Sumsub is a leading full-cycle verification platform that enables scalable compliance. From identity and business verification to ongoing monitoring, our platform adapts to different risk appetites and market demands, ensuring global compliance. It allows customizing analytics and workflows with a no-code interface.

Over 4,000 clients — including Bitpanda, Wirex, Avis, Bybit, Vodafone, Duolingo, Kaizen Gaming, and TransferGo — trust Sumsub to accelerate growth, prevent fraud, and maintain compliance worldwide.

Now we are looking for a Infrastructure Security Engineer to design, build, and operate security controls as reliable internal services. This role focuses on infrastructure, CI/CD, and cloud security.

You will work closely with Infrastructure, Platform, and Engineering teams to make unsafe behavior harder, noisier, and measurable — without blocking delivery.

This is an engineering-driven role with long-term ownership of security capabilities

What You Will Be Doing:

• Design and implement security controls integrated into CI/CD pipelines

• Build and operate infrastructure security guardrails (Terraform, cloud, Kubernetes)

• Own security tooling as products (architecture, reliability, lifecycle)

• Implement audit logging, change tracking, and security evidence generation

• Design and evolve vulnerability management foundations (inventory, scoping, correlation)

• Define and enforce infrastructure security baselines

• Work with compliance teams to support audits (e.g., PCI DSS) through technical evidence

• Collaborate with SOC and operational teams to ensure controls are usable in practice

About You:

• Strong experience with CI/CD systems (GitHub Actions, GitLab CI, Jenkins, etc.)

• Infrastructure as Code (Terraform or similar)

• Cloud platforms (AWS, GCP, Azure)

• Container and Kubernetes security concepts (Falco, Trivy, etc.)

• Logging, auditability, and change tracking

• Understanding of vulnerability management fundamentals (CVEs, scanners, remediation, validation)

Nice to Have:

• Runtime security and drift detection

• Secret scanning and prevention

• Experience building internal security tooling

• Exposure to compliance frameworks (PCI DSS, SOC 2, ISO 27001)

• Developing experience (Python, Go, etc.)

What We Offer:

• Remote-first, trust-based culture. Work from the place that works best for you. No mandatory office days, no attendance trackers. In some locations, we provide offices or coworking spaces, but the choice is yours.

• True flexibility. We do not fix you to a 9-to-5 schedule. You can adjust your working hours when needed, as long as your day stays productive and in sync with the team.

• Extra time off. Your birthday is a holiday here. Add to that 10 personal days each year, seven sick days without paperwork, and extra time to enjoy Christmas and New Year. Time to rest is part of the deal.

• Work that matters. Our mission is to build a digital world that is secure, accessible and inclusive for everyone. From fighting fraud to making online services easier and safer to use, your work will have a real impact on how people experience trust online.

• Compensation. We offer fair and transparent pay, benchmarked to the market.

• Truly global. We work across continents and time zones, with teammates and customers from all over the world. You will run campaigns that cross borders, cultures, and languages, and see your ideas land worldwide.

• Growth built in. Clear goals, open feedback and personal development plans. We support your progress with learning opportunities and by covering role-specific events, from design conferences to marketing forums.

• Team offsites. Sometimes just Slack is not enough. That is why we meet in person a few times a year. Trips are fully covered, so you can meet, collaborate, and recharge together.

• Getting you set up. We make sure you have access to the tools and hardware you need to do your work well.

• Friendly by design. Our logo is a dog for a reason. We keep things human, open and kind. We welcome individuality, quirks and different perspectives, because that is what makes our work smarter and more fun.

The hiring stages: TA screening -> Hiring Manager Interview -> Final Interview.

Sounds like a great opportunity for your career development? Then go ahead and apply!

We are a global community of innovators, creators, and thinkers, and we believe that diversity fuels our innovation. Sumsub is proud to be an equal opportunity employer, committed to building a diverse and inclusive workforce. We welcome applications from people of all backgrounds, cultures, genders, experiences, abilities and perspectives. Join us in shaping the future inclusively.