Infrastructure Security Engineer

Social network you want to login/join with:
Infrastructure Security Engineer, London col-narrow-left
Client: Sumsub
Location: London, United Kingdom
Job Category: Other
-
EU work permit required: Yes
col-narrow-right
Job Reference: 5b1ee4e1d0ea
Job Views: 6
Posted: 18.06.2025
Expiry Date: 02.08.2025
col-wide
Job Description: Sumsub is the one verification platform to secure the whole user journey. With Sumsub’s customizable KYC, KYB, transaction monitoring and fraud prevention solutions, you can orchestrate your verification process, welcome more customers worldwide, meet compliance requirements, reduce costs and protect your business.
Sumsub has over 4000 clients across the fintech, crypto, transportation, trading and gaming industries including Duolingo, Bitpanda, Wirex, Avis, Exness, Flippa, italki, Bybit, LBANK, Gett, Kaizen Gaming, and TransferGo.
Our products are recognised by industry leaders like Gartner's Magic Quadrant, Forrester Wave and Frost Radar.

Now we are looking for an Infrastructure Security Engineer toimplement robust infrastructure security measures utilizing modern security solutions.
What You Will Be Doing:
Design and implement robust infrastructure security measures utilizing modern security solutions such as SIEM platforms, host-based intrusion detection systems (HIDS), endpoint detection and response (EDR), AWS Security Hub, vulnerability scanning tools, and intrusion detection systems (IDS)
Proactively research, evaluate, and integrate emerging security tools/technologies to strengthen infrastructure defences, ensuring alignment with industry best practices and evolving threat landscapes
Develop, analyze, and fine-tune SIEM alert configurations to maximize detection accuracy, reduce false positives, and streamline incident response workflows
Design, implement, and maintain security automation workflows utilizing Ansible for configuration management, Terraform for infrastructure-as-code, and GitLab CI/CD pipelines to enforce consistent security policies
Implement and maintain Kubernetes (K8s) security protocols
Execute comprehensive security assessments and audits to identify risks, perform penetration testing, and lead incident response activities including forensic analysis and post-incident reporting
Continuously monitor security threats across hybrid environments, deploying preventive controls (e.g., WAF, IPS) and mitigation strategies to address vulnerabilities and active attacks
Partner with DevOps and development teams to embed security controls into CI/CD pipelines, infrastructure design, and application architectures, fostering a "shift-left" security culture
Oversee security posture monitoring for SaaS ecosystems, ensuring secure API configurations, identity/access governance, and compliance with organizational security standards
Maintain up-to-date documentation of incident playbooks, and tooling configurations, while staying informed on emerging threats and cybersecurity innovations
About You:
Proven experience in information security. Knowledge of cloud infrastructures, with a focus on AWS
In-depth knowledge and hands-on experience with SIEM systems and vulnerability management tools
Proficiency in using Terraform and Ansible for infrastructure automation
Experience in Kubernetes security, including the use of tools for monitoring and securing containers
Knowledge of DevSecOps practices, with a focus on implementing security checks in CI/CD pipelines, and the ability to integrate these practices into existing processes
Proficiency in automating daily tasks and workflows, including the ability to develop custom scripts and small integrations between services using Python
Proficiency in Linux operating systems at an administrator level (Windows experience a plus)
Will be a plus:
Security certifications such as CKS, CKA, OSCP, AWS Security, or equivalent
Experience in high-load systems and environments with stringent security requirements
Understanding of cybersecurity frameworks (e.g., ISO 27001, NIST, GDPR, PCI-DSS, SOC 2, CIS Controls)
What We Offer:

Fully remote and flexible working schedule, with access to a coworking space (in some locations)
Working with a product that matters. Our technology helps to protect millions of users and lots of online services worldwide
International project. Our team works from offices in Berlin, Limassol, London, and Miami, our customers are spread from Mexico and the USA to Hong Kong, South Korea, and Singapore
1 extra day off to celebrate your birthday
7 additional days to enjoy the Christmas & New Year holidays
7 days of sick leave (without the need for documentation)
Regular, fully covered team offsites to connect and collaborate
Learning opportunities and support to attend industry events with the team
The hiring stages: TA screening -> Hiring Manager Interview -> Final Interview.

Sounds like a great opportunity for your career development? Then go ahead and apply!

We are a global community of innovators, creators, and thinkers, and we believe that diversity fuels our innovation. Sumsub is proud to be an equal opportunity employer, committed to building a diverse and inclusive workforce. We welcome applications from people of all backgrounds, cultures, genders, experiences, abilities and perspectives. Join us in shaping the future inclusively.

#J-18808-Ljbffr