About the role

Role Overview

You will be an Infrastructure Security Engineer responsible for running and continuously improving day-to-day security operations. The work centers on security alerts handling, phishing response, vulnerability coordination, and employee-facing security requests, with a focus on clarity, consistency, and visibility.

What You Will Be Doing

Design and implement security controls integrated into CI/CD pipelines
Build and operate infrastructure security guardrails using Terraform, cloud tooling, and Kubernetes
Treat security tooling as products (own architecture, reliability, and lifecycle)
Implement audit logging, change tracking, and security evidence generation
Define and evolve vulnerability management foundations (inventory, scoping, correlation)
Define and enforce infrastructure security baselines
Support compliance audits (e.g., PCI DSS) by producing technical evidence
Collaborate with SOC and operational teams to ensure controls are usable in practice

About You / Requirements

Strong experience with CI/CD systems (e.g., GitHub Actions, GitLab CI, Jenkins)
Infrastructure as Code experience (e.g., Terraform)
Hands-on with cloud platforms (AWS, GCP, Azure)
Knowledge of container and Kubernetes security concepts (e.g., Falco, Trivy)
Background in logging, auditability, and change tracking
Understanding of vulnerability management fundamentals (CVEs, scanners, remediation, validation)

Nice to Have

Runtime security and drift detection
Secret scanning and prevention
Experience building internal security tooling
Exposure to compliance frameworks (PCI DSS, SOC 2, ISO 27001)
Developing experience in Python or Go

About Sumsub

Sumsub is a full-cycle verification platform focused on scalable compliance. It supports identity and business verification, ongoing monitoring, and configurable analytics/workflows to help clients accelerate growth, prevent fraud, and meet regulatory requirements worldwide.