At a Glance
- Tasks: Implement and operate security controls across multi-cloud environments and on-prem infrastructure.
- Company: Join a global digital asset liquidity provider with a focus on security and innovation.
- Benefits: Remote work, competitive salary, and the chance to make an immediate impact.
- Other info: Work in a small, dynamic team with exposure to cutting-edge trading technology.
- Why this job: Be hands-on in a role that shapes security in a fast-paced digital asset environment.
- Qualifications: 8+ years in security engineering, strong cloud security knowledge, and scripting skills.
The predicted salary is between 80000 - 100000 € per year.
Auros is a global digital asset liquidity provider operating 24/7 across centralised and decentralised markets. We run high-availability, low-latency systems where resilience and risk discipline matter. Security is treated as a core engineering and risk function, with direct engagement from senior leadership.
We're hiring a hands-on principal security engineer to implement and operate security controls across our infrastructure. This is a technical execution role where you'll be writing code, configuring systems, and shipping security improvements, not writing policies or managing people.
You'll work closely with Infrastructure and Engineering teams to harden our cloud environments, secure our CI/CD pipelines, and protect both corporate and production systems. We believe security should enable the business, not obstruct it. You'll design controls that are effective but unobtrusive, security that works in the background without creating friction for engineers or traders.
- Implement and maintain security controls across multi-cloud environments (primarily AWS, with some Azure, GCP and AliCloud) and on-prem infrastructure
- Own IAM strategy and implementation: design and enforce identity, access, and permissions models that are secure, scalable, and practical
- Design and operate key management and custody security controls such as HSMs, secrets management, and secure key handling for trading operations
- Harden CI/CD pipelines (GitLab) and secure the software delivery process
- Configure and operate corporate security tooling (endpoint protection, MDM/Jamf, DLP, identity management)
- Respond to security incidents: triage, investigate, contain, remediate
- Conduct security assessments of infrastructure and applications
- Automate security operations: detection, alerting, and response
- Work with Infrastructure to embed security into cloud provisioning and system configuration
8+ years' hands-on experience in security engineering or security operations
- Strong working knowledge of cloud security controls across multiple providers (AWS and Azure preferred)
- Familiarity with corporate IT security tooling (Jamf, endpoint protection, DLP, SSO/IdP)
- Comfortable in Linux environments and scripting (Python, Bash, or similar)
- Exposure to financial services, crypto, or other regulated environments is a plus but not required
- Direct ownership of security implementation
- A small, technical team where your work has immediate impact
- Exposure to low-latency trading infrastructure and the digital asset space
Principal Security Engineer (Permanent) employer: Auros
At Auros, we pride ourselves on being an exceptional employer that fosters a culture of innovation and collaboration. As a Principal Security Engineer, you'll be part of a small, dynamic team where your contributions directly influence our cutting-edge digital asset liquidity solutions. With a strong emphasis on employee growth, we offer opportunities to enhance your technical skills in a supportive remote environment, ensuring that security not only protects but also empowers our business operations.
StudySmarter Expert Advice🤫
We think this is how you could land Principal Security Engineer (Permanent)
✨Tip Number 1
Network like a pro! Reach out to folks in the industry on LinkedIn or at meetups. A personal connection can often get your foot in the door faster than any application.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repo showcasing your security projects. This gives potential employers a taste of what you can do and sets you apart from the crowd.
✨Tip Number 3
Prepare for interviews by brushing up on technical questions related to cloud security and incident response. Practice explaining your thought process clearly, as communication is key in this role.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who take that extra step!
We think you need these skills to ace Principal Security Engineer (Permanent)
Some tips for your application 🫡
Show Your Technical Skills:Make sure to highlight your hands-on experience in security engineering. We want to see your coding skills and familiarity with cloud environments like AWS and Azure. Don’t just list your skills; give us examples of how you've used them in real-world scenarios.
Tailor Your Application:Take a moment to customise your application for the Principal Security Engineer role. Mention specific projects or experiences that align with our focus on security controls and CI/CD pipelines. This shows us you’re genuinely interested in the position and understand what we do.
Be Clear and Concise:When writing your application, keep it straightforward. Use clear language and avoid jargon unless it's relevant. We appreciate a well-structured application that gets straight to the point without unnecessary fluff.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it gives you a chance to explore more about us and what we stand for!
How to prepare for a job interview at Auros
✨Know Your Tech Inside Out
Make sure you’re well-versed in the specific technologies mentioned in the job description, especially AWS, Azure, and GCP. Brush up on your cloud security controls and be ready to discuss how you've implemented them in past roles.
✨Showcase Your Hands-On Experience
This role is all about technical execution, so be prepared to share concrete examples of your hands-on work. Talk about specific projects where you’ve written code, configured systems, or improved security measures, particularly in CI/CD pipelines.
✨Understand the Business Impact of Security
Demonstrate that you understand how security can enable business operations rather than hinder them. Be ready to discuss how you’ve designed unobtrusive security controls that protect systems while allowing teams to work efficiently.
✨Prepare for Incident Response Scenarios
Since responding to security incidents is part of the role, think through some scenarios you might face. Be ready to explain your approach to triaging, investigating, and remediating security incidents based on your previous experiences.
