Senior Security Engineer

We’re looking for a hands-on Senior Security Engineer to own and scale security across a fast-growing cloud-native platform. This is a highly autonomous role for someone who combines strong engineering fundamentals with practical, real-world security experience. You will be responsible for securing infrastructure, applications, CI/CD pipelines, and third-party integrations — while enabling engineering teams to move quickly and safely.

Responsibilities Secure AWS infrastructure including IAM, RDS, networking, secrets management, and Terraform-managed resources Strengthen security across serverless backends, APIs, and cloud services Improve application security across web and mobile applications Embed security into CI/CD pipelines and development workflows Own logging, monitoring, alerting, and incident response processes Conduct third-party vendor security reviews (e.g., payments, identity, infrastructure tools) Support compliance readiness (e.g., SOC 2, GDPR) and assist with customer security reviews Act as the internal security point of contact during growth and audits

Must Have Strong engineering fundamentals (cloud, Linux, networking, APIs) Hands-on AWS security experience Deep understanding of web and API security (authentication, permissions, OWASP Top 10) Experience handling production security incidents Automation mindset (Python, scripting, infrastructure-as-code awareness) Ability to balance risk pragmatically in a fast-moving startup environment Fluent spoken English

Nice to Have Experience securing serverless architectures Exposure to payments, identity verification, or distributed systems Startup or scale-up experience Familiarity with SOC 2 or ISO 27001 frameworks

Role Details Fully remote B2B Contract role (12 months) CET working hours 300 USD per day