Juicyway is hiring a Senior Security Engineer, Infrastructure Security

Role Overview

As Senior Security Engineer, Infrastructure Security, you will be responsible for safeguarding the foundational systems that power a cross-border financial platform. Your work will span from hardware to distributed services, ensuring robust protection across multi-cloud environments, containerized workloads, and automated deployment pipelines—all while defending against advanced threats and internal risks.

Key Responsibilities

• Architect and implement security measures across all layers of the technology stack, including physical infrastructure, operating systems, Kubernetes clusters, networking, and CI/CD systems, with threat models that include both external attackers and insider risks
• Strengthen multi-cloud environments through network segmentation, encryption at checkpoints, secure secret management, and reliable machine identity systems
• Defend API services from known attack patterns and anticipate defenses against novel, unnamed threats
• Secure and monitor devices used by a globally distributed engineering team, combining endpoint protection with scalable identity and access management
• Collaborate with development teams to integrate security directly into product delivery workflows, ensuring protections are built in by design
• Lead compliance initiatives including PCI DSS, SOC 1, and SOC 2 audits, working with external assessors to achieve not just passing grades but genuine alignment with security principles
• Adapt security practices for emerging infrastructure workloads, combining specialized knowledge with broad technical fluency
• Help cultivate a security-first mindset across engineering by enabling secure decisions to become the natural choice

Required Qualifications

• Demonstrated expertise in cloud security, particularly within AWS and/or Azure, including multi-cloud networking, system hardening, and platform-agnostic design
• Proven track record securing Kubernetes, container orchestration platforms, and service mesh architectures
• Experience managing secrets, IAM systems, machine identities, and fine-grained access controls at scale
• Hands-on involvement with compliance standards such as PCI DSS, SOC 1, and SOC 2
• Strong analytical abilities and the capacity to assess risk in complex, distributed systems
• Clear, precise communication skills when working with both technical and non-technical collaborators

Preferred Qualifications

• Experience protecting systems involving cryptocurrency or digital assets
• Background in financial services or other regulated sectors
• Familiarity with endpoint security tools and managing devices across a decentralized workforce

Technology Environment

AWS, Azure, Kubernetes, service meshes, CI/CD pipelines, IAM, secret management, machine identity, network isolation, checkpoint encryption, PCI DSS, SOC 1, SOC 2

Compensation & Work Environment

• Competitive salary and meaningful equity in an early-stage organization
• Full flexibility in work hours, location, and personal productivity methods
• Join a technical culture that values security as a core engineering principle and actively incorporates security insights into decision-making

Company Values

• Focus on high-impact outcomes over routine improvements
• Build foundational systems for next-generation financial technology
• Foster a security culture that goes beyond policies and checklists
• Replace outdated models rather than iterate on them
• Recognize that security is the cornerstone of the entire mission
• Make secure behavior intuitive and automatic across teams