Senior Security Engineer
Indexed description
Since we launched in 2019, we've achieved remarkable growth:
- Built a community of over 10 million users ๐ค
- Closed a โฌ30 million Series B in December 2024 ๐
- Grown to over 200 employees across Europe ๐
We're looking for a hands-on Senior Security Engineer who will be the driving force behind bsport's security transformation.
This is not a purely strategic role, you'll be rolling up your sleeves to implement security controls, respond to incidents, and build our security program from fundamentals.
This role is critical because:
- You'll directly protect :10 million users' personal data.
- You'll enable our sales team to confidently answer security questionnaires as we pursue enterprise clients.
- Youโll work in the SRE team, with close collaboration with SWE teams and exposure to most if not all department leaders.
- You'll reduce business risk in a fast-scaling environment where security incidents can damage trust and revenue.
Drive and maintain top-notch security across our platform:
- ๐ Harden AWS infrastructure, Kubernetes clusters & app security.
- โก Implement automated scanning (SAST/DAST) & dependency checks.
- ๐ก๏ธ Strengthen authentication & identity management (SSO, MFA, Google Workspace)
- ๐ต๏ธโโ๏ธ Set up vulnerability management & alerting integrated with engineering sprints.
- ๐จ Respond to security incidents, create runbooks & support customer security requests.
Promote a strong security mindset across the company:
- ๐ Build engaging, role-specific training & run phishing simulations.
- ๐ป Define & enforce hardware & endpoint security standards.
- ๐ค Develop a network of security champions & self-service guides.
- ๐ Create pragmatic policies & governance that balance security with business needs.
- AWS
- Infrastructure as Code: Terraform, Helm
- Container orchestration: Kubernetes, Docker
- Monitoring: Grafana, ELK stack
- Backend: Python Django, FastAPI, Celery
- Frontend: React, TypeScript
- Databases: PostgreSQL, Redis, RabbitMQ, Kafka
- CI/CD: GitLab CI, ArgoCD
- 5+ years in security engineering, infrastructure security, or security software engineering roles.
- Strong hands-on experience with AWS or GCP security (IAM, security groups, WAF, etc.).
- Deep understanding of application security (OWASP Top 10, secure coding, API security).
- Experience building security programs from scratch in fast-growing startups or scale-ups.
- Proven track record in incident response and handling data breach scenarios.
- Good programming skills (at least one of Python, Typescript, Golang)
- Experience with infrastructure security (Kubernetes, container security, IaC security)
- Prior experience training employees on Security.
- Experience with GDPR compliance and data protection regulations.
- Background in penetration testing or offensive security.
- Familiarity with our tech stack (Django, React, PostgreSQL, Terraform)
- Experience responding to security questionnaires for enterprise sales.
- SOC2 or ISO27001 implementation experience.
๐คธโโ๏ธ Flexible working model, hybrid setup with 2 remote day per week, plus 15 extra remote days per year.
๐ Health insurance fully covered by the company.
๐๐ฝโโ๏ธ Negociated gym deal with Wellhub: get access to a wide range of gyms, studios, and wellbeing apps.
๐ A diverse, collaborative workplace, join an international team!
๐๏ธ Feel supported with paid sick leave, because your health always comes first.
๐ฌ Our Hiring Process:
- ๐๐ผInterview with Talent
- ๐ง๐ฝโ๐ปLive Coding
- ๐Security case study
- ๐ค Cultural fit
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search