Senior Security Engineer - Cloud Infrastructure (Fintech)

TL;DR

Senior Security Engineer - Cloud Infrastructure (Fintech): Owning and evolving the security posture of cloud environments across AWS and GCP with an accent on network security, perimeter defence, and attack surface management. Focus on designing, implementing, and maintaining security infrastructure to proactively detect and mitigate threats and embed security best practices into cloud foundations.

Location: Hybrid (4 days in office) in Madrid. Authorisation to work in Spain is required.

Company

hirify.global is a global fintech firm dedicated to empowering businesses to expand internationally through tailored and forward-thinking financial solutions.

What you will do

• Own cloud security posture and attack surface management across AWS and GCP environments.
• Design and maintain web application firewall infrastructure, developing and tuning detection rules.
• Architect network segmentation and isolation strategies across multi-cloud infrastructure.
• Deliver modern secure remote access solutions with identity-aware access controls.
• Drive security automation and DevSecOps adoption using Infrastructure as Code (Terraform).
• Improve team capabilities and cross-functional collaboration on network and cloud security best practices.

Requirements

• 5+ years in security or infrastructure engineering with deep expertise in cloud security, ideally within a regulated industry like FinTech.
• Expert-level experience with AWS and/or GCP security services, including VPCs, security groups, and IAM.
• Proven track record designing and implementing WAF solutions (AWS WAF, Cloud Armor, or similar).
• Strong experience designing network architectures with proper segmentation and isolation patterns.
• Extensive experience with Infrastructure as Code (Terraform preferred) and GitOps practices.
• Proficiency in scripting and automation (Python, Bash, or similar) and solid understanding of network security fundamentals.
• Experience implementing or operating SIEM, logging, and security monitoring solutions.
• English: B2 proficiency required.

Nice to have

• Experience with zero-trust network architectures and identity-aware access solutions.
• Knowledge of container security and Kubernetes network policies.
• Experience with security orchestration and automated response (SOAR).
• Familiarity with compliance requirements for financial services (PSD2, GDPR, PCI-DSS).
• Relevant certifications (AWS/GCP Security Specialty, CCSP, or similar).

Culture & Benefits

• Opportunity to define cloud security architecture at a leading fintech.
• High-impact role with significant technical influence across the organisation.
• Investment in professional development and growth, including an annual conference and training budget.
• Competitive base salary and discretionary performance bonus.
• Inclusive, collaborative culture with a diverse global team and active employee networks (Women’s, LGBTQIA+, and Veterans Networks).