Product Security Architect
Beograd, Serbia
SOFTSWISS
SOFTSWISS is a gambling software development company with one-stop-shop iGaming software solutions and services for online casino and sportsbook.Overview:
SOFTSWISS continues to expand the team and is looking for a Product Security Architect to help design and scale secure architecture for our fintech platform. This role combines strategic ownership of product security with hands-on involvement in the secure development lifecycle. Youâll work closely with engineering, product, and compliance teams to ensure security is embedded into our platform from design to release.
About Product:
FinteqHub
Đ PCI DSS certified payment gateway for online businesses, providing integration with payment systems via a single software platform.
Learn more
Key responsibilities:
- Design and evolve the security architecture for a modern fintech platformÂ
- Act as a security partner in product and infrastructure design reviewsÂ
- Drive secure design consultations by partnering with product architects and developers on new feature development, architecture reviews, and major refactors
- Lead threat modelling, define secure-by-default design patternsÂ
- Oversee the remediation lifecycle of application vulnerabilities from different sources (SAST, DAST, SCA, penetration testing, etc.) â collaborate with the triage team, track fix implementation, and ensure resolution meets SLAs and compliance expectationsÂ
- Contribute to internal secure coding awareness initiatives Support audits and compliance processes (e.g. PCI DSS, DORA, GDPR)
Requirements:
- 5+ years of experience in Application Security, Product Security, or Security Architecture rolesÂ
- Strong knowledge of modern application architectures (e.g., microservices, containerised deployments, cloud-native apps)Â
- Experience participating in or leading security design reviews for products and infrastructureÂ
- Hands-on experience with secure SDLC, threat modelling, and design of secure-by-default systemsÂ
- Proven experience working with SAST, DAST, SCA tools and managing the full vulnerability lifecycleÂ
- Familiarity with secure coding practices and the ability to influence engineering teams Strong understanding of at least one major cloud provider (GCP, AWS or Azure)
- Experience supporting security audits and compliance efforts (e.g. PCI DSS, DORA, ISO 27001)Â
- Excellent communication skills and ability to partner with cross-functional teams (engineering, product, compliance)
- Intermediate or higher English and Russian (B1+)
Nice to have:
- Knowledge of CI/CD pipelines and how to embed security controlsÂ
- Programming skills in Golang, PythonÂ
- Experience with containers and Kubernetes securityÂ
- Background in fintech, banking, or other regulated environmentsÂ
- Relevant certifications (e.g. CSSLP, OSWE, CISSP, AWS Certified Security â Speciality, Google Professional Cloud Security Engineer)Â
- Proficiency in PostgreSQL security mechanisms (encryption, auditing, access control)
Learn more about our hiring process here â what to expect, how to prepare, and what makes SOFTSWISS different.
What we offer:
- Full-time remote work opportunities and flexible working hours
- Comprehensive Mental Health Programme
- Private insurance
- Sports program compensation
- Free online English lessons
- An additional 1 Day off per calendar year
- Generous referral program
- Training, internal workshops, and participation in international professional conferences and corporate events
About Us:
SOFTSWISS is an international company, and an iGaming software expert. We donât only follow iGaming market trends, we create them! SOFTSWISS is a recognised industry leader in iGaming software solutions development, covering almost all aspects of the iGaming industry. The company has an international team and an official presence in several countries. Projects powered by SOFTSWISS receive numerous awards and accolades from industry media.
Our Mission:
Changing the iGaming industry through technological innovation.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index đ°
Tags: Application security Audits AWS Azure Banking CI/CD CISSP Cloud Compliance CSSLP DAST Encryption FinTech GCP GDPR Golang ISO 27001 Kubernetes Microservices OSWE PCI DSS Pentesting PostgreSQL Product security Python SAST SDLC SLAs Vulnerabilities
Perks/benefits: Career development Conferences Flex hours Flex vacation Health care Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.