Security Engineer
Role details
Job location
Tech stack
Job description
environments Investigate incidents, perform root cause analysis (RCA), and implement remediation Manage identity and access controls (Active Directory, RBAC, MFA, PAM) Conduct vulnerability assessments and track remediation across servers and applications Integrate security controls into CI/CD pipelines (DevSecOps practices) Implement and maintain security policies, standards, and hardening guidelines Perform patching, compliance checks, and internal security audits Collaborate with infrastructure, DevOps, and application teams Maintain security documentation and support change/release processes Zero Trust and segmentation projects DevOps teams within our client, use Scrum and Continuous Delivery Engineering Practices. This means we develop, secure, automate, test, deploy, monitor, and decommission systems in an integrated way. In this role, you directly influence our client's operational reliability and security posture. You will collaborate closely with enthusiastic, highly skilled
Requirements
colleagues from our client Hubs in Romania and Amsterdam. You will work on externally hosted (private cloud) infrastructure environments for Financial Markets - a fast-paced, complex, and continuously evolving area where quality and resilience are critical. Hybrid work is part of the role: a mix of focused remote work and collaborative in-office sessions. You will stay up to date with the latest Security tooling, infrastructure trends, cloud security practices, and regulatory requirements. You are a skilled, analytical, and security-focused Security Engineer. You understand infrastructure, automation, and security engineering. You also fully support our client's risk and security processes - since security is part of our DNA. Requirements As a Security Engineer, you need: Experience with infrastructure hardening, patching, configuration management, and compliance Experience securing (data centre) infrastructure, containers, and workloads Hands-on with vulnerability management, pentesting processes, remediation, and security monitoring Familiarity with identity & access controls, PAM, secrets management Experience with monitoring, alerting and logging systems Experience working in complex, highly regulated IT environments Scripting skills (Python, Bash, PowerShell or similar) are a strong advantage Security tools: SIEM (Splunk, QRadar, ELK), EDR solutions Network security fundamentals (firewalls, IDS/IPS, VPN, segmentation) OS security: Windows/Linux hardening and patch management Experience performing risk/security procedures (pentesting support, vulnerability remediation, compliance reporting, PAM, DR) Darktrace rollout and network security enhancements Excellent written and verbal communication skills in English Knowledge of networking security (firewalls, routing, segmentation) Experience designing secure data center or hybrid architectures Monitoring & obs...eig.: Zabbix, Grafana, Loki, Prometheus, Alertmanager, Alloy Container security (Docker, Kubernetes) IaC: Ansible, Terraform Security certifications (e.g., CISSP, CISM, Security+, CCSP, CEH) Hybrid working for balance between focus and collaboration J-18808-Ljbffr