We’re looking for a hands-on Senior Security Engineer to own and scale security across a fast-growing cloud-native platform. This is a highly autonomous role for someone who combines strong engineering fundamentals with practical, real-world security experience.
You will be responsible for securing infrastructure, applications, CI/CD pipelines, and third-party integrations — while enabling engineering teams to move quickly and safely.
Responsibilities
* Secure AWS infrastructure including IAM, RDS, networking, secrets management, and Terraform-managed resources
* Strengthen security across serverless backends, APIs, and cloud services
* Improve application security across web and mobile applications
* Embed security into CI/CD pipelines and development workflows
* Own logging, monitoring, alerting, and incident response processes
* Conduct third-party vendor security reviews (e.g., payments, identity, infrastructure tools)
* Support compliance readiness (e.g., SOC 2, GDPR) and assist with customer security reviews
* Act as the internal security point of contact during growth and audits
Must Have
* Strong engineering fundamentals (cloud, Linux, networking, APIs)
* Hands-on AWS security experience
* Deep understanding of web and API security (authentication, permissions, OWASP Top 10)
* Experience handling production security incidents
* Automation mindset (Python, scripting, infrastructure-as-code awareness)
* Ability to balance risk pragmatically in a fast-moving startup environment
* Fluent spoken English
Nice to Have
* Experience securing serverless architectures
* Exposure to payments, identity verification, or distributed systems
* Startup or scale-up experience
* Familiarity with SOC 2 or ISO 27001 frameworks
Role Details
* Fully remote B2B
* Contract role (12 months)
* CET working hours
* 300 USD per day