Senior Cloud Security Engineer at Bitpanda

<div class="content-intro"><h4><strong>Who we are </strong></h4> <p>We simplify wealth creation. Founded in 2014 in Vienna, Austria by Eric Demuth, Paul Klanschek and Christian Trummer, we’re here to help people trust themselves enough to build their financial freedom — for now and the future. Our user-friendly, trade-everything platform empowers both first-time investors and seasoned experts to invest in the cryptocurrencies, crypto indices, stocks*, precious metals and commodities* they want — with any sized budget, 24/7. Our global team works across different cultures and time zones, bringing our products to more than 7 million customers, making us one of Europe’s safest and most secure platforms that powers modern investing.</p> <p> </p> <p>Headquartered in Austria but operating across Europe, our products are built by fast-moving, talented, “roll-up-your-sleeves-and-make-it-happen” kind of people. It’s these diverse perspectives and innovative minds operating as ONE TEAM that keep Bitpanda at the cutting edge of our industry. So if you’re someone who thinks big, moves fast and wants to make an impact right from day one, then get ready to join our industry-changing team. Let’s go!</p> <p> </p></div><p><strong>Your Mission</strong></p> <p>We are looking for a <strong>Senior Cloud Security Engineer</strong> with a strong DevSecOps mindset, someone who embeds security into the engineering lifecycle, builds automation that eliminates manual overhead, and works closely with development teams to make secure-by-default the standard. In this role, you will secure our cloud infrastructure, own our CI/CD security posture, and develop tooling that scales with our engineering organisation.</p> <h4> </h4> <h4><strong>What You’ll Do</strong></h4> <ul> <li><strong>Cloud Security Architecture: </strong>Design and maintain secure, highly available infrastructure on AWS. Apply zero-trust principles across our cloud and network perimeter</li> <li><strong>Security Automation & Tooling:</strong> Develop custom automation scripts and tooling (using Python, Go, or Bash) to monitor compliance, eliminate manual operational overhead, and contextualize findings from detection systems.</li> <li><strong>DevSecOps & CI/CD Integration: </strong>Embed automated security controls into CI/CD pipelines using GitOps principles, GitHub Actions/GitLab CI, and Infrastructure as Code (Terraform, AWS CDK). Own the security gates that ship with every deployment.</li> <li><strong>Security Enablement:</strong> Serve as the security SME for engineering, running threat modeling sessions, reviewing architectures, and translating security requirements into development t