Secure the backbone of a real-time cross-border financial platform by architecting robust defenses across the full technology stack. This role demands deep technical expertise in cloud, container, and network security, with a focus on protecting high-stakes systems where compromise is not an option.
What You'll Do
- Design and implement security controls spanning hardware, operating systems, Kubernetes clusters, networks, and CI/CD pipelines, with resilience against both external attackers and insider risks
- Strengthen multi-cloud environments through network segmentation, encryption at rest and in transit, secret management, and machine identity systems
- Defend API surfaces from evolving threats, including high-volume attacks and novel exploit techniques
- Secure and monitor a distributed engineering workforce’s devices, ensuring strong endpoint protection and scalable identity access management
- Collaborate with development teams to integrate security early in the development lifecycle, ensuring protections are built-in by default
- Lead compliance initiatives including PCI DSS, SOC 1 and 2 audits, and external penetration testing—ensuring adherence goes beyond checklists to reflect real security integrity
- Adapt security practices to emerging infrastructure patterns, combining specialized knowledge with broad technical fluency
- Champion a security-first mindset across engineering, fostering habits that make secure decisions automatic and sustainable
Requirements
- Extensive experience securing cloud environments, particularly AWS and Azure, with demonstrated work in multi-cloud networking and hardened system design
- Proven background in securing Kubernetes, containerized workloads, and service mesh architectures
- Track record in managing secrets, IAM policies, machine identities, and fine-grained access controls at scale
- Direct experience with compliance standards including PCI DSS, SOC 1, and SOC 2
- Strong analytical ability to assess risk, model threats, and prioritize mitigations effectively
- Clear communication skills to engage both technical teams and non-technical stakeholders without sacrificing accuracy
Benefits
- Competitive compensation package
- Meaningful equity in an early-stage initiative
- Full flexibility in work hours, location, and personal workflow
- Join a technical team that values security as a core engineering principle and actively incorporates security feedback
