Infrastructure & Security Engineer
Indexed description
Two years after launch, we serve thousands of organizations across Europe and process hundreds of millions of euros in flows every month.
Our ambition: become the world's leading treasury management infrastructure in a market worth trillions.
We are backed by Index Ventures, the CEO of Revolut, the founder of Kyriba, and the CTO of Wise.
Spiko runs on excellence, transparency, and straight talk.
We are looking for a Founding Infrastructure & Security Engineer to join Spiko's 8-people engineering team. You will be the first person in the team fully dedicated to infrastructure, security, and reliability. Until now, these responsibilities have been shared across our full-stack engineers.
Typical responsibilities include:
Cloud Infrastructure & Operations
- Manage and evolve our cloud infrastructure on AWS, GCP and Cloudflare using Terraform
- Manage our deployed environments on Kubernetes (via Qovery)
- Improve reliability, observability, and performance of our systems
- Define infrastructure standards and deployment best practices
- Set up continuous security scanning and automated vulnerability detection
- Evaluate and deploy AI-powered pentesting tools
- Organize and manage external security audits
- Enforce application and cloud security best practices
- Manage VPN, SSO, MFA, and access control policies
- Handle employee onboarding/offboarding from a systems access perspective
- Drive ISO 27001 compliance (policies, controls, evidence collection)
- Respond to internal security incidents (stolen devices, phishing, suspicious access)
- Cloud: AWS, GCP, Cloudflare (for DNS)
- Infrastructure as Code: Terraform
- Orchestration & Deployment: Kubernetes, Docker, Qovery
- Databases: PostgreSQL
- Observability: Datadog (logs, traces, metrics, RUM)
- Identity & Access: Ory (Kratos, Hydra, Oathkeeper)
- CI/CD: GitHub Actions
- Application stack: TypeScript, NX, Effect, React
- 5+ years of experience in infrastructure, DevOps, or security engineering roles
- Strong hands-on experience with AWS (and/or GCP), Terraform, and Kubernetes
- Solid understanding of application security, network security, and cloud security best practices
- Experience with security audit processes, vulnerability management, or compliance frameworks (ISO 27001, SOC 2, or similar)
- Comfortable working autonomously and defining your own roadmap — you'll be the first dedicated person in this area
- Comfortable working in an English-speaking environment
- Curious, pragmatic, and eager to learn
- Experience in fintech, capital markets, or other highly regulated environments
- Familiarity with CI/CD security tooling (SAST, DAST, dependency scanning, container scanning)
- Experience with automated pentesting tools or AI-driven security testing
- Knowledge of blockchain infrastructure or Web3 security
- Experience leading or contributing to ISO 27001 certification
- 💰Compensation: €75k - €95k + Stock Options
- 📍 Office: in the heart of Paris
- 🏡 Remote work: up to 2 days per week and one full remote week per month
- 💻 The best tech for your job: latest-generation laptops and industry-leading software
- 🏥 Health insurance: 100% covered by Spiko
- 💳 Monthly Budget to cover different perks of choice
- 🚇 Transport: 50% of public transport pass covered or the Forfait Mobilités Durables (FMD)
- 👥 Referral Bonus
- 🎊 Social life: regular afterworks and biannual offsites
- Screening Interview - 30 min screening call with Lilian, Talent Acquisition
- Hiring Manager Interview - 30 min with Nicolas, Tech Lead
- 45 min technical interview focused on infrastructure & security with one engineer (remote)
- 2h hands-on technical session with two engineers (infrastructure design, security scenario) (in the office)
- Final Interviews with the Founders
- Reference Check: we'll reach out to your references to gather further insights
- Offer
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search