Infrastructure Security Engineer

Join to apply for the Infrastructure Security Engineer role at Sumsub

Get AI-powered advice on this job and more exclusive features.

Sumsub is the one verification platform to secure the whole user journey. With Sumsub’s customizable KYC, KYB, transaction monitoring, and fraud prevention solutions, you can orchestrate your verification process, welcome more customers worldwide, meet compliance requirements, reduce costs, and protect your business.

Sumsub has over 4000 clients across the fintech, crypto, transportation, trading, and gaming industries, including Duolingo, Bitpanda, Wirex, Avis, Exness, Flippa, italki, Bybit, LBANK, Gett, Kaizen Gaming, and TransferGo.

Our products are recognized by industry leaders like Gartner's Magic Quadrant, Forrester Wave, and Frost Radar.

Now we are looking for an Infrastructure Security Engineer to implement robust infrastructure security measures utilizing modern security solutions.

1. Design and implement robust infrastructure security measures utilizing modern security solutions such as SIEM platforms, host-based intrusion detection systems (HIDS), endpoint detection and response (EDR), AWS Security Hub, vulnerability scanning tools, and intrusion detection systems (IDS).
2. Proactively research, evaluate, and integrate emerging security tools/technologies to strengthen infrastructure defenses, ensuring alignment with industry best practices and evolving threat landscapes.
3. Develop, analyze, and fine-tune SIEM alert configurations to maximize detection accuracy, reduce false positives, and streamline incident response workflows.
4. Design, implement, and maintain security automation workflows utilizing Ansible for configuration management, Terraform for infrastructure-as-code, and GitLab CI/CD pipelines to enforce consistent security policies.
5. Implement and maintain Kubernetes (K8s) security protocols.
6. Execute comprehensive security assessments and audits to identify risks, perform penetration testing, and lead incident response activities including forensic analysis and post-incident reporting.
7. Continuously monitor security threats across hybrid environments, deploying preventive controls (e.g., WAF, IPS) and mitigation strategies to address vulnerabilities and active attacks.
8. Partner with DevOps and development teams to embed security controls into CI/CD pipelines, infrastructure design, and application architectures, fostering a "shift-left" security culture.
9. Oversee security posture monitoring for SaaS ecosystems, ensuring secure API configurations, identity/access governance, and compliance with organizational security standards.
10. Maintain up-to-date documentation of incident playbooks and tooling configurations, while staying informed on emerging threats and cybersecurity innovations.

• Proven experience in information security. Knowledge of cloud infrastructures, with a focus on AWS.
• In-depth knowledge and hands-on experience with SIEM systems and vulnerability management tools.
• Proficiency in using Terraform and Ansible for infrastructure automation.
• Experience in Kubernetes security, including the use of tools for monitoring and securing containers.
• Knowledge of DevSecOps practices, with a focus on implementing security checks in CI/CD pipelines, and the ability to integrate these practices into existing processes.
• Proficiency in automating daily tasks and workflows, including the ability to develop custom scripts and small integrations between services using Python.
• Proficiency in Linux operating systems at an administrator level (Windows experience a plus).

• Security certifications such as CKS, CKA, OSCP, AWS Security, or equivalent.
• Experience in high-load systems and environments with stringent security requirements.
• Understanding of cybersecurity frameworks (e.g., ISO 27001, NIST, GDPR, PCI-DSS, SOC 2, CIS Controls).

• Fully remote and flexible working schedule, with access to a coworking space (in some locations).
• Working with a product that matters. Our technology helps to protect millions of users and many online services worldwide.
• International project. Our team works from offices in Berlin, Limassol, London, and Miami; our customers are spread from Mexico and the USA to Hong Kong, South Korea, and Singapore.
• 1 extra day off to celebrate your birthday.
• 7 additional days to enjoy the Christmas & New Year holidays.
• 7 days of sick leave (without the need for documentation).
• Regular, fully covered team offsites to connect and collaborate.
• Learning opportunities and support to attend industry events with the team.

TA screening -> Final Interview.

Sounds like a great opportunity for your career development? Then go ahead and apply!

We are a global community of innovators, creators, and thinkers, and we believe that diversity fuels our innovation. Sumsub is proud to be an equal opportunity employer, committed to building a diverse and inclusive workforce. We welcome applications from people of all backgrounds, cultures, genders, experiences, abilities, and perspectives. Join us in shaping the future inclusively.

• Mid-Senior level

• Full-time

• Information Technology and Engineering

• Computer and Network Security, Financial Services

Referrals increase your chances of interviewing at Sumsub by 2x.

Sign in to set job alerts for “Security Engineer” roles.

Madrid, Community of Madrid, Spain 1 month ago

Junior Cybersecurity Analyst - Remote (Spain or the UK based)

Madrid, Community of Madrid, Spain 1 month ago

Madrid, Community of Madrid, Spain 1 day ago

Junior Security Operations Engineer (m / f / d) Cybersecurity Engineer – Based in Spain, Supporting EMEA

Madrid, Community of Madrid, Spain 1 day ago

Madrid, Community of Madrid, Spain 2 weeks ago

Madrid, Community of Madrid, Spain 1 month ago

Application Security Engineer (100% remote-friendly within Spain) Data Center and Cloud Network Senior Engineer

Madrid, Community of Madrid, Spain 1 month ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

J-18808-Ljbffr

J-18808-Ljbffr