Infrastructure Security Engineer

Sumsub is the one verification platform to secure the whole user journey. With Sumsub’s customizable KYC, KYB, transaction monitoring and fraud prevention solutions, you can orchestrate your verification process, welcome more customers worldwide, meet compliance requirements, reduce costs and protect your business.

Sumsub has over 4000 clients across the fintech, crypto, transportation, trading and gaming industries including Duolingo, Bitpanda, Wirex, Avis, Exness, Flippa, italki, Bybit, LBANK, Gett, Kaizen Gaming, and TransferGo.

Our products are recognised by industry leaders like Gartner's Magic Quadrant, Forrester Wave™ and Frost Radar™.

Now we are looking for a Infrastructure Security Engineer to implement robust infrastructure security measures utilizing modern security solutions.

What You Will Be Doing:

• Design and implement robust infrastructure security measures utilizing modern security solutions such as SIEM platforms, host-based intrusion detection systems (HIDS), endpoint detection and response (EDR), AWS Security Hub, vulnerability scanning tools, and intrusion detection systems (IDS)
• Proactively research, evaluate, and integrate emerging security tools/technologies to strengthen infrastructure defences, ensuring alignment with industry best practices and evolving threat landscapes
• Develop, analyze, and fine-tune SIEM alert configurations to maximize detection accuracy, reduce false positives, and streamline incident response workflows
• Design, implement, and maintain security automation workflows utilizing Ansible for configuration management, Terraform for infrastructure-as-code, and GitLab CI/CD pipelines to enforce consistent security policies
• Implement and maintain Kubernetes (K8s) security protocols
• Execute comprehensive security assessments and audits to identify risks, perform penetration testing, and lead incident response activities including forensic analysis and post-incident reporting
• Continuously monitor security threats across hybrid environments, deploying preventive controls (e.g., WAF, IPS) and mitigation strategies to address vulnerabilities and active attacks
• Partner with DevOps and development teams to embed security controls into CI/CD pipelines, infrastructure design, and application architectures, fostering a "shift-left" security culture
• Oversee security posture monitoring for SaaS ecosystems, ensuring secure API configurations, identity/access governance, and compliance with organizational security standards
• Maintain up-to-date documentation of incident playbooks, and tooling configurations, while staying informed on emerging threats and cybersecurity innovations.

About You:

• Proven experience in information security. Knowledge of cloud infrastructures, with a focus on AWS
• In-depth knowledge and hands-on experience with SIEM systems and vulnerability management tools
• Proficiency in using Terraform and Ansible for infrastructure automation
• Experience in Kubernetes security, including the use of tools for monitoring and securing containers
• Knowledge of DevSecOps practices, with a focus on implementing security checks in CI/CD pipelines, and the ability to integrate these practices into existing processes
• Proficiency in automating daily tasks and workflows, including the ability to develop custom scripts and small integrations between services using Python
• Proficiency in Linux operating systems at an administrator level (Windows experience a plus) 

Preferred Qualifications: 

• Security certifications such as CKS, CKA, OSCP, AWS Security, or equivalent
• Experience in high-load systems and environments with stringent security requirements
• Understanding of cybersecurity frameworks (e.g., ISO 27001, NIST, GDPR, PCI-DSS, SOC 2, CIS Controls)

What We Offer:

• Fully remote and flexible working schedule, with access to a coworking space (in some locations).
• Working with a product that matters. Our technology helps to protect millions of users and lots of online services worldwide.
• International project. Our team works from offices in Berlin, Limassol, London, and Miami, our customers are spread from Mexico and the USA to Hong Kong, South Korea, and Singapore.
• 1 extra day off to celebrate your birthday.
• 7 additional days to enjoy the Christmas & New Year holidays.
• 7 days of sick leave (without the need for documentation).
• Regular, fully covered team offsites to connect and collaborate.
• Learning opportunities and support to attend industry events with the team.

The hiring stages: TA screening -> Hiring Manager Interview -> Final Interview.

Sounds like a great opportunity for your career development? Then go ahead and apply!

We are a global community of innovators, creators, and thinkers, and we believe that diversity fuels our innovation. Sumsub is proud to be an equal opportunity employer, committed to building a diverse and inclusive workforce. We welcome applications from people of all backgrounds, cultures, genders, experiences, abilities and perspectives. Join us in shaping the future inclusively.