Security Engineer

At Midas, we are working on real-life engineering problems to transform the world of finance.
We build the fastest products with the purpose of delivering a seamless experience for everyone to manage their money.
At Midas, we’re not just implementing security measures—we’re building the future of fintech securely. From cloud-native infrastructure to application security, IAM to threat detection, we're looking for an engineer who can think strategically and act technically across all facets of security.

What You’ll Do

• Strengthen company-wide security architecture and culture, translating security needs into engineering solutions
• Identify and mitigate risks across infrastructure (cloud-native, container, network) and application security, and automate related processes
• Contribute to the development of the vulnerability management lifecycle
• Enhance log collection and monitoring metrics to support incident response processes
• Take part in the design of core security solutions such as IAM, secrets management, EDR, WAF, and DLP
• Collaborate closely with DevOps and platform teams to integrate security controls into CI/CD pipelines
• Learn from red team and penetration test results, improve protection/detection mechanisms, and support actionable responses to findings

What You’ll Bring

• Proven hands-on experience in security engineering
• Practical knowledge of operating systems and network layers
• Experience with security in containerized and cloud environments
• Familiarity with Application Security and a Shift Left mindset
• Scripting and automation proficiency in languages like Python or Bash
• Hands-on experience with tools such as EDR, WAF, SIEM, DLP, SAST/DAST
• Understanding of security frameworks (MITRE ATT&CK, CIS, NIST, etc.)
• Ability to communicate security risks clearly and realistically with technical and business teams
• Proactive, curious, and solution-oriented mindset with a passion for continuous learning
• Ability to read and write technical documentation in English

Nice to Have

• Experience with Kubernetes, CI/CD, and container security
• Background in working with regulated industries (e.g., SPK or similar regulatory bodies)
• Exposure to pentesting, purple teaming, or red teaming activities
• Strong understanding of OWASP Top 10, API security, and mobile security topics
• Contributions to open-source security tools or active involvement in vulnerability research communities
• Certifications such as CKA, CKS, OSCP+, eWPTX, eMAPT, OSWE, CCSP, CompTIA Cloud+, eCPTX, CRTO, CRTP, etc.

Curious about our tech stack?Take a look: https://stackshare.io/getmidas/midas-engineeringAlso check out our engineering blog: https://engineering.getmidas.com/Midas Engineering Twitter: https://twitter.com/midas_eng
Why Join Us?
Play to Win, Build with the BestCollaborate with the brightest minds, who challenge you to grow every day.
Dare to DisruptBecome an outlier and turn bold ideas into groundbreaking realities.
You will be fully equipped for success:
Great compensation for great talent.Holistic support for health, well being and nutrition.Tools to Thrive – everything you need to perform at your best.
Curious about our tech stack?Explore it here: https://stackshare.io/getmidas/midas-engineeringCheck out our blog for engineering challenges: https://engineering.getmidas.com/Follow Midas engineering X account: https://x.com/midas_eng
Be an Outlier, Build the Future of Money!