About the role

This role is responsible for owning the performance, reliability, security, and operation of the company’s SQL and NoSQL database platforms.  The role operates within a database team who partners with application engineering, platform, and security teams to ensure databases are scalable, resilient, secure, and observable across all environments.

Responsibilities

Platform Performance & Scalability

• Own end‑to‑end performance of SQL and NoSQL databases across environments, including query optimization, indexing strategies, execution plan analysis, and tuning of database runtime parameters (e.g., PostgreSQL query plans, MongoDB indexes, DynamoDB access patterns).
• Proactively prevent performance regressions through representative load testing, performance analysis tooling, and CI/CD validation gates.
• Partner with application teams on schema design, data modeling, and workload‑driven performance improvements, including relational schemas, document models, and NoSQL access patterns.

Reliability, High Availability & Disaster Recovery

• Design, operate, and harden production‑grade SQL, NoSQL, and document database systems with strong replication, failover, backup/restore, and security controls.
• Define, implement, and validate backup and disaster recovery strategies, including routine restore testing and compliance with RPO/RTO objectives.

Observability & Operational Excellence

• Establish SLIs and SLOs for database health, including latency, error rates, contention, replication lag, storage growth, and cache efficiency across SQL & NoSQL databases.
• Deliver actionable dashboards and alerts and maintain operational runbooks alongside up‑to‑date documentation.
• Lead or participate in production incident response and post‑incident reviews related to database platforms.

Security, Governance & Automation

• Enforce database security best practices in partnership with InfoSec, including least privilege access, RBAC, auditing, encryption, secure secret handling, access reviews, and secure service‑to‑database authentication across SQL and NoSQL data stores.
• Codify database infrastructure and operations using Infrastructure as Code (Terraform) and CI/CD pipelines.
• Standardize baseline configurations, schema migration practices, and operational guardrails across relational, document, and NoSQL databases.

Qualifications

• Hands‑on experience operating production‑scale SQL and NoSQL databases, with strong troubleshooting skills under pressure.
• Experience with managed cloud database services, including SQL and NoSQL databases (e.g., AWS RDS/Aurora PostgreSQL, MongoDB Atlas, DocumentDB, DynamoDB).
• Deep expertise across the following areas like performance tuning, indexing, query optimization, vacuum/auto vacuum,bloat management, data modeling, backup/restore, capacity planning, scalability design, and cost/performance trade‑offs
• Experience with observability, alerting, and operational metrics for data platforms.
• Automation‑first mindset with hands‑on experience in Infrastructure as Code, Gitlab CI/CD pipelines, and repeatable operational runbooks.
• Experience with IAM‑based access controls, KMS/encryption, secrets management, and compliance‑driven governance controls.
• Proven experience developing and maintaining Terraform modules.
• Strong Linux fundamentals and scripting experience (Bash and/or Python).
• Experience with Docker and Kubernetes for database‑adjacent workloads.

Employees in this role will work fully remote. Every department has different needs, and some positions will be designated in-office jobs, based on their function.

Benefits

iCapital offers a comprehensive benefits package that includes a total compensation program consisting of competitive salary, annual performance bonus, and equity for all full-time employees; healthcare with 100% employer-paid health and dental insurance; and generous paid time off (PTO).

For additional information on iCapital Network, please visit https://www.icapitalnetwork.com/about-us  Twitter: @icapitalnetwork | LinkedIn: https://www.linkedin.com/company/icapital-network-inc

Your wellbeing, our mission. Join a company shaping a healthier world.

GET TO KNOW US

At Wellhub we're revolutionizing workplace wellness. Our platform connects employees worldwide to the best partners for fitness, mindfulness, therapy, nutrition, and sleep—all in one simple subscription. Headquartered in NYC with team members in 11 countries, we’re on a mission to make every company a wellness company.

We believe work should be fulfilling, inspiring, and balanced. Here, you’ll find a team that values wellbeing, collaboration, and different perspectives, where passion and creativity push boundaries to create real impact. Your contributions will help shape a healthier, more balanced world for you and millions of people globally. 

Join us in redefining the future of wellbeing!

THE OPPORTUNITY

We are hiring a Director of Security Engineering for our Information Security team in Portugal! This is a Remote – Portugal position, meaning you can work from anywhere within the country. Please note that this role is only open to candidates in Brazil. 

The Information Security team is responsible for protecting our subscription-based product serving millions of users. As a Director of Security Engineering, you will be the technical leader driving application security, DevSecOps practices, and security engineering across our 10 product verticals. This is a unique opportunity to build security capabilities in a high-growth environment. You will help construct the technical security strategy, architect security solutions, lead threat modeling, and establish secure development practices across all engineering teams. The role requires deep technical expertise in application security, cloud security, and modern DevSecOps practices.In this capacity, you will serve as the primary architect for our security engineering roadmap, ensuring that protection is integrated at every stage. You will oversee the deployment of automated security tooling, mentor senior engineers in advanced vulnerability research, and partner with product leaders to balance rapid feature delivery with robust risk mitigation. Your leadership will be pivotal in scaling our security posture to meet the demands of a global, multi-vertical ecosystem while fostering a culture of shared security responsibility.

YOUR IMPACT 

• Lead the technical security strategy for product and application security, defining architecture standards, security baselines, and secure coding guidelines aligned with OWASP ASVS, NIST SSDF, and BSIMM frameworks.
• Architect and implement a comprehensive DevSecOps pipeline, integrating SAST, DAST, SCA, and container scanning across all CI/CD pipelines serving 10 product verticals.
• Drive threat modeling practices across critical product flows, partnering with engineering leads to identify and mitigate security risks before they reach production.
• Design and implement a centralized security telemetry architecture, connecting application logs, WAF events, and fraud signals into a unified SIEM platform for real-time detection.
• Lead the technical evaluation, selection, and implementation of security tools (SAST/DAST, SIEM/SOAR, PAM, API Gateway security, container security scanners).
• Establish and mentor a team of 7-8 embedded DevSecOps engineers across product verticals, providing technical guidance and ensuring consistent security standards.
• Own the technical roadmap for reducing MTTD from >48h to <1h and fraud detection from D+1 to real-time through security engineering and automation.
• Live the mission: inspire and empower others by genuinely caring for your own wellbeing and your colleagues. Bring wellbeing to the forefront of work, and create a supportive environment where everyone feels comfortable taking care of themselves, taking time off, and finding work-life balance.

WHO YOU ARE 

• A seasoned security engineer with experience in application security, cloud security, or security engineering, with at least 4 years in a senior technical leadership role.
• Deep expertise in secure software development lifecycle (SSDLC), threat modeling (STRIDE, PASTA), and security architecture for distributed systems and microservices.
• Hands-on experience with security tooling: SAST (Checkmarx, Snyk, SonarQube), DAST (Burp Suite, OWASP ZAP), SCA, container scanning (Trivy, Prisma), and SIEM platforms (Elastic, Splunk, Sentinel).
• Extensive knowledge of cloud security (AWS and/or GCP), including IAM, VPC security, secrets management, and container orchestration security (Kubernetes/EKS).
• Experience building and scaling DevSecOps programs, integrating security into CI/CD pipelines, and mentoring engineering teams on secure coding practices.
• Proficiency in at least two programming languages (Python, Go, Java, or JavaScript) with the ability to review code, write security tooling, and automate security workflows.
• Familiarity with compliance frameworks (ISO 27001, PCI DSS, LGPD/GDPR) and how they translate into technical security controls.
• Effective communication skills (Portuguese and English) to translate complex technical security concepts into actionable guidance for engineering teams at all levels.
• We recognize that individuals approach job applications differently. We strongly encourage all aspiring applicants to go for it, even if they don't match the job description 100%.
• For this specific role, please note that prior experience in application security engineering and DevSecOps pipeline implementation is a mandatory requirement.

WHAT WE OFFER YOU

With thoughtful benefits, emotional wellbeing resources, and a culture that empowers you to take ownership of your role and your wellbeing, we create an environment where you can thrive in all dimensions of your life. Our benefits include:

WELLHUB:  Free Gold membership with access to onsite gyms and studios, digital fitness programs, and online wellness resources for meditation, nutrition, mental wellbeing support, and more! Add up to three family members to your plan, ensuring access to wellness for those who matter most to you. 

HEALTHCARE: Health insurance.

FLEXIBLE WORK: As a Flexible First company, we offer hybrid and remote options to give you the freedom to work in a way that suits you. The model for this specific role can be discussed with your recruiter and hiring manager. We offer all employees a one-time reimbursement to set up their home office equipment and a monthly work allowance to help cover the costs of working from home.

FLEXIBLE SCHEDULE:  Flexibility for us isn’t just about where we work—it also means being able to shape how and when we get things done. Together with their leaders, employees define schedules that align with their time zones, team needs, and personal routines.

PAID TIME OFF: We know how important it is to take time away from work to recharge. Employees receive a minimum of 25 days paid holiday per year with an additional day for each year of tenure (up to 5) in addition to annual holidays (including an extra holiday on your birthday!).

PARENTAL LEAVE: Welcoming a new child is one of the most special moments in your life. Take the time to be present and enjoy your growing family. We offer 100% paid parental leave to all new parents. Parents giving birth are eligible for an extended leave and a ramp-back period to return part-time while they get settled.  

CAREER GROWTH: Access world-class platforms, participate in interactive sessions,  build your personalized development roadmap, and explore internal opportunities. We focus on continuous learning and feedback to support your journey toward personal and professional success. 

CULTURE: You’ll join a team of passionate people who come together to break boundaries, support each other, and create a meaningful impact in workplace wellness. We win together, building trust through open communication and a culture where every perspective matters. Learn more about our shared culture and values here. 

And to get a glimpse of life at Wellhub… Follow us on Instagram @lifeatwellhub and LinkedIn!

Diversity, Equity, and Belonging at Wellhub

We aim to create a collaborative, supportive, and inclusive space where everyone knows they belong. At Wellhub, we welcome and celebrate your authentic self.

Wellhub is committed to creating a diverse work environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, sex, gender identity or expression, sexual orientation, age, non-disqualifying physical or mental disability, national origin, veteran status, or any other basis covered by appropriate law.

Our commitment to inclusion also extends to how we recognize and reward our people. We’re proud to be Syndio Fair Pay Certified, reflecting our ongoing dedication to equitable and fair pay practices across our global team. Read more about it here.

Questions on how we treat your personal data? See our Aviso de Privacidade para Candidatos. 

#LI-REMOTE

#LI-CM1

What You'll Do

• Manage the day-to-day operations of the Security Operations Center (SOC), including triaging, investigating, and resolving security incidents.
• Collaborate with other security teams to develop and implement security monitoring policies and procedures.
• Develop and maintain a comprehensive understanding of the organization's infrastructure, applications, and security controls.
• Ensure that security incidents are properly documented and reported in a timely manner.
• Manage relationships with external vendors and service providers that support the SOC.

What You'll Need

• MSc degree in Computer Science, Engineering, or a related field.
• 3-5 years of experience in a Security Operations Center environment, with at least 2+ years in a security engineering role.
• Hands-on experience with security monitoring technologies including EDR, Zscaler (ZPA/ZIA/ZDX), and Palo Alto firewalls.
• Strong understanding of EDR and WAF solutions, as well as Zscaler and Palo Alto firewall technologies.
• Knowledge of network protocols and infrastructure.
• Excellent analytical and problem-solving skills.
• Basic knowledge of Python programming or automation.
• Ability to communicate complex technical issues to non-technical stakeholders.
• Strong interpersonal skills as well as excellent written and verbal communication skills.

Preferred Qualifications

• Experience working in a global or multi-region security operations environment.
• Familiarity with SIEM platforms and log management tools.
• Exposure to threat intelligence and vulnerability management practices.
• Relevant security certifications (e.g., CompTIA Security+, CEH, GCIA, or similar).

Responsibilities

We're looking for a hands-on Platform/Observability Engineer to join our infrastructure team. You'll own and evolve our observability stack - from logging pipelines and tracing to metrics and alerting - across a multi-datacenter, Kubernetes-based environment. This is a production-first role: you'll be expected to ship, iterate, and improve systems under real delivery pressure, not just design them on paper.
You'll work closely with other infra and product engineering teams to improve observability coverage, reduce operational toil, and help the broader organization adopt better practices.
Tech Stack Highlights: OpenTelemetry · Kafka · Vector · VictoriaMetrics · EKS · Kubernetes · Logging pipelines · Distributed tracing · SPM· AWS

• Designing, deploying, and maintaining production observability stacks (logs, metrics, traces)

• Scaling observability infrastructure across multiple data centers and Kubernetes clusters

• Owning logging pipeline architecture and refactoring efforts

• Improving distributed tracing coverage and driving adoption across engineering teams

• Managing EKS upgrades, node exporters, agents, and collectors

• Automating operational tasks to reduce toil and improve system stability

• Contributing to compliance and audit readiness (access controls, data handling, pipeline integrity)

• Evaluating and adopting new observability tooling - knowing what's worth pursuing and what isn't

Requirements

Core technical experience:

• 8+ years of industry experience

• Solid hands-on production experience with observability systems

• Strong plus - familiarity with OpenTelemetry, Kafka, Vector, and VictoriaMetrics (vmagent, alerting rules)

• Experience with logging pipelines: design, deployment, and refactoring

• Understanding of distributed tracing and SPM (Service Performance Monitoring) built on top of tracing

• Experience with Kubernetes cluster lifecycle management (EKS preferred)

• Practical knowledge of storage trade-offs for observability data at scale

Nice to have  

• Experience using AI to automate infrastructure or observability tasks (e.g., automated RCA, PR generation, deployment workflows)

• Familiarity with AI-assisted tooling selection and workflow integration

• Experience with MCP (custom or open-source implementations)

• Background in cloud account or environment migrations

• Experience preparing infrastructure for compliance/audit processes

• Understanding network architecture, troubleshooting and incident resolution skills in Production environment, writing Post-mortems.

• Experience with containers and Kubernetes (installation and configuration of operators). 

• Basic knowledge of one or more high-level programming languages, such as Python, Golang, Java

Soft Skills / Personal Characteristics

• Good communication and collaboration skills in international technological companies.

• Interest in modern big distributed storage technologies, architectures.

• Good Spoken English to participate in product-related, architectural and technical discussions.

• Proper balance between being hands-on and deeper analytical approaches

(REQ ID: 2640)

Position Overview

We are seeking a highly skilled DevOps/Cloud Platform Engineer to join our engineering organization and help drive the next generation of our infrastructure and CICD platform capabilities. In this role, you will be an integral part of our CICD release process, responsible for designing, operating, and optimizing CICD runners and environments, maintaining cloud infrastructure, and creating internal developer platforms that support fast, reliable, and secure software delivery. You will work closely with engineering, QA, data, and product teams to ensure our systems are scalable, resilient, and easy to use.

The ideal candidate brings a strong blend of CICD knowledge, cloud infrastructure expertise, DevOps mindset, and hands-on development skills. You will automate wherever possible, use Infrastructure as Code to maintain consistency, and leverage modern DevOps tooling, including AI-assisted automation to enhance operational efficiency and developer productivity.

This is an operations role for someone who thrives in solving complex technical problems, improving processes, and building platforms that accelerate engineering velocity.

What you'll do:

• Develop, enhance, and maintain CI/CD self-hosted infrastructure using modern DevOps tooling (GitHub Actions Runners stack, ArgoCD, FluxCD etc.).

• Automate infrastructure provisioning, configuration management, monitoring, and operational workflows using IaC and scripting languages.

• Own the deployment, maintenance, and lifecycle management of systems supporting engineering (Kubernetes clusters, container registries, artifact systems, and internal developer platforms) leveraging deep expertise in Kubernetes, container runtimes, and the broader cloud-native ecosystem (Helm, Kustomize, etc.).

• Troubleshoot complex infrastructure and application issues, driving root-cause analysis and developing long-term remediation solutions

• Design, build, and maintain cloud infrastructure across major cloud providers (AWS, GCP, Azure), and develop/support deployments of applications, services, and monitoring with a strong focus on scalability, reliability, and cost optimization.

• Develop internal tooling and automation using Terraform, Python, Go, or similar languages to streamline operational tasks and improve developer productivity.

• Implement and manage security best practices across cloud environments, including identity management, secrets handling, audit logging, and network controls.

• Leverage AI/ML tools to automate repetitive DevOps tasks, operational workflows.

Your Experience:

• 4-8+ years of experience in DevOps, Cloud Engineering, Systems Administration, or similar infrastructure-focused roles.

• Familiar with GIT and comfortable with at least one systems programming language (C/C++, golang) and one scripting language (python, bash).

• Proficiency with Infrastructure as Code (Terraform, Pulumi, or CloudFormation) and configuration management (Ansible, Chef, or SaltStack).

• Working knowledge of at least one of observability stacks (Prometheus, Grafana, ELK/OpenSearch, Datadog, etc.) and operational troubleshooting.

• Strong hands on experience with Kubernetes management in production environments

• Experience designing, developing, and/or troubleshooting distributed systems.

• Comfort with shells on *nix family systems.

• B.S. degree or equivalent experience in Engineering, Computer Science or a related field.

Preferred Qualifications:

• Hands-on experience building CI/CD pipelines from a user perspective (GitHub Workflows, GitLab pipelines, etc)

• Certifications from cloud service providers (AWS DevOps, GCP Devops Eng, etc)

• Natural curiosity or drive to learn about new or adjacent technologies.

• Experience applying AI/ML tools (GitHub Copilot, cloud AI services, LLM-based automations, anomaly detection tooling, etc.) to streamline DevOps and infrastructure workflows is a strong plus.

• Hands-on experience implementing AI-enhanced threat detection systems.

About us:

SingleStore delivers the cloud-native database with the speed and scale to power the world’s data-intensive applications. With a distributed SQL database that introduces simplicity to your data architecture by unifying transactions and analytics, SingleStore empowers digital leaders to deliver exceptional, real-time data experiences to their customers. SingleStore is venture-backed and headquartered in San Francisco with offices in Sunnyvale, Raleigh, Seattle, Boston, London, Lisbon, Bangalore, Dublin and Kyiv.

Consistent with our commitment to diversity & inclusion, we value individuals with the ability to work on diverse teams and with a diverse range of people.

To all recruitment agencies: SingleStore does not accept agency resumes. Please do not forward resumes to SingleStore employees. SingleStore is not responsible for any fees related to unsolicited resumes and will not pay fees to any third-party agency or company that does not have a signed agreement with the Company.

SingleStore values individuals for their unique skills and experiences, and we’re proud to offer roles in a variety of locations across the United States. Salary is based on permissible, non-discriminatory factors such as skills, experience, and geographic location, and is just one part of our total compensation and benefits package. 

For candidates residing in California, please see our California Recruitment Privacy Notice. For candidates residing in the EEA, UK, and Switzerland, please see our EEA, UK, and Swiss Recruitment Privacy Notice.

Required:

• 3+ in Windows desktop application development using Windows App SDK, WinUI (or similar), C#, XAML — and ideally additional experience with native Windows code (C++, Win32/WinRT/COM).
• Deep understanding of Windows application architecture, including interop between managed code (.NET) and native code.
• Proven track record of designing, building, and shipping production-quality desktop applications, with an emphasis on reliability, performance, scalability, and maintainability.
• Strong experience with accessibility APIs on Windows (e.g. Microsoft UI Automation or similar), and a dedication to building accessible and inclusive software.
• Excellent software engineering fundamentals: OOP, design patterns, data structures, algorithms, memory management, multi-threading or asynchronous programming (where relevant).
• Experience leading technical design, mentoring other engineers, conducting code reviews, and making architecture-level decisions.
• Strong communication skills; ability to articulate tradeoffs, collaborate with cross-functional teams, and drive consensus.
• A user-centric mindset: focus on building polished, intuitive, and accessible experiences for end users.

Preferred / Bonus:

• Experience with writing automated tests for UI — unit tests, integration tests, UI automation tests; familiarity with relevant testing frameworks.
• Experience with performance optimization for desktop apps (memory usage, startup time, rendering performance, high-DPI support, responsiveness under load).
• Experience with localization/globalization, right-to-left UI support, internationalization, accessibility for multiple regions.
• Familiarity with telemetry, analytics, crash reporting, logging, and error monitoring in desktop applications.
• Previous experience in shaping CI/CD workflows, release pipelines, and deployment strategies for desktop applications.
• Demonstrated ability to take ownership of feature areas or modules and drive them long-term, including maintenance, refactoring, and technical debt management.

What we offer

• A high-impact role: you will define architecture, shape the future of our Windows product, and directly influence what millions of users see and experience.
• A collaborative, flat-structure engineering culture — you are not just a coder, but a builder and a decision-maker.
• Opportunities to lead — mentor others, steer technical direction, and grow into broader technical leadership (e.g. Tech Lead, Architect).
• Flexibility, autonomy, and responsibility: you define how to solve problems, own features end-to-end, and contribute to long-term product vision.
• A purpose-driven mission: building software that’s reliable, accessible, and user-centered — making a real difference for people.                  

Think you’re a good fit for this job? 

Tell us more about yourself and why you're interested in the role when you apply.
And don’t forget to include links to your portfolio and LinkedIn.

Not looking but know someone who would make a great fit? 
Refer them! 

Speechify is committed to a diverse and inclusive workplace. 
Speechify does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.

The Security Team keeps Feedzai products and systems secure. We work on risk reduction and security issue mitigation as we continue to move forward and grow. We maintain compliance and security best practices aligned with industry standards, as we work in a very regulated environment and do develop our own software and services. The Security Team is involved from the beginning of production to meet and exceed our client expectations and be the top SME in the industry. We run our own Security Operations Center services and incident response with state of the art tools. We are dynamic, tenacious, and driven by our passion for fighting financial fraud and crime with our socially responsible products. Join Us!

You:

We are looking for a Senior Security Compliance Engineer. You will be responsible for making sure that both our software & our infrastructure is safe, helping to protect our customers. 

Your Day to Day:

• Ensure compliance with core applicable standards and regulations (PCI DSS, ISO/IEC 27001 and 27701, SOC 2, NIST, GDPR) & participate in the audit processes;
• Support clients, vendors, and regulatory audits, assessments, and information security requests;
• Review, implement and oversight the effectiveness of Feedzai's security framework as well as ensuring their effectiveness;
• Perform security risk assessments and provide prioritized remediation recommendations;
• Develop, review, and maintain policies, processes, and standards and implement procedures, controls, and other measures to ensure compliance with internal and legal regulations and requirements.

You have & You Know-How

• Knowledge of compliance and regulatory frameworks (PCI DSS, ISO/IEC 27001, SOC 2, NIST, CIS, GDPR, etc.);
• Understanding of cloud security concepts (e.g.: Amazon Web Services (AWS) IAM, GCP or Azure security principles, etc.) and integrating security controls through DevOps and Infrastructure as a Service (IaaS) techniques;
• Excellent communication skills (written and verbal) with an ability to articulate complex topics in a clear and concise manner.
• Knowledge of container orchestration systems such as Kubernetes is welcomed.
• Experience working with Generative AI (GenAI) tools is a plus.

 #LI-Remote #LI-MG3

The Security Team keeps Feedzai products and systems secure. We work on risk reduction and security issue mitigation as we continue to move forward and grow. We maintain compliance and security best practices aligned with industry standards, as we work in a very regulated environment and do develop our own software and services. The Security Team is involved from the beginning of production to meet and exceed our client expectations and be the top SME in the industry. We run our own Security Operations Center services and incident response with state of the art tools. We are dynamic, tenacious, and driven by our passion for fighting financial fraud and crime with our socially responsible products. Join Us!

You

You’ll be working with a team that's responsible for the security across all ongoing initiatives, products, processes and applications at Feedzai. This will be a very senior role within this team, someone able to work across teams and coach other more junior team members also.

Your day–to–day

• Design and architect robust security controls with 'secure by default' principles, ensuring long-term maintainability and systemic incident resilience across the organization;
• Review technical designs to identify security weaknesses and provide assistance on how to address them;
• Provide subject matter expertise on security across ongoing initiatives to the organization;
• Lead the technical execution of multi-team security initiatives, influencing cross-team priorities and aligning technical roadmaps with direct business impact;
• Work closely with other functional areas and/or departments in the identification of requirements and designing of solutions;
• Produce high-quality narratives and investment cases supported by facts and data, translating complex security challenges into comprehensive business language for company-wide stakeholders;
• Perform internal and external penetration tests, ensuring timeliness and accuracy of reports;
• Assist in the support of compliance with core applicable standards and regulations (PCI DSS, ISO/IEC 27001, SOC 2, NIST, CIS, GDPR) and participate in the audit processes.

Your Have & You Know-How

• Willingness to learn and to stay up-to-date with the state of the art;
• Break things attitude, so that we can improve (hacker-type of attitude);
• Expert knowledge across web, application, hardware & network security;
• Solid understanding of encryption, key management & distribution;
• Extensive knowledge and experience with cloud service providers such as AWS, Azure, or GCP;
• Extensive knowledge with Kubernetes security;
• Knowledge of PCI DSS, ISO/IEC 27001, NIST, CIS, and GDPR standards and regulations preferred;
• Strong business and financial acumen, with the ability to understand the economic implications (cost efficiency, operational burden, time-to-value) of security engineering decisions;
• 4+ years of relevant professional experience;
• Demonstrated experience developing, deploying, and monitoring secure systems;
• Demonstrated experience implementing AI-driven approaches to optimize security workflows and leading the adoption of new AI technologies;
• Global experience in leading and supporting cross-functional projects, interacting effectively with all levels of the company;
• Track record of managing projects with quality, detail, and consistency;
• Background in engineering with a deep passion for making all things secure;
• Excellent communication skills (written and verbal) with an ability to articulate complex topics in a clear and concise manner.

 #LI-Remote #LI-MG3

We invite a Security Engineer. This is a full-time, office-based role (no remote/hybrid) in one of our hubs:

• Belgrade, Serbia
• Lisbon, Portugal
• Sofia, Bulgaria
• Warsaw, Poland

The final location will depend on business needs and the feasibility of relocation from your current spot.

✅ Requirements: 
Must-Have:
✔️ 5 years of experience in IT infrastructure administration or information security roles. 
✔️ Advanced administration of macOS, Windows, and Linux operating systems, including secure configuration, system hardening, access control management, and troubleshooting at the OS level. 
✔️ Understanding of networking fundamentals, including IP networking, routing, switching, and network protocol behaviour relevant to security analysis. 
✔️ Basic knowledge of regulatory requirements and standards such as ISO27001, ISO27701, PCI DSS, GDPR, and others. 
✔️ Administration and configuration of EDR/XDR platforms, including policy management, detection rule tuning, incident investigation, and endpoint threat response. 
✔️ Configuration and administration of enterprise VPN solutions, including secure remote access management, authentication policies, and network access control. 
✔️ Administration and tuning of DLP systems, including policy development, data classification integration, and monitoring of data exfiltration risks. 

Nice-to-Have:
✔️ Proficiency in working with any kind of simple scripts: bash, PowerShell or Python, etc.. 
✔️ Understanding of the basic principles of virtualisation platform functionality. 
✔️ Experience in complex implementation or support projects of enterprise information security solutions (any solution classes from the list): MDM, SIEM, DLP, PAM, NGFW, Endpoint Security. Etc..
✔️ Experience with deployment and administration of IDS/IPS solutions, including rule tuning and network threat detection. 
✔️ Experience with PaloAlto, Digital Guardian, OpenVPN security solutions. 

✅ Responsibilities:
System Administration:
✔️ Manage security systems: DLP, XDR, Network VPN gateway.
✔️ Implement and maintain security control policies to enhance security.
✔️ Keep security system infrastructure updated and patched. 
✔️ Integrate security systems with new IT solutions and assets.
✔️ Debug issues related to the security systems software - cooperate closely with vendor support. 

Monitoring and Analysis:
✔️ Continuously monitor network activity, systems load. 
✔️ Monitor and review vendor notifications about Saas security system maintenance, critical vulnerabilities, new releases and features. 
✔️ Identify and analyze potential threats and vulnerabilities in the security systems.

Incident Response: 
✔️ Respond to security incidents and provide 2-3 levels of support for the SOC team, coordinating incident response efforts. 
✔️ Escalate incidents to other teams as necessary. 

Reporting, Documentation, and Continuous Improvement: 
✔️ Prepare tech documentation after implementation of new security controls, system configurations. 
✔️ Create basic instructions for security software for end users. 
✔️ Suggest improvements to security system configuration and incident mitigation. 
✔️ Participate in post-incident reviews and propose enhancements. 

We invite a Security Engineer. This is a full-time, office-based role (no remote/hybrid) in one of our hubs:

• Belgrade, Serbia
• Lisbon, Portugal
• Sofia, Bulgaria
• Warsaw, Poland

The final location will depend on business needs and the feasibility of relocation from your current spot.

✅ Requirements: 
Must-Have:
✔️ 5 years of experience in IT infrastructure administration or information security roles. 
✔️ Advanced administration of macOS, Windows, and Linux operating systems, including secure configuration, system hardening, access control management, and troubleshooting at the OS level. 
✔️ Understanding of networking fundamentals, including IP networking, routing, switching, and network protocol behaviour relevant to security analysis. 
✔️ Basic knowledge of regulatory requirements and standards such as ISO27001, ISO27701, PCI DSS, GDPR, and others. 
✔️ Administration and configuration of EDR/XDR platforms, including policy management, detection rule tuning, incident investigation, and endpoint threat response. 
✔️ Configuration and administration of enterprise VPN solutions, including secure remote access management, authentication policies, and network access control. 
✔️ Administration and tuning of DLP systems, including policy development, data classification integration, and monitoring of data exfiltration risks. 

Nice-to-Have:
✔️ Proficiency in working with any kind of simple scripts: bash, PowerShell or Python, etc.. 
✔️ Understanding of the basic principles of virtualisation platform functionality. 
✔️ Experience in complex implementation or support projects of enterprise information security solutions (any solution classes from the list): MDM, SIEM, DLP, PAM, NGFW, Endpoint Security. Etc..
✔️ Experience with deployment and administration of IDS/IPS solutions, including rule tuning and network threat detection. 
✔️ Experience with PaloAlto, Digital Guardian, OpenVPN security solutions. 

✅ Responsibilities:
System Administration:
✔️ Manage security systems: DLP, XDR, Network VPN gateway.
✔️ Implement and maintain security control policies to enhance security.
✔️ Keep security system infrastructure updated and patched. 
✔️ Integrate security systems with new IT solutions and assets.
✔️ Debug issues related to the security systems software - cooperate closely with vendor support. 

Monitoring and Analysis:
✔️ Continuously monitor network activity, systems load. 
✔️ Monitor and review vendor notifications about Saas security system maintenance, critical vulnerabilities, new releases and features. 
✔️ Identify and analyze potential threats and vulnerabilities in the security systems.

Incident Response: 
✔️ Respond to security incidents and provide 2-3 levels of support for the SOC team, coordinating incident response efforts. 
✔️ Escalate incidents to other teams as necessary. 

Reporting, Documentation, and Continuous Improvement: 
✔️ Prepare tech documentation after implementation of new security controls, system configurations. 
✔️ Create basic instructions for security software for end users. 
✔️ Suggest improvements to security system configuration and incident mitigation. 
✔️ Participate in post-incident reviews and propose enhancements. 

We invite a Security Engineer. This is a full-time, office-based role (no remote/hybrid) in one of our hubs:

• Belgrade, Serbia
• Lisbon, Portugal
• Sofia, Bulgaria
• Warsaw, Poland

The final location will depend on business needs and the feasibility of relocation from your current spot.

✅ Requirements: 
Must-Have:
✔️ 5 years of experience in IT infrastructure administration or information security roles. 
✔️ Advanced administration of macOS, Windows, and Linux operating systems, including secure configuration, system hardening, access control management, and troubleshooting at the OS level. 
✔️ Understanding of networking fundamentals, including IP networking, routing, switching, and network protocol behaviour relevant to security analysis. 
✔️ Basic knowledge of regulatory requirements and standards such as ISO27001, ISO27701, PCI DSS, GDPR, and others. 
✔️ Administration and configuration of EDR/XDR platforms, including policy management, detection rule tuning, incident investigation, and endpoint threat response. 
✔️ Configuration and administration of enterprise VPN solutions, including secure remote access management, authentication policies, and network access control. 
✔️ Administration and tuning of DLP systems, including policy development, data classification integration, and monitoring of data exfiltration risks. 

Nice-to-Have:
✔️ Proficiency in working with any kind of simple scripts: bash, PowerShell or Python, etc.. 
✔️ Understanding of the basic principles of virtualisation platform functionality. 
✔️ Experience in complex implementation or support projects of enterprise information security solutions (any solution classes from the list): MDM, SIEM, DLP, PAM, NGFW, Endpoint Security. Etc..
✔️ Experience with deployment and administration of IDS/IPS solutions, including rule tuning and network threat detection. 
✔️ Experience with PaloAlto, Digital Guardian, OpenVPN security solutions. 

✅ Responsibilities:
System Administration:
✔️ Manage security systems: DLP, XDR, Network VPN gateway.
✔️ Implement and maintain security control policies to enhance security.
✔️ Keep security system infrastructure updated and patched. 
✔️ Integrate security systems with new IT solutions and assets.
✔️ Debug issues related to the security systems software - cooperate closely with vendor support. 

Monitoring and Analysis:
✔️ Continuously monitor network activity, systems load. 
✔️ Monitor and review vendor notifications about Saas security system maintenance, critical vulnerabilities, new releases and features. 
✔️ Identify and analyze potential threats and vulnerabilities in the security systems.

Incident Response: 
✔️ Respond to security incidents and provide 2-3 levels of support for the SOC team, coordinating incident response efforts. 
✔️ Escalate incidents to other teams as necessary. 

Reporting, Documentation, and Continuous Improvement: 
✔️ Prepare tech documentation after implementation of new security controls, system configurations. 
✔️ Create basic instructions for security software for end users. 
✔️ Suggest improvements to security system configuration and incident mitigation. 
✔️ Participate in post-incident reviews and propose enhancements. 

We invite a Senior Application Security Engineer to join our team.

🌎 Global Remote Mobility: Available for Senior roles in selected jurisdictions.

✅ Responsibilities:
✔️ Demonstrated ability to collaborate with other teams to achieve complex objectives.
✔️ Responsible for security architecture design from cloud infrastructure to application through the implementation of "secure by design" principles.
✔️ Collaborate with product managers, architects, and developers on the implementation of the security controls platform ecosystem and products.
✔️ Proof security implementations within infrastructure and application deployment manifests and the CI/CD pipelines.
✔️ Define required policies, controls, and capabilities for the protection of products and environments.
✔️ Build and validate declarative threat models automation.
✔️ Participate in engineering teams’ product planning cycles and committees.
✔️ Oversee the product security aspects for migration of products and services from Data Center to public cloud, e.g., AWS.
✔️ Serve as a trusted cyber security advisor to product and application teams.

✅ Minimum Requirements:
✔️ Experience integrating security scanning/tooling into the development pipeline.
✔️ Experience in analysing and securing microservices and applications developed using JavaScript and Typescript.
✔️ Experience with CI/CD pipelines (such as Gitlab, Jenkins) and infrastructure-as-a-code models (such as Terraform, Helm, or CloudFormation).
✔️ Hands-on development experience in Python/shell scripting.
✔️ Strong understanding of supply chain security, software integrity, and secure software delivery.
✔️ Experience with Docker and mesh technologies (such as ISTIO).
✔️ Experience with architecture and security reviews, threat modelling, and application risk is highly desired.
✔️ Experience working with Agile methodologies.
✔️ Knowledge of privacy laws and regulations, such as GDPR desired.
✔️ Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc.

✅ PREFERRED QUALIFICATIONS:
✔️ In-depth experience with architecting secure services on Kubernetes.
✔️ Extensive experience with architecting secure services on AWS or on-prem data centers.
✔️ Security-related professional certifications e.g., CISSP, CISM, CCSK, CCSP, CEH, are highly desirable.

✅ We offer excellent benefits, including but not limited to:
🚀 Career growth opportunities in an international and dynamic environment; 
📚 Opportunity to develop language skills with partial compensation for language courses; 
🎁 Special gifts for birthdays, weddings, and newborns; 
🏝️ 20 working days of paid annual vacation, plus 6 paid sick leaves; 
🍲 Office snacks and refreshments;
🏋️‍♂️ Sports package to support a healthy lifestyle;
🩺 Comprehensive medical insurance; 
📍 Comfortable office with great facilities in a prime location; 
 🎉 Exciting corporate events, team-building activities, and international company parties.

We invite a Senior Application Security Engineer to join our team.

🌎 Global Remote Mobility: Available for Senior roles in selected jurisdictions.

✅ Responsibilities:
✔️ Demonstrated ability to collaborate with other teams to achieve complex objectives.
✔️ Responsible for security architecture design from cloud infrastructure to application through the implementation of "secure by design" principles.
✔️ Collaborate with product managers, architects, and developers on the implementation of the security controls platform ecosystem and products.
✔️ Proof security implementations within infrastructure and application deployment manifests and the CI/CD pipelines.
✔️ Define required policies, controls, and capabilities for the protection of products and environments.
✔️ Build and validate declarative threat models automation.
✔️ Participate in engineering teams’ product planning cycles and committees.
✔️ Oversee the product security aspects for migration of products and services from Data Center to public cloud, e.g., AWS.
✔️ Serve as a trusted cyber security advisor to product and application teams.

✅ Minimum Requirements:
✔️ Experience integrating security scanning/tooling into the development pipeline.
✔️ Experience in analysing and securing microservices and applications developed using JavaScript and Typescript.
✔️ Experience with CI/CD pipelines (such as Gitlab, Jenkins) and infrastructure-as-a-code models (such as Terraform, Helm, or CloudFormation).
✔️ Hands-on development experience in Python/shell scripting.
✔️ Strong understanding of supply chain security, software integrity, and secure software delivery.
✔️ Experience with Docker and mesh technologies (such as ISTIO).
✔️ Experience with architecture and security reviews, threat modelling, and application risk is highly desired.
✔️ Experience working with Agile methodologies.
✔️ Knowledge of privacy laws and regulations, such as GDPR desired.
✔️ Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc.

✅ PREFERRED QUALIFICATIONS:
✔️ In-depth experience with architecting secure services on Kubernetes.
✔️ Extensive experience with architecting secure services on AWS or on-prem data centers.
✔️ Security-related professional certifications e.g., CISSP, CISM, CCSK, CCSP, CEH, are highly desirable.

✅ We offer excellent benefits, including but not limited to:
🏝 24 vacation days annually 
🤒 6 sick days without a medical certificate 
🏥 Premium Health Insurance (coverage up to 5,000 EUR annually) 
🎉 Special occasion gifts: birthday, wedding, newborn 
📚 Learning & Development budget (for conferences, courses and certifications) 
🌍 Corporate events: international parties, team buildings, activities 
📈 Career growth opportunities in a fast-growing company 
✈️ Relocation package for international candidates 
🏋️ Sports package (FitPass membership) 
🗣️ Language classes: Serbian & English (company-covered)

We invite a Senior Application Security Engineer to join our team.

🌎 Global Remote Mobility: Available for Senior roles in selected jurisdictions.

✅ Responsibilities:
✔️ Demonstrated ability to collaborate with other teams to achieve complex objectives.
✔️ Responsible for security architecture design from cloud infrastructure to application through the implementation of "secure by design" principles.
✔️ Collaborate with product managers, architects, and developers on the implementation of the security controls platform ecosystem and products.
✔️ Proof security implementations within infrastructure and application deployment manifests and the CI/CD pipelines.
✔️ Define required policies, controls, and capabilities for the protection of products and environments.
✔️ Build and validate declarative threat models automation.
✔️ Participate in engineering teams’ product planning cycles and committees.
✔️ Oversee the product security aspects for migration of products and services from Data Center to public cloud, e.g., AWS.
✔️ Serve as a trusted cyber security advisor to product and application teams.

✅ Minimum Requirements:
✔️ Experience integrating security scanning/tooling into the development pipeline.
✔️ Experience in analysing and securing microservices and applications developed using JavaScript and Typescript.
✔️ Experience with CI/CD pipelines (such as Gitlab, Jenkins) and infrastructure-as-a-code models (such as Terraform, Helm, or CloudFormation).
✔️ Hands-on development experience in Python/shell scripting.
✔️ Strong understanding of supply chain security, software integrity, and secure software delivery.
✔️ Experience with Docker and mesh technologies (such as ISTIO).
✔️ Experience with architecture and security reviews, threat modelling, and application risk is highly desired.
✔️ Experience working with Agile methodologies.
✔️ Knowledge of privacy laws and regulations, such as GDPR desired.
✔️ Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc.

✅ PREFERRED QUALIFICATIONS:
✔️ In-depth experience with architecting secure services on Kubernetes.
✔️ Extensive experience with architecting secure services on AWS or on-prem data centers.
✔️ Security-related professional certifications e.g., CISSP, CISM, CCSK, CCSP, CEH, are highly desirable.

✅ We offer excellent benefits, including but not limited to:
💻 Learning and development opportunities and interesting, challenging tasks.
✈️ Relocation package (tickets, staying in a hotel for up to 2 weeks, and visa relocation support for our employees and their family members).
📚 Opportunity to develop language skills, with partial compensation for the cost of English and Portuguese language classes (for localization purposes). 
🎾 Partial compensation for tennis and padel lessons. 
🏀 Urban Sport membership benefit (the most diverse sports and wellness offering in Europe, with more than 50+ activities). 
🏥 Private medical coverage, including inpatient, outpatient, dental care, annual check-ups, and maternity support. 
🏝 Time for proper rest, with 24 non-business days per year and an additional 6 paid sick days. 
🚌 Transport compensation - 200 euros net per month. 
📈 Competitive remuneration level with annual review. 
🤝 Teambuilding activities. 

We invite a Senior Application Security Engineer to join our team.

🌎 Global Remote Mobility: Available for Senior roles in selected jurisdictions.

✅ Responsibilities:
✔️ Demonstrated ability to collaborate with other teams to achieve complex objectives.
✔️ Responsible for security architecture design from cloud infrastructure to application through the implementation of "secure by design" principles.
✔️ Collaborate with product managers, architects, and developers on the implementation of the security controls platform ecosystem and products.
✔️ Proof security implementations within infrastructure and application deployment manifests and the CI/CD pipelines.
✔️ Define required policies, controls, and capabilities for the protection of products and environments.
✔️ Build and validate declarative threat models automation.
✔️ Participate in engineering teams’ product planning cycles and committees.
✔️ Oversee the product security aspects for migration of products and services from Data Center to public cloud, e.g., AWS.
✔️ Serve as a trusted cyber security advisor to product and application teams.

✅ Minimum Requirements:
✔️ Experience integrating security scanning/tooling into the development pipeline.
✔️ Experience in analysing and securing microservices and applications developed using JavaScript and Typescript.
✔️ Experience with CI/CD pipelines (such as Gitlab, Jenkins) and infrastructure-as-a-code models (such as Terraform, Helm, or CloudFormation).
✔️ Hands-on development experience in Python/shell scripting.
✔️ Strong understanding of supply chain security, software integrity, and secure software delivery.
✔️ Experience with Docker and mesh technologies (such as ISTIO).
✔️ Experience with architecture and security reviews, threat modelling, and application risk is highly desired.
✔️ Experience working with Agile methodologies.
✔️ Knowledge of privacy laws and regulations, such as GDPR desired.
✔️ Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc.

✅ PREFERRED QUALIFICATIONS:
✔️ In-depth experience with architecting secure services on Kubernetes.
✔️ Extensive experience with architecting secure services on AWS or on-prem data centers.
✔️ Security-related professional certifications e.g., CISSP, CISM, CCSK, CCSP, CEH, are highly desirable.

✅ We offer excellent benefits, including but not limited to:
🚀 Career growth opportunities in an international and dynamic environment;
📚 Opportunity to develop language skills with partial compensation for language courses;
🎁 Special gifts for birthdays, weddings, and newborns;
🏝️ 20 working days of paid annual vacation, 6 paid sick leaves;
🍲 Office snacks and refreshments;
🏋️‍♂️ Sports package to support a healthy lifestyle;
🩺 Comprehensive medical insurance for you and your partner;
📍 Comfortable office with great facilities in a prime location;
 🎉 Exciting corporate events, team-building activities, and international company parties.

The role

As a Product Security Engineer, you will enable development teams to take ownership of the security and privacy of their product by collaborating to set requirements and standards, performing design reviews and vulnerability assessments, and helping build security controls. You will also work closely with the dedicated Security Operations and Security Engineering teams. 

You will be someone who has experience securing a cloud-native environment, and, in particular, in embedding security and privacy standards in engineering functions. You should also be comfortable automating security and privacy engineering and performing various security assessments.

What excites you 

• Developing high-quality code for extensive tasks, showcasing proficiency in leading systems and architecture design independently. 
• Leading the design and documentation processes for complex tasks, breaking them down into manageable segments for team collaboration while also handling the most challenging portions.
• Contributing significantly to the company-wide systems architecture, impacting the organisation's technological landscape.
• Providing guidance to developers and architects on secure coding methodologies, architectural design, and security best practices, fostering a culture of excellence within the team.
• Overseeing the vulnerability management program, conducting routine assessments, prioritising resolutions, and tracking progress towards securing systems.
• Demonstrating advanced proficiency in security testing, ensuring comprehensive evaluations of system, application, and network security postures.
• Creating and maintaining robust security policies, procedures, and guidelines for effective programme management.

What excites us  

• Experience in cloud-based application and infrastructure security - especially, DevSecOps
• Background in threat modelling and security architecture/secure design
• Awareness of or exposure to security and privacy standards, such as ISO27001, SOC1, CyberEssentials, GDPR, or similar
• Nice to have: Cybersecurity certifications, such as CISSP, CEH, Professional Cloud Security Engineer, or similar
• Technical experience in working with cloud computing providers such as GCP or AWS
• Technical leadership qualities -  setting direction alongside the managers and supporting the security team in technical development. 

Base salary range: €40,000 to €60,000 gross annually

Base salary ranges are based on role, job level, location, and market data.  Please note that whilst we strive to offer competitive compensation, our approach is to pay between the minimum and the mid-point of the pay range until performance can be assessed in role. Offers will take into account level of experience, interview assessment, budgets and parity between you and fellow employees at GoCardless doing similar work.

The role

As a Product Security Engineer, you will enable development teams to take ownership of the security and privacy of their product by collaborating to set requirements and standards, performing design reviews and vulnerability assessments, and helping build security controls. You will also work closely with the dedicated Security Operations and Security Engineering teams. 

You will be someone who has experience securing a cloud-native environment, and, in particular, in embedding security and privacy standards in engineering functions. You should also be comfortable automating security and privacy engineering and performing various security assessments.

What excites you 

• Developing high-quality code for extensive tasks, showcasing proficiency in leading systems and architecture design independently. 
• Leading the design and documentation processes for complex tasks, breaking them down into manageable segments for team collaboration while also handling the most challenging portions.
• Contributing significantly to the company-wide systems architecture, impacting the organisation's technological landscape.
• Providing guidance to developers and architects on secure coding methodologies, architectural design, and security best practices, fostering a culture of excellence within the team.
• Overseeing the vulnerability management program, conducting routine assessments, prioritising resolutions, and tracking progress towards securing systems.
• Demonstrating advanced proficiency in security testing, ensuring comprehensive evaluations of system, application, and network security postures.
• Creating and maintaining robust security policies, procedures, and guidelines for effective programme management.

What excites us  

• Experience in cloud-based application and infrastructure security - especially, DevSecOps
• Background in threat modelling and security architecture/secure design
• Awareness of or exposure to security and privacy standards, such as ISO27001, SOC1, CyberEssentials, GDPR, or similar
• Nice to have: Cybersecurity certifications, such as CISSP, CEH, Professional Cloud Security Engineer, or similar
• Technical experience in working with cloud computing providers such as GCP or AWS
• Technical leadership qualities -  setting direction alongside the managers and supporting the security team in technical development. 

Base salary range: €4,133 to €6,200 gross monthly

Base salary ranges are based on role, job level, location, and market data.  Please note that whilst we strive to offer competitive compensation, our approach is to pay between the minimum and the mid-point of the pay range until performance can be assessed in role. Offers will take into account level of experience, interview assessment, budgets and parity between you and fellow employees at GoCardless doing similar work.