Security Engineer
Indexed description
Powens Group is a rapidly growing fintech regulated in France and Spain, allowing operations in all European countries and in Mexico.
We are a trusted partner to the top financial industry players and software editors, and we have achieved this by scouting the best talents. Joining Powens Group means being a part of an inclusive, multicultural, and international team of over 130 employees.
Job Description
You will work closely with the DevOps team and our CISO to design and implement security measures across our cloud platforms, Kubernetes clusters, CI/CD pipelines, and internal tooling. This is a hands-on role, ideal for someone who loves shipping secure systems, building automation, and solving real-world security challenges.
Your Missions
- Own the Cloud Security Posture Management program in Aikido Security across AWS (and OVH, where applicable). Manage IAM standardization and AWS SSO rollout, network security architecture, and secrets management.
- Roll out secure development standards, security tooling across the engineering organization. Review code for high-risk components (payment flows, KYC, identity, AI-generated code), collaborating with software engineers.
- Operate the Vulnerability Management Process end-to-end, and coordinate remediation across teams and own SLA compliance reporting.
- Co-manage technical incident response alongside the CISO and operates post-mortems.
- Design detection use cases that matter for our threat model, and run hypothesis-driven threat hunts.
- Help define and operate the security architecture review process for new initiatives.
- Help document, standardize, and evangelize secure practices across the organization.
- 2+ years of experience in a Security Engineering or Cloud Security role
- Solid hands-on experience in cloud security, ideally with AWS (IAM, networking, encryption, GuardDuty, Security Hub, Permission Sets). OVH familiarity is a plus.
- Practical exposure to CSPM/CNAPP tooling: Aikido, Wiz, Prisma Cloud, Orca, or equivalent.
- Comfortable with SIEM / detection engineering concepts - Wazuh, Splunk, Elastic, Sentinel
- Application security fundamentals: OWASP Top 10, secure SDLC, and the ability to read code in at least one major language.
- Vulnerability management day-to-day - CVE triage, CVSS / EPSS, SLA-driven remediation.
- Experience operating in or alongside a regulated environment (fintech, banking, healthcare, public sector, etc) is a plus.
- Fluent in English (written and spoken), French or Spanish would be a plus
- HR online interview
- Online interview with CISO
- Case study
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search