Senior Security Engineer

Описание вакансии

At FTMO, we believe that company growth starts with people. We are a team that pushes forward together, supports one another, and celebrates shared achievements. Our environment creates space for talents to grow – individually, as a team, and across the whole company.

In this role, you will leverage your system administration and security skills to design and maintain robust security controls across our cloud environments, networks, and operating systems. Your core mission is to "shift security left," ensuring that top-notch security practices are baked directly into the foundation of our infrastructure. You will team up with our global infrastructure and operations teams to implement security technologies, harden systems, and build out the best infrastructure security practices possible.

What will be your agenda?

• Write and review Infrastructure-as-Code (like Terraform and CloudFormation) to automate secure infrastructure deployments.
• Lock down and harden operating systems, databases, network devices, and container platforms like Kubernetes.
• Design and roll out cloud security controls across GCP, AWS and Azure, handling everything from IAM to encryption.
• Review network firewall configurations, implement segmentation, and monitor traffic to catch security anomalies.
• Wire security tools (like vulnerability scanners) directly into our deployment pipelines for continuous monitoring.
• Manage logging solutions to detect incidents, and jump into blue team exercises and incident response activities.
• Evaluate and reduce supply chain risks tied to third-party libraries, operating systems, and firmware.
• Partner with Security Analysts to assess risks and ensure our infrastructure stays compliant with standards like SOC2, ISO27001, NIST, etc.
• Champion a strong security culture across teams through training and knowledge sharing.

What do you bring to the table?

• A university degree in computer science, computer engineering, or a related engineering discipline.
• 5 to 10 years of relevant tech experience, including 2 to 3 years specifically in security (with a strong focus on security-driven development and automation).
• Hands-on experience in Security Engineering.
• Solid understanding of major security standards, including SOC2, ISO27001/ISO27002, NIST, OWASP, and SANS.
• Comfortable with cloud security concepts in GCP.
• Proficiency in scripting, ideally using Python or Bash.
• A good grasp of the MITRE ATT&CK framework and how to apply it to threat intelligence and incident response.
• Experience with security testing techniques like SAST, DAST, IAST, and pen-testing frameworks.
• The ability to write clear, concise security standards and strategies to guide the team.

What would be nice to have?

• Experience in the financial or FinTech sector.
• Certifications like CISSP, CISA, CEH, or Security+.

Why join the FTMO team?

• We are a Czech fintech that, since 2015, has grown from an idea into a global project. 🚀
• 300+ amazing teammates. We’re a great team who learn from each other every day.🤜🤛
• How do we work? We focus on meaningful work and open communication, while only adopting processes that make our lives easier.
• Prague, Národní třída. Enjoy our modern offices at the Quadrio shopping center, offering beautiful views and excellent accessibility.
• What if I don’t trade? No worries. We’ll show you what our product is all about and introduce you to the basics of trading.
• Free fruit, snacks, and coffee are always within reach in the office.
• How do we promote strong relationships and well-being? Company cottage, team building events, and running club.
• We prefer working from the office. We believe you will feel right at home at our Quadrio Offices.

\The benefits mentioned above apply to on-site employees in our Prague office.*