPM tools.

• Experience with ZTNA architecture.

• Cloud-native security expertise (AWS, GCP, or Azure).

• Experience with containers and orchestration (Docker, Kubernetes) security.

• Familiarity with Infrastructure as Code (Terraform, CloudFormation) security controls.

• Contributions to the security community (open source, research, talks) a strong plus.

• Relevant certifications (OSCP, OSWE, CISSP, CISM, GIAC) are a bonus.

Benefits

• Competitive salary

• Sign-on stock options bonus, so you become part of the success of the company

• Discretionary performance bonus (stock options)

• Paid annual leave

• Latest technology to work with

• Strong team that will help you improve your skills