#1 Job Board for tech industry in Europe

  • Job offers
  • All offersWarszawaSecuritySenior Security Engineer - DevSecOps
    Senior Security Engineer - DevSecOps
    Security
    MANGOPAY

    Senior Security Engineer - DevSecOps

    MANGOPAY
    Warszawa
    Type of work
    Full-time
    Experience
    Senior
    Employment Type
    B2B
    Operating mode
    Remote
    MANGOPAY

    MANGOPAY

    MANGOPAY’s vision is to fuel the success of the platform economy. We empower the platform economy with our platform-specific payment infrastructure. Since 2013, we have supported 2,500+ clients in e-commerce, retail, and cutting-edge platforms.

    Company profile

    Tech stack

      AWS

      advanced

      Bash

      advanced

      Netskope

      advanced

      Kubernetes

      advanced

      Python

      advanced

      Fargate

      advanced

    Job description

    At Mangopay, our mission is to power the payment infrastructure and payment operations of the world's biggest and most exciting marketplaces & platforms.


    We provide marketplaces and platforms with powerful modular payment and regulatory solutions. Since 2013, we have enabled the success of some of the biggest names in e-commerce, retail, and cutting-edge platforms such as Vinted, Rakuten, Chrono24, La Redoute, Wallapop and over 2,500+ more. 


    Our team of 400+ is spread across Europe, with offices in Berlin, Dublin, Luxembourg, London, Madrid, Paris, and Warsaw. In an environment where marketplaces and fintech ventures are thriving, we're actively seeking exceptional individuals to tackle the challenges in our field and contribute to our growth. Our commitment to diversity is unwavering, and we are dedicated to promoting employee well-being, inclusivity, and equal opportunities. Joining Mangopay means you’ll be part of a dynamic, flexible, and rapidly growing team.


    Job Description

    As a Senior Security Operations Engineer, you will be at the forefront of securing our AWS infrastructure and applications through hands-on technical work, with a specific focus on Kubernetes-based environments. Your role will involve architecting, implementing, and managing security controls, conducting penetration tests to uncover vulnerabilities, and collaborating closely with development teams to remediate findings. This is a unique opportunity for a technically proficient individual to make a significant impact on our security posture in the cloud and Kubernetes ecosystem.


    Key Responsibilities:

    • Architect, implement, and manage advanced security controls in AWS, including but not limited to AWS network firewalls, DDoS protection, ELB, VPC zoning, KMS deployment, and application controls within Kubernetes environments.
    • Deploy and configure security tools such as Netskope for CASB functionality, Inspector for vulnerability assessment, and GuardDuty for threat detection.
    • Advanced IAM / PAM management experience and deploying RBAC strategies in cloud environment
    • Conduct hands-on penetration tests and vulnerability assessments of AWS infrastructure, Kubernetes clusters (EKS), and Fargate workloads, utilizing tools and techniques to identify security weaknesses. 
    • Review golden images and ensure hardening security practice (limitation of attacks surface and vulnerabilities exposure)
    • Collaborate closely with development teams to prioritize and remediate security findings, integrating security into the CI/CD pipeline and application controls within Kubernetes.
    • Monitor AWS environments and Kubernetes clusters for security incidents and anomalies, utilizing native AWS tools, Kubernetes auditing, and third-party solutions to detect and respond to threats.
    • Automate security tasks and workflows using IAC (Terraform, Giltab), AWS Lambda, Kubernetes-native tooling, and scripting languages to improve efficiency and scalability.
    • Stay up-to-date on emerging threats and security best practices, researching and implementing innovative solutions to enhance our security posture within AWS and Kubernetes.
    • Mentor and provide technical guidance to junior members of the security operations team.


    Qualifications:

    • Bachelor's degree in Computer Science, Information Security, or related field.
    • 5-7 years of hands-on experience in security operations with a strong focus on AWS, Kubernetes (EKS), and Fargate.
    • Deep understanding of AWS security services and features, Kubernetes architecture, and container security principles.
    • Extensive hands-on experience with security tooling such as Netskope, Inspector, GuardDuty, and Terraform.
    • Proven track record of conducting penetration tests and vulnerability assessments in AWS and Kubernetes environments, utilizing tools such as Trivy, Kali Linux, Metasploit, and Burp Suite.
    • Strong scripting and automation skills, with proficiency in Python, Bash, or similar languages.
    • Relevant certifications such as AWS Certified Security - Specialty, Kubernetes certifications, OSCP, or CISSP are highly desirable.
    • Excellent communication skills and the ability to effectively collaborate with cross-functional teams.


    Recruitment process 

    • HR Call
    • 1st Interview with our Expert SOC Engineer
    • 2nd interview with our Application Security Engineer
    • Final interview with our CISO