
Senior Security Engineer, Infrastructure Security
Posted 10 hours ago

Posted 10 hours ago
This is a fully remote position, open to applicants in Nigeria.
• Designing and implementing security measures across all layers of the technology stack, including physical hardware, operating systems, Kubernetes, networks, and CI/CD pipelines, while considering sophisticated adversaries and insider threats as key design challenges.
• Strengthening our multi-cloud infrastructure from end to end, focusing on network isolation, secret management, machine identity, and checkpoint encryption—essential tasks that ensure the safety of real financial assets.
• Safeguarding our API services from both prevalent and emerging threats, ranging from DDoS attacks to those that have yet to be named.
• Securing and overseeing our distributed workforce's device fleet, ensuring endpoint protection and robust identity and access management for a fast-moving team across various markets.
• Collaborating with engineering teams to implement security enhancements on a large scale, integrating security into our development processes rather than adding it post-deployment.
• Leading compliance initiatives, including PCI DSS, SOC 1 and 2, and regular penetration tests with external auditors, ensuring that we not only meet these standards but embody them as core principles.
• Adopting a generalist approach to emerging workloads, blending in-depth security knowledge with a broad technical skill set to adapt as our infrastructure progresses.
• Fostering a culture of security within the engineering organization, not through enforcement, but by making secure practices the default behavior.
• Extensive knowledge in cloud security, particularly with AWS and/or Azure, including multi-cloud network architecture, infrastructure hardening, and cloud-agnostic system design.
• Demonstrated experience in securing Kubernetes environments, container orchestration, and service meshes.
• Proven history with secret management, identity and access management, machine identity, and scaling access control measures.
• Practical experience with compliance frameworks, specifically PCI DSS and SOC 1 and 2.
• Strong analytical skills.
• Excellent communication abilities to engage effectively with both technical and non-technical stakeholders while maintaining clarity and precision.
• Bonus: Experience in securing cryptocurrency systems; background in financial services or regulated industries; familiarity with endpoint protection tools and workforce device management.
• Must be located in Nigeria.
• Competitive compensation.
• Significant equity in an early-stage company.
• Genuine flexibility regarding hours, location, and methods to achieve your best performance.
• A technical team that prioritizes security and values your input.
U.S. Urology Partners
Webflow
Deliverect
Executive 1 Holding Company, LLC
Get handpicked remote jobs straight to your inbox weekly.