Senior Cloud Security & Reliability Engineer

# The Role

You will be the owner of security and reliability across our cloud infrastructure, helping to secure, optimize, and scale our cloud environment.

### Key Responsibilities

Cloud Security & Compliance

- Design and enforce security best practices for AWS & Heroku.

- Experience with AWS Security, Management and Governance products (https://aws.amazon.com/products/management-and-governance/, https://aws.amazon.com/products/security/).

- Implement Identity & Access Management (IAM) best practices, ensuring least privilege and secure access policies. 

- Work towards increased compliance with applicable frameworks and regulations (SOC 2, ISO 27001, GDPR).

Security Audits & Threat Management

- Conduct regular security audits, vulnerability scans, and penetration tests.

- Automate patch management and monitor for security exploits.  

- Deploy Security Information and Event Management (SIEM) and threat detection solutions to protect against cyber threats. 

Cloud Cost & Performance Optimization

- Analyze and optimize cloud spend (Heroku dynos, EC2, RDS/Aurora, Lambda).  

- Implement auto-scaling and right-sizing strategies to reduce waste.  

- Optimize database performance (PostgreSQL).

Observability & Reliability Engineering

- Set up monitoring, logging, and alerting for our AWS account.  

- Improve incident response automation and implement SLOs/SLIs.  

- Ensure high availability and scalability of critical services.

- Perform frequent disaster recovery tests for our critical cloud infrastructure components.

Infrastructure as Code

- Experience with Terraform or CloudFormation is a plus for potential IaC adoption in the future.  

## What We're Looking For

- 5+ years of experience in Cloud Security, Site Reliability Engineering (SRE), or DevOps

- Strong experience with AWS security, IAM, and compliance frameworks (SOC 2, ISO 27001, PCI DSS)  

- Expertise in AWS services (EC2, RDS/Aurora PostgreSQL, Lambda, S3, VPC, CloudTrail, CloudWatch, GuardDuty, IAM, Security Hub) 

- Performance tuning & cost optimization experience (AWS EC2, AWS Aurora PostgreSQL) 

- Proficiency in CI/CD security (GitHub Actions, GitLab CI/CD, or similar)

- Strong understanding of penetration testing, vulnerability management, and automated security tooling

- Scripting skills (Python, Bash, Ruby, or similar)  

- Excellent communication skills and ability to work with software engineers and data teams

### Nice to Have  

- Experience with Terraform or CloudFormation

- Certifications (AWS Security Specialty, CISSP, CISM, CEH, or similar)  

- Experience with SIEM, threat detection, and forensic analysis

## Why Join Us?

- A rapidly scaling Fintech startup where your impact is felt immediately.

- Work remotely within Europe or from our office in central London.

- Ownership over security, compliance, and cloud cost strategy.

- Opportunity to build Security & Reliability culture from the ground up.

- Report directly to the CTO.