Infrastructure Security Engineer (Web3)

TL;DR

Infrastructure Security Engineer (Web3): Securing production infrastructure and containerized environments for a large-scale digital asset platform with an accent on Kubernetes hardening, secure access patterns, and vulnerability management. Focus on integrating security controls into CI/CD pipelines, automating infrastructure security, and ensuring least privilege across the Linux-based production landscape.

Company

A digital asset solution provider natively embedded into the Telegram interface, serving over 100 million user accounts.

What you will do

• Improve the security posture of self-managed Kubernetes clusters and Linux-based production hosts.
• Implement and maintain secure access patterns, including bastion-based access and least-privilege configurations.
• Develop and manage infrastructure vulnerability assessment workflows, including remediation tracking.
• Enforce security controls and guardrails for container and cluster configurations.
• Collaborate with engineering teams to embed security requirements into infrastructure delivery and automation workflows.

Requirements

• Strong understanding of networking fundamentals.
• Solid experience with Linux systems, Docker, and Kubernetes.
• Practical knowledge of CI/CD tools and Infrastructure as Code using GitLab, Ansible, and Terraform.
• Proficiency in scripting with Shell and Python.

Culture & Benefits

• Remote work setup with access to physical hubs in Dubai, Yerevan, London, and Belgrade.
• 20 working days of annual paid vacation plus 11 additional days off.
• 14 days of paid sick leave.
• Compensation for medical expenses and provision of necessary hardware.
• Access to English courses, internal conferences, and corporate events.
• Result-oriented environment with non-bureaucratic management.