Senior Security Engineer

Join Colibrix One – Innovating the Future of Payments

At Colibrix One*, we’re building advanced, AI-powered payment technologies that support Payment Service Providers (PSPs), Electronic Money Institutions (EMIs), and neobanks across the EU and the UK. As a fully licensed EMI (FCA reference number 927920) and a Principal Member of Mastercard, we offer real-world financial solutions that include:

• Global card processing
• Digital wallet infrastructure
• Cross-border merchant accounts
• Alternative payment methods (APMs)
• Corporate accounts for legal entities

We’re a fast-growing team with a passion for innovation, security, and scalability. Our culture values curiosity, collaboration, and impact - and we’re looking for talented professionals who are ready to shape the future of fintech.

At Colibrix One, your work directly powers the digital economy. If you're eager to solve meaningful challenges and build with purpose, we’d love to hear from you.

We're looking for a skilled Senior Security Engineer to design and implement security solutions, improve detection and response capabilities, and support secure infrastructure at scale. You'll work closely with engineering teams to embed security into development and operations, manage vulnerabilities, and contribute to cloud and application security initiatives.

Responsibilities

• Develop and enforce security standards: IAM, access control, data protection.
• Assess cybersecurity risks in the platforms and products.
• Ensure cloud & infrastructure security: AWS, Kubernetes, WAF, IPS.
• Harden networks and integrations: API gateways, secure configs, monitoring.
• Implement DevSecOps practices: sSDLC, security requirements, CI/CD pipelines.
• Conduct code security testing: SAST, DAST, dependency scanning.
• Manage patch & vulnerability lifecycle: scanning, prioritization, remediation.
• Oversee privileged access management: least privilege, session monitoring.
• Support security in system integrations: API security, token management.
• Operate and develop SIEM: log collection, rule tuning, dashboards.
• Participate in incident response: detection, containment, root cause.
• Collaborate on penetration tests: coordinate, fix findings, validate.
• Perform risk & resilience assessments: threat modeling, BCP/DR validation.
• Maintain compliance alignment: PCI DSS, DORA, SWIFT, ISO 27001, etc.
• Operate endpoint protection (optional): MDM, A/V, XDR.

Requirements

• Proven experience in building compliance processes and preparing for external audits.
• Solid understanding of cloud security (AWS, Kubernetes, Terraform).
• Practical experience in DevSecOps and sSDLC tooling and adoption in pipelines.
• Application Security proficiency.
• Experience in incident response and SOC/SIEM operations.
• Proficiency in risk management and business continuity planning.
• Knowledge of PCI DSS, ISO 27001, NIST, GDPR, DORA.

Nice to have

• Experience in fintech or banking.
• Participation in certification projects (PCI DSS, ISO, SOC 2).

Relevant certifications: CISSP, AWS Security Specialty. OSCP/E.

What We Offer:

• Opportunity to shape the security landscape of an innovative fintech company
• Collaborative, mission-driven environment with a focus on impact
• Competitive salary and benefits package
• Flexible/remote work options
• Continuous learning and development opportunity

* This position is offered within the COLIBRIX ONE. Employment will be under the appropriate legal entity based on the role and location.