Senior Security Engineer - Cloud Security & Security Operations (f/m/d)
At Moss, we give finance professionals the power to automate their day-to-day and make forward-thinking decisions.
Our team and culture make us unique – we're driven by impact and growth, where every one of us strives to learn and excel. Recognised by Sifted's Rising 100 and LinkedIn's Top Startups, we're here to help propel your career and together, make Moss a lasting success.
Responsibilities
- Own and strengthen our Cloud Security posture
- Design and continuously improve Moss security architecture in GCP, including IAM design, organisational policies, logging strategy, and network controls
- Own and evolve our Cloud Security Posture Management setup, prioritising and driving remediation of misconfigurations, identity risks, vulnerabilities, and runtime threats
- Work closely with Platform Engineering to embed scalable and pragmatic security guardrails into our infrastructure
Requirements
- Proven experience (5+ years) in security engineering with deep hands-on expertise in cloud security and security operations
- Strong practical experience securing GCP environments, including IAM, Cloud Audit Logs, organisational policies, and network architecture
- Strong experience securing Kubernetes environments (RBAC, service accounts, Workload Identity, network policies, container risks)
- Experience building and operating SIEM platforms (Datadog preferred; Splunk, Elastic or similar acceptable)
- Experience with Cloud Security Posture Management tools (Wiz preferred) and risk-based remediation workflows
- Experience securing CI/CD pipelines (e.g. GitHub Actions), including identity federation and secret management
- Strong understanding of cloud attack paths, identity risks, and modern infrastructure threats
- Experience working in cloud-native, DevOps-driven environments
- Fluent English language skills, verbal and written