COLIBRIX ONE
Cloud Security Engineer
COLIBRIX ONENetherlands13 hours ago
Full-timeOther
Join COLIBRIX ONE - Innovating the Future of Payments

At COLIBRIX ONE*, we're building advanced, AI-powered payment technologies that support Payment Service Providers (PSPs), Electronic Money Institutions (EMIs), and neobanks across the EU and the UK. As a fully licensed Electronic Money Institution (FCA Reference No. 927920) and holder of a Financial Institution License issued by the MFSA, as well as a principal member of both VISA and Mastercard, we provide comprehensive, real-world financial solutions that include the following:

  • Global card processing
  • Digital wallet infrastructure
  • Cross-border merchant accounts
  • Alternative payment methods (APMs)
  • Corporate accounts for legal entities

We're a fast-growing team with a passion for innovation, security, and scalability. Our culture values curiosity, collaboration, and impact - and we're looking for talented professionals who are ready to shape the future of fintech.

At COLIBRIX ONE, your work directly powers the digital economy. If you're eager to solve meaningful challenges and build with purpose, we'd love to hear from you.

About The Role

We are looking for a Cloud Security Engineer to join our growing security team, working directly with the CISO to build and scale the information security function. This is a hands-on engineering role where you will work closely with DevOps and infrastructure teams to embed security into our cloud-native fintech platform. The primary focus of this role is cloud and DevSecOps security, with participation in monitoring and incident response.

You will own the security tooling stack, drive vulnerability management, harden cloud infrastructure, and integrate security into the software development lifecycle. This is not a passive monitoring role; we need someone who can engineer solutions, influence development culture, and take ownership of security outcomes.

What You Will Own

Cloud & Infrastructure Security

  • Harden and maintain security across a multi-account AWS environment (IAM, VPC, EKS, RDS, S3)
  • Implement and manage cloud security posture monitoring
  • Maintain and extend SSO permission sets and Kubernetes RBAC configurations
  • Manage network security controls (firewalls, VPN, security groups)
  • Drive secrets management, including rotation policies, vault integration, and eliminating hardcoded credentials

DevSecOps & Application Security

  • Integrate SAST, DAST, and SCA scanning into CI/CD pipelines
  • Implement container image scanning and Kubernetes admission controls
  • Add IaC security scanning to the deployment workflow
  • Conduct security reviews of infrastructure changes and architecture decisions
  • Work with development teams to remediate application vulnerabilities
  • Participate in threat modeling for new services and architecture changes

Vulnerability Management

  • Own the vulnerability management lifecycle (scanning, triage, remediation tracking)
  • Manage penetration test findings and coordinate fixes with development teams
  • Define remediation SLAs and report security posture metrics

Security Monitoring & Incident Response

  • Maintain and improve security monitoring and alerting pipelines
  • Manage log aggregation and alert routing for critical events
  • Participate in incident response and maintain IR runbooks

Required

What We Are Looking For

  • 3-5 years of experience in security engineering, DevSecOps, or infrastructure/cloud security
  • Strong hands-on AWS experience: IAM, VPC, EKS, CloudTrail, GuardDuty, Security Hub, KMS
  • Ability to automate security processes using Python and IaC tools
  • Kubernetes experience: RBAC, network policies, pod security, container image security
  • Terraform proficiency with ability to read, write, and review IaC
  • Experience integrating security tools into CI/CD pipelines (SAST/DAST/SCA)
  • Practical vulnerability management experience: scanning, triage, working with developers on remediation
  • Scripting skills: Python and Bash
  • Familiarity with SIEM platforms (ELK, Splunk, or similar)
  • Understanding of OWASP Top 10 and common web application vulnerabilities
  • Fluent Russian and English languages knowledge, both written and spoken

Nice to Have

  • PCI DSS knowledge or experience in a payments/fintech environment
  • Experience with Shodan, Censys, nmap, or similar reconnaissance and attack surface tools
  • Prior experience as an early security hire or building security processes from scratch
  • Experience with FortiGate / Fortinet security products

What We Offer

  • Direct impact: you are shaping the security function, not just maintaining it
  • Work directly with the CISO with high autonomy and ownership
  • Opportunity to shape security architecture, tooling choices, and engineering culture
  • An established infrastructure foundation with room to build and improve
  • Growth into a lead role as the security team scales

As well as

  • Opportunity to shape the future of fintech solutions within a growing company
  • Collaborative, horizontal team structure that values your expertise and ideas
  • Continuous learning and development opportunities to enhance your skills and career growth
  • Competitive salary and benefits package
  • Flexible work arrangements to support work-life balance
  • This position is offered within the COLIBRIX ONE. Employment will be under the appropriate legal entity based on the role and location

Key Skills

Ranked by relevance
Apply