Senior Infrastructure Security Engineer

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Senior Infrastructure Security Engineer in United States.

This role is a senior, hands-on opportunity to shape and operate end-to-end cloud and infrastructure security in a highly regulated, fast-moving fintech environment. You will own security architecture across AWS and edge infrastructure while also driving day-to-day security operations and incident response. The scope is intentionally broad, combining cloud security engineering, DevSecOps, and compliance responsibilities into a single high-impact function. You will work directly with engineering and leadership teams to define guardrails, improve resilience, and strengthen security maturity. The environment is lean and ownership-driven, offering significant autonomy and visibility. This is an opportunity to build security foundations that directly support regulated digital asset trading systems at scale.

Accountabilities:

In this role, you will be responsible for designing, building, and operating secure cloud and infrastructure systems across a complex, multi-account environment.

• Architect and maintain secure AWS infrastructure using Terraform/Terragrunt, enforcing least-privilege IAM, segmentation, and security guardrails
• Manage cloud and network security components including VPC design, Transit Gateway, PrivateLink, DNS security, and AWS-native security tooling
• Own Cloudflare infrastructure and Zero Trust architecture, including Access policies, tunnels, WARP deployment, and gateway security controls
• Integrate security into CI/CD pipelines (GitHub Actions) with SAST, DAST, container scanning, dependency checks, and secrets detection
• Operate security monitoring, SIEM/log pipelines, alert tuning, incident response, and post-incident analysis
• Drive vulnerability management lifecycle, compliance automation, and policy-as-code enforcement across environments
• Support regulatory and audit requirements (SEC/FINRA) through documentation, controls implementation, and cross-functional coordination

Requirements

The ideal candidate brings deep hands-on experience across cloud infrastructure, security engineering, and DevOps in regulated or high-complexity environments.

• 7+ years in IT, cloud infrastructure, or related technical domains with 5+ years focused on security, DevOps, or infrastructure engineering
• Strong AWS expertise (IAM, VPC, GuardDuty, Security Hub, CloudTrail, Config, KMS, Secrets Manager, Network Firewall, PrivateLink)
• Experience with Cloudflare Zero Trust (Access, Tunnel, Gateway, WARP) and optionally edge compute tools
• Solid understanding of secure network architecture, multi-account AWS environments, and segmentation strategies
• Strong Infrastructure-as-Code experience using Terraform and Terragrunt
• Hands-on experience securing CI/CD pipelines and implementing DevSecOps practices
• Experience in vulnerability management, incident response, and security observability tooling (e.g., Datadog or similar)
• Proficiency in at least one scripting language (Python, Go, Bash, or TypeScript) and strong technical documentation skills
• Experience working in regulated environments (financial services strongly preferred) and collaborating with audit/compliance teams

Benefits

• Competitive base salary commensurate with experience
• Comprehensive health, dental, and vision insurance coverage
• Fully remote work within the United States
• Provided equipment to support remote productivity
• Opportunity to work in a high-growth, regulated fintech environment
• Direct ownership and high visibility in shaping security architecture and strategy
• Collaborative engineering culture with strong focus on autonomy and impact.

How Jobgether works: We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team. We appreciate your interest and wish you the best! Why Apply Through Jobgether? Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time. #LI-CL1