Senior Security Engineer - Cloud Infrastructure (Fintech)

TL;DR

Senior Security Engineer - Cloud Infrastructure (Fintech): Owning and evolving the security posture of cloud environments across AWS and GCP, with an accent on network security, perimeter defence, and attack surface management. Focus on designing, implementing, and maintaining security infrastructure to proactively detect and mitigate threats, and embedding security best practices into cloud foundations.

Location: Hybrid (4 days in office) in Malaga. Authorisation to work in Spain required.

Company

hirify.global is a global fintech firm dedicated to empowering businesses to expand internationally through tailored financial solutions.

What you will do

• Own cloud security posture and attack surface management across AWS and GCP environments.
• Design and maintain web application firewall infrastructure, developing and tuning detection rules.
• Architect network segmentation and isolation strategies, applying zero-trust principles.
• Deliver modern secure remote access solutions with identity-aware access controls.
• Drive security automation and DevSecOps adoption using Infrastructure as Code (Terraform).
• Improve team capabilities and cross-functional collaboration on security best practices.

Requirements

• 5+ years in security or infrastructure engineering with deep expertise in cloud security, ideally within FinTech.
• Expert-level experience with AWS and/or GCP security services (VPCs, security groups, IAM).
• Proven track record designing and implementing WAF solutions (AWS WAF, Cloud Armor).
• Strong experience designing network architectures with proper segmentation and isolation patterns.
• Extensive experience with Infrastructure as Code (Terraform preferred) and GitOps practices.
• Proficiency in scripting and automation (Python, Bash).
• Solid understanding of network security fundamentals: firewalls, routing, DNS, TLS, VPNs.
• Experience implementing or operating SIEM, logging, and security monitoring solutions.
• Authorisation to work in Spain required.
• English: B2 required.

Nice to have

• Experience with zero-trust network architectures and identity-aware access solutions.
• Knowledge of container security and Kubernetes network policies.
• Familiarity with compliance requirements for financial services (PSD2, GDPR, PCI-DSS).

Culture & Benefits

• Opportunity to define cloud security architecture at a leading fintech.
• High-impact role with significant technical influence across the organisation.
• Investment in professional development and growth, including an annual conference and training budget.
• Inclusive, collaborative culture with a diverse global team.
• Competitive base salary and discretionary performance bonus.
• Hybrid work model with 4 days in office in Malaga.

Hiring process

• Professional references available upon request.
• Clean background check and regulatory screening.