Our client is an international, PCI DSS-certified payment service provider operating in a Software as a Service (SaaS) mode. Leveraging cutting-edge payment technology, they help financial institutions move away from legacy systems, accelerating their time-to-market for innovative products and services.
With a core team in Riga, they manage SaaS service provisioning for global customers, ensuring multi-region cloud installations, 99.98% availability, and compliance with stringent security standards such as PIN Security, EU DORA, SOX, ISO 27001, and 22301. Few organizations in Latvia boast such a high-level IT landscape.
As a Cloud Security Engineer, you’ll play a key role in safeguarding their SaaS services and infrastructure. Working closely with the CISO, security team, and DevOps team, you'll help maintain and enhance security measures, automate processes, and contribute to high availability and compliance standards.
What You Will Do:
- Design, implement, and maintain security solutions: Work with tools like SIEM, PAM, vulnerability management solutions, identity management solutions, and secret management systems to secure infrastructure and ensure compliance.
- Monitor logs and respond to incidents: Perform regular log monitoring and analysis, promptly addressing security alerts and ensuring high availability. Handle incident response when needed (both during and outside of working hours, as part of an on-call rotation).
- Collaborate on professional solutions: Engage in resolving security-related challenges by understanding system requirements and implementing appropriate solutions.
- Maintain and enhance systems: Support system stability through regular maintenance, patching, and updates for security team-managed systems.
- Automate and optimize infrastructure: Use tools like Terraform, Ansible, Kubernetes, and PAM to automate workflows, improve system scalability, and enhance alerting mechanisms.
- Participate in audits and compliance activities: Provide technical evidence for audits and ensure adherence to standards like PCI DSS and ISO 27001.
- Stay updated on security trends: Continuously research emerging threats and evaluate new technologies to strengthen the company’s security posture.
Minimum Requirements (Both Profiles are Eligible):
DevOps Engineer Profile Requirements
- Hands-on experience with Terraform, Ansible, and Docker.
- Strong knowledge of Linux system management and hardening.
- Basic understanding of networking concepts (e.g., firewalls, subnets, DNS).
- Familiarity with cloud platforms like Oracle Cloud, Azure, or AWS.
- Ability to automate security processes using IaC and other tools.
Information Security Profile Requirements
- Proven experience in cybersecurity or information security.
- Knowledge of SIEM tools and vulnerability management solutions.
- Understanding of cryptography, key management, and compliance standards (e.g., PCI DSS).
- Analytical skills for log monitoring and incident response.
- Ability to research and implement security best practices.
Nice to have:
- Kubernetes
- Scripting skills (e.g., Python) for automation.
- Familiarity with DevOps tools like Git and CI/CD pipelines.
- Certifications such as OCSP, CEH, or cloud security credentials.
Their offer:
- A salary range of €2800–4500 gross, negotiable for exceptional candidates.
- Flexibility to work from home 4 days a week, with one in-office team meeting day.
- Support and funding for professional certifications and training.
- A centrally located office with bike/scooter parking.
- Comprehensive health insurance.
- A collaborative and motivated team environment with practical, supportive management.
