At Mangopay, our mission is to power the payment infrastructure and payment operations of the world's biggest and most exciting marketplaces & platforms.

We provide marketplaces and platforms with powerful modular payment and regulatory solutions. Since 2013, we have enabled the success of some of the biggest names in e-commerce, retail, and cutting-edge platforms such as Vinted, Rakuten, Chrono24, La Redoute, Wallapop and over 2,500+ more.

Our team of 400+ is spread across Europe, with offices in Berlin, Dublin, Luxembourg, London, Madrid, Paris, and Warsaw. In an environment where marketplaces and fintech ventures are thriving, we're actively seeking exceptional individuals to tackle the challenges in our field and contribute to our growth. Our commitment to diversity is unwavering, and we are dedicated to promoting employee well-being, inclusivity, and equal opportunities. Joining Mangopay means you’ll be part of a dynamic, flexible, and rapidly growing team.

Job Description

As a Senior Security Operations Engineer, you will be at the forefront of securing our AWS infrastructure and applications through hands-on technical work, with a specific focus on Kubernetes-based environments. Your role will involve architecting, implementing, and managing security controls, conducting penetration tests to uncover vulnerabilities, and collaborating closely with development teams to remediate findings. This is a unique opportunity for a technically proficient individual to make a significant impact on our security posture in the cloud and Kubernetes ecosystem.

Key Responsibilities:

• Architect, implement, and manage advanced security controls in AWS, including but not limited to AWS network firewalls, DDoS protection, ELB, VPC zoning, KMS deployment, and application controls within Kubernetes environments.
• Deploy and configure security tools such as Netskope for CASB functionality, Inspector for vulnerability assessment, and GuardDuty for threat detection.
• Advanced IAM / PAM management experience and deploying RBAC strategies in cloud environment
• Conduct hands-on penetration tests and vulnerability assessments of AWS infrastructure, Kubernetes clusters (EKS), and Fargate workloads, utilizing tools and techniques to identify security weaknesses.
• Review golden images and ensure hardening security practice (limitation of attacks surface and vulnerabilities exposure)
• Collaborate closely with development teams to prioritize and remediate security findings, integrating security into the CI/CD pipeline and application controls within Kubernetes.
• Monitor AWS environments and Kubernetes clusters for security incidents and anomalies, utilizing native AWS tools, Kubernetes auditing, and third-party solutions to detect and respond to threats.
• Automate security tasks and workflows using IAC (Terraform, Giltab), AWS Lambda, Kubernetes-native tooling, and scripting languages to improve efficiency and scalability.
• Stay up-to-date on emerging threats and security best practices, researching and implementing innovative solutions to enhance our security posture within AWS and Kubernetes.
• Mentor and provide technical guidance to junior members of the security operations team.

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or related field.
• 5-7 years of hands-on experience in security operations with a strong focus on AWS, Kubernetes (EKS), and Fargate.
• Deep understanding of AWS security services and features, Kubernetes architecture, and container security principles.
• Extensive hands-on experience with security tooling such as Netskope, Inspector, GuardDuty, and Terraform.
• Proven track record of conducting penetration tests and vulnerability assessments in AWS and Kubernetes environments, utilizing tools such as Trivy, Kali Linux, Metasploit, and Burp Suite.
• Strong scripting and automation skills, with proficiency in Python, Bash, or similar languages.
• Relevant certifications such as AWS Certified Security - Specialty, Kubernetes certifications, OSCP, or CISSP are highly desirable.
• Excellent communication skills and the ability to effectively collaborate with cross-functional teams.

Recruitment process

• HR Call
• 1st Interview with our Expert SOC Engineer
• 2nd interview with our Application Security Engineer
• Final interview with our CISO

Interested in this position? Apply without a second thought!

For us, applications are all very welcome. Our differences are our wealth: we are committed to promote and embody all shades of diversity for a more inclusive and equitable society

We care about equal employment opportunities, so all qualified applicants will receive equal consideration regardless of their race, colour, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status.