Senior Security Engineer - Cloud Infrastructure (Fintech)

TL;DR

Senior Security Engineer (Fintech): Owns and evolves cloud security posture across AWS and GCP environments, focusing on network security, perimeter defense, and attack surface management with an accent on designing and implementing security infrastructure and defining policy-as-code. Focus on driving DevSecOps adoption in a regulated financial services context and proactively identifying and mitigating threats.

Location: Hybrid (4 days in office) in Malaga, Spain. Must have authorisation to work in Spain.

Company

hirify.global is a global fintech firm specializing in tailored cross-border financial solutions, operating with over 1,700 professionals across 40+ offices and 29+ markets worldwide.

What you will do

• Own cloud security posture and attack surface management across AWS and GCP environments.
• Design and maintain web application firewall (WAF) infrastructure and detection rules.
• Architect network segmentation and isolation strategies, applying zero-trust principles.
• Deliver modern secure remote access solutions with identity-aware access controls.
• Drive security automation and DevSecOps adoption using Infrastructure as Code (Terraform).
• Partner with platform and infrastructure teams to embed security best practices and elevate engineering capabilities.

Requirements

• 5+ years in security or infrastructure engineering with deep cloud security expertise, ideally within FinTech or a similar regulated industry.
• Expert-level experience with AWS and/or GCP security services, including VPCs, security groups, and IAM.
• Proven track record designing and implementing WAF solutions (AWS WAF, Cloud Armor) with custom detection rules.
• Strong experience designing network architectures with proper segmentation, isolation, and fundamentals (firewalls, routing, DNS, TLS, VPNs).
• Extensive experience with Infrastructure as Code (Terraform) and GitOps practices, with proficiency in scripting (Python, Bash).
• Experience implementing or operating SIEM, logging, and security monitoring solutions.

Nice to have

• Experience with zero-trust network architectures, identity-aware access solutions, and modern VPN alternatives (ZTNA, SDP).
• Knowledge of container security and Kubernetes network policies.
• Experience with security orchestration and automated response (SOAR).
• Familiarity with compliance requirements for financial services (PSD2, GDPR, PCI-DSS).
• Relevant certifications (AWS/GCP Security Specialty, CCSP).

Culture & Benefits

• Opportunity to define cloud security architecture at a leading fintech.
• High-impact role with significant technical influence across the organisation.
• Investment in professional development and growth, including an annual conference and training budget.
• Competitive base salary and discretionary performance bonus.
• Inclusive, collaborative culture with a diverse global team.
• Active employee networks including a Women’s Network, LGBTQIA+ Network, and Veterans Network.

Hiring process

• Clean background check and regulatory screening will be required.
• Professional references available upon request.
• Submit your CV/resume in English directly on the careers website.