Security Architecture & Cloud Security

• Design secure, multi-tenant architectures in a multi-account AWS environment ensuring strong client data isolation.
• Develop and enforce cloud and application security policies, standards, and best practices.
• Protect our APIs, dashboards, internal services, and core databases like MongoDB and Redis.
• Implement automated security controls and scalable monitoring systems using AWS CloudTrail, CloudWatch, GuardDuty, and more.

CI/CD & Credential Management

• Secure CI/CD pipelines by embedding security testing and automated vulnerability scanning (SAST & DAST).
• Replace static AWS access keys with modern authentication methods like SSO and OpenID Connect.
• Manage secrets and credentials using tools such as Keeper and recommend secure access control patterns.

Monitoring, Auditing & Incident Response

•  Perform regular security audits, risk assessments, and lead incident response initiatives.
• Continuously monitor security posture and respond to threats and vulnerabilities in real-time.

Cross-Functional Collaboration

• Work with full stack teams to secure client-facing products and internal systems.
• Communicate strategies, fi ndings, and risks eff ectively to both technical teams and executive stakeholders.
• Continuous Improvement & Training
• Develop and deliver ongoing security training programs for developers and infrastructure teams.
• Host security workshops, and produce guides and best practices to build a security-first culture.
• Create feedback loops and assess new vulnerabilities or threats to adapt security controls accordingly.

Compliance & Future-Proofing

• Align security posture with NIST, ISO 27001, or other relevant frameworks, even in absence of formal regulation. (OPTIONAL)
• Conduct gap analyses and implement scalable, adaptable security practices for future business needs.
• Proactively assess and adapt to upcoming compliance mandates and regulatory environments.

• Proven experience in cloud security, especially multi-account AWS environments.
• Hands-on knowledge of CI/CD security, credential management, and data protection strategies.
• Expertise in SSO, OpenID Connect, vulnerability scanning tools (SAST & DAST), and secure API design.
• Strong scripting or programming abilities to automate tasks and integrate tooling.
• Excellent communicator with a balance of technical depth and strategic vision.
• A collaborative leader who thrives on cross-team impact and continuous improvement.

• Deep knowledge of AWS IAM, CloudTrail, CloudWatch, GuardDuty, AWS Organizations.
• Experience with vulnerability scanners, pen testing tools, and secure development practices.
• Familiarity with Keeper Securities or similar enterprise credential management tools.
• Strong background in risk management, continuous monitoring, and incident response workflows.

• CISSP – Certified Information Systems Security Professional
• AWS Certifi ed Security – Specialty
• CISM or CRISC
•  OSCP, CEH, or GIAC Security Essentials.

• Be part of a fast-growing, innovative company at the forefront of proprietary trading
  technology.
• Collaborate with a passionate and talented team dedicated to making an impact.
• Enjoy opportunities for professional growth and development in a dynamic industry.
• Flexible and inclusive work environment. The position is fully remote.

If you are a passionate Senior DevSecOps & Security Engineer, we invite you to apply and be a key contributor to our exciting journey!

Apply to career@axcera.io