Senior Security Engineer

Position Overview

We are looking for a T-shaped Senior Security Engineer with deep expertise in application security and cloud-native infrastructure security. You will work hands‑on across Go services, AWS, Kubernetes/EKS, Istio, CI/CD, and compliance‑driven technical controls to make security part of how we build, deploy, and operate software.

• Own and improve application security across the SDLC, including secure design reviews, threat modeling, security-focused code review, and CI/CD‑integrated SAST, SCA, and secrets scanning.
• Harden our AWS and Kubernetes/EKS environment, including IAM, network segmentation, workload identity, secrets management, admission control, and runtime security controls.
• Secure and improve our Istio service mesh, including mTLS, authorization policies, ingress/egress controls, and service-to-service security patterns.
• Build security guardrails as code, including policy-as-code, paved‑road patterns, reusable templates, and self‑service tooling that helps developers move quickly and safely.
• Improve software supply‑chain security through controls such as image signing, SBOMs, dependency visibility, artifact provenance, and secure build/release practices.
• Drive vulnerability management end to end: triage, exploitability-based prioritization, remediation coordination with SRE and product engineering, and follow-through on penetration test findings.
• Build and operate technical controls that support HIPAA and SOC 2, including access control, encryption, audit logging, evidence automation, and secure handling of sensitive health data.
• Help shape the full lifecycle of security services, from design and deployment to operation, measurement, and continuous improvement.

• 5+ years of experience in security engineering, cloud security, application security, or software engineering with a strong security focus.
• Strong hands‑on application security experience, including threat modeling, secure code review, API security, and OWASP API Top 10 risks.
• Production experience securing AWS and Kubernetes/EKS environments.
• Hands‑on experience with Istio security in production or production‑like environments.
• Strong coding ability in Go or Python. Comfortable building tools, automation, and integrations when needed.
• Experience with CI/CD security and infrastructure as code, such as Terraform, ArgoCD, or Git Ops workflows.
• Experience with Kubernetes policy and networking tools such as Kyverno, OPA, Cilium.
• Ability to translate security, privacy, and compliance requirements into practical technical controls.
• At least one experience working with regulated environments such as HIPAA, SOC 2, or ISO 27001.
• Ownership mindset: can take a project from concept through rollout and operational maturity.
• Strong written and spoken English.

• Supply‑chain security tooling such as Cosign, Sigstore, SBOMs, or image signing.
• Offensive security experience, penetration testing, or bug bounty work.

• Competitive salary package commensurate with experience, plus stock options.
• The equipment you need to do your job.
• 21 days annual leave, plus bank holidays.
• Office in Limassol (Hybrid Work Format) or Remote option for candidates residing outside of Cyprus.

• Think deeper: We understand that in order to grow we need to make all our decisions reality-based and change our opinion based on what we learn. We appreciate data coming in various forms – quantitative and qualitative, feedback from users and colleagues, and strong and weak signals. We treat data as the main source for leveraging insights and expect people at every level to have conversations that start with data.
• Focus on impact: Results and speed matter. When we are competing to become an A‑player in the digital health market, we don’t have the luxury of deliberation. We need to make decisions and changes quickly and swiftly learn from our mistakes. We prioritize what will have the greatest impact and aren’t distracted by anything else.
• Take ownership: We seek to improve all facets of our company even in ways beyond our job description. We take responsibility for our actions and their impact, value and set high expectations for our own work, and are empowered to resolve disagreements and systemic issues.
• Push the limits: We encourage our team to explore new ideas, challenge conventional thinking, and continuously improve work. This mindset can lead to breakthroughs in product development, operational efficiency, and competitiveness. We challenge ideas and seek to understand the reason behind what we do.
• Be a Championship Team: We focus on a common goal and continuous improvement. We hold each other accountable and build trust to deliver our part of the goal.

Department:
Simple Life
Locations:
Europe, Poland, Cyprus, Georgia, Portugal, Serbia, Armenia, Spain
Remote status:
Fully Remote

Employment type:

Full-time
Department:
Engineering