Das ist der Job
We’re an EMI‑licensed fintech in a fully cloud‑native AWS environment, we use AI heavily, and we’re growing fast.
Darum lohnt es sich
About The Role
We’re looking for a Security Engineer to own and improve the security of our internal environment — the identities, SaaS apps, endpoints, AI tooling, and networks our employees use every day.
This is a hands‑on senior role: we expect you to design controls, find the gaps, and drive the changes that close them — and to build the automation that makes it scale.
We need someone who can lead technical initiatives independently, influence our security architecture, challenge approaches that no longer fit, and explain it clearly to engineers and leadership.
Your Mission
Detection & Response (SIEM) — our top priority
Own SIEM alerting end-to-end: ship logs from endpoints, IdP, VPN, SaaS, and cloud; write and tune detection rules; cut false positives.
Act as first responder for security incidents — investigate, contain, drive to closure with clear runbooks — and feed recurring issues back into preventive controls.
Identity, Access & SaaS
Administer the IdP (SSO via SAML/OIDC, MFA, conditional access) and run access recertification end-to-end across IdP, SaaS, AWS, and internal tools — scope, evidence, follow-through on revocations. Hunt down over‑permissive and stale access, enforce least privilege and PAM, catch SoD gaps, and make JML and