Remote (Global) Full-time

KoBold Metals is hiring a Security Specialist (m/f/d) - Remote

About the Role

KoBold Metals is seeking a Security Specialist (m/f/d) - Remote to take ownership of application and cloud security across our services, APIs, mobile apps, and Kubernetes-based GCP infrastructure. You will work closely with engineering and leadership to embed pragmatic, scalable standards into our high-growth environment.

What You'll Do

Take ownership of application and cloud security across our services, APIs, mobile apps, and Kubernetes-based GCP infrastructure, ensuring pragmatic, scalable, and developer-friendly security standards.
Conduct hands-on penetration testing for Node.js/TypeScript, APIs, and iOS/Android using tools such as Burp Suite.
Identify and remediate vulnerabilities including authentication bypass, injection, and deserialization flaws.
Define and implement secure API standards covering JWT/OAuth, TLS/mTLS, validation, rate limiting, and CORS.
Harden infrastructure (Kubernetes/GCP, Postgres, Redis/BullMQ) and secure mobile applications.
Establish and continuously improve Secure SDLC practices including threat modeling, security reviews, and SAST/DAST in CI/CD.
Implement automated monitoring with eBPF and Falco and support incident response.
Contribute to GDPR, ISO 27001, and SOC 2 compliance initiatives.

What We're Looking For

Solid hands-on experience in application and/or cloud security.
Experience with Kubernetes and GCP.
Strong understanding of API security based on the OWASP API & Mobile Top 10.
Experience securing Node.js/TypeScript systems.
Comfortable working independently and driving initiatives forward.

Nice to Have

Professional certifications such as CISSP, CKS, CCSP, or OSCP.
Experience with container scanning.
Deep knowledge of GCP IAM.
Automation scripting skills.

Technical Stack

Backend: TypeScript, Node.js, tRPC, gRPC, REST APIs
Data: Postgres, Redis/BullMQ
Infrastructure: Google Cloud Platform (GCP), Kubernetes, Prometheus, Grafana
Mobile: iOS (Swift), Android (Kotlin/Java)
Tools: Burp Suite

Team & Environment

You will join a modern, cloud-native environment and work closely with engineering and leadership.

Benefits & Compensation

Remote work and a flexible setup.
A budget for professional development and certifications.
A role with real ownership and strong visibility.
High impact in a high-growth environment.

Work Mode

This is a fully remote position with flexible location options.

KoBold Metals is an equal opportunity employer.

Required Skills

TypeScriptNode.jstRPCgRPCREST APIsPostgresRedisBullMQGoogle Cloud PlatformKubernetesPrometheusCybersecurityApplication SecurityIncident Response

Ready to relocate and code from paradise?

Thailand or Vietnam — your office, your rules

Iglu offers relocation to Bangkok, Chiang Mai, Ho Chi Minh City, or Hong Kong. Full employment, legal setup, and a community of 200+ digital professionals.

Relocation to 5 countries

Full legal work setup

Developer community access

Work-life balance culture

Explore locations

Relocation support included

About company

AI-powered mineral exploration company using advanced technology to discover new ore deposits, with a focus on critical metals for electric vehicles and renewable energy

Visit website

Job Details

Category security

Posted 23 days ago