This website uses cookies to ensure you get the best experience.

Iute Group and our selected partners use cookies and similar technologies (together “cookies”) that are necessary to present this website, and to ensure you get the best experience of it. If you consent to it, we will also use cookies for analytics and marketing purposes.

See our Cookie Policy to read more about the cookies we set.

You can withdraw and manage your consent at any time, by clicking “Manage cookies” at the bottom of each website page.

Select which cookies you accept

On this site, we always set cookies that are strictly necessary, meaning they are necessary for the site to function properly.

If you consent to it, we will also set other types of cookies. You can provide or withdraw your consent to the different types of cookies using the toggles below. You can change or withdraw your consent at any time, by clicking the link “Manage Cookies”, which is always available at the bottom of the site.

To learn more about what the different types of cookies do, how your data is used when they are set etc, see our Cookie Policy.

These cookies are necessary to make the site work properly, and are always set when you visit the site.

Vendors Teamtailor

These cookies collect information to help us understand how the site is being used.

Vendors Teamtailor

These cookies are used to make advertising messages more relevant to you. In some cases, they also deliver additional functions on the site.

Vendors Youtube, Linkedin, Google
Skip to main content
Technology, Platform, InfoSec and Architecture · Iute Group HQ, Tallinn, Estonia

Security Engineer

Who we are

Iute Group is a fast-growing fintech company founded in 2008 in Estonia. We operate in Albania, Moldova, North Macedonia, Bulgaria and Ukraine, offering consumer finance, payments, banking, and insurance services. Our mission is to deliver an outstanding personal finance experience – powered by technology and elevated by the human touch.

About the role

We are looking for a Security Engineer to join our Platform Engineering team and help strengthen security practices across the Group.

In this role, you will work closely with development, DevOps, infrastructure, Security Operations Center (SOC) and Information Security teams to build and improve secure systems, controls, automate security processes, and ensure our cloud environments and applications meet modern security and compliance standards.

You will play a key role in embedding security into the software development lifecycle and promoting a security-first culture across the organisation.

In addition, you will actively contribute to defending the organisation against cybersecurity threats and attacks by improving detection capabilities, responding to security incidents, and strengthening preventive and corrective security controls in close cooperation with the Security Operations Center (SOC) and Information Security teams. The role requires a proactive mindset toward threat mitigation, vulnerability management and operational security resilience.

What you’ll do

• Collaborate with development and DevOps teams to integrate security best practices into the software development lifecycle (SDLC)

• Design, develop, and maintain security automation tools and scripts for CI/CD pipelines

• Monitor, identify, and respond to security vulnerabilities and threats in real time

• Design, implement, and manage security controls across AWS, GCP, and Azure cloud environments

• Conduct vulnerability assessments and penetration testing within cloud and containerised environments

• Manage identity and access management (IAM) roles, policies and permissions

• Maintain and improve security policies, standards, and procedures aligned with industry best practices

• Ensure security controls comply with regulatory, audit, and compliance requirements

• Participate in security incident response activities, including investigation, root cause analysis, and remediation

• Develop and enhance monitoring, logging, and alerting capabilities to detect and mitigate threats

• Collaborate with cross-functional teams to continuously improve security posture and processes

• Prepare and present security metrics, reports and dashboards to technical and leadership stakeholders

• Familiarity with Infrastructure as Code (IaC) security and tools

• You will develop modern cloud-native security platforms for vulnerability management, posture management, runtime protection and application security across multi-cloud environments

What we expect from you

• 3–5 years of experience in security engineering, with a strong focus on cloud security and automation.

• Hands-on experience with AWS, GCP, and Azure security services and architectures

• Experience securing CI/CD pipelines and working with automation and scripting languages

• Familiarity with container and orchestration security, including Docker and/or Kubernetes

• Understanding of modern application security practices and tools, including SAST, DAST, SCA and SIEM platforms

• Familiarity with developer-first application security approaches, including automated code, dependency, container and infrastructure scanning integrated into CI/CD pipelines

• Experience with AI-assisted and automated penetration testing, threat simulation, and offensive security tooling to proactively identify and validate security weaknesses

• Understanding of continuous exposure management, attack surface monitoring, and automated remediation workflows

• Experience with secrets management and secure credential handling solutions

• Strong analytical, troubleshooting, and problem-solving skills

• Ability to communicate technical concepts clearly and collaborate effectively across teams

• Bachelor’s degree in Computer Science, Information Security, or a related field

• Fluency in English, both written and spoken

Nice to have

• Knowledge of security frameworks and standards such as ISO 27001, SOC 2, ISO42001 or NIST

• Experience working in fintech, banking, or highly regulated environments

• Relevant certifications such as CISSP, CISM, AWS Security Specialty, GCP Professional Cloud Security Engineer or Azure Security Engineer

What we offer

• The opportunity to shape and improve security practices across an international fintech group

• Work on meaningful fintech products and infrastructure used across multiple markets

• A role in a fast-growing international fintech company

• Opportunities for professional growth and development

• Competitive compensation with share options and/or performance-based bonus

• Health or sports benefits, additional vacation days, and support for life events

• A modern HQ office in the centre of Tallinn

Hiring process

We start with a short screening call. Next, you will meet the hiring manager for an interview to discuss your experience and approach to the role.

Throughout the process, we aim to provide timely feedback and truly appreciate your time and effort.

Please note

This is a full-time, on-site role based at our headquarters in Tallinn, Estonia.

Department
Technology, Platform, InfoSec and Architecture
Role
Security Engineer
Locations
Iute Group HQ, Tallinn, Estonia

Colleagues

Picture of Sergei Laada
Sergei Laada
Engineering Manager Platform, InfoSec and Architecture
Picture of Anton Zolotarjov
Anton Zolotarjov
Senior DevOps Lead

About Iute Group

Iute Group is a fast-growing fintech company, founded in Estonia in 2008 and operating in Albania, Moldova, North Macedonia, and Bulgaria.

We provide consumer finance, payments, banking, and insurance services - all with one clear mission: to make personal finance faster, easier, and more human. Our services are powered by smart technology and elevated by the human touch, ensuring that every experience feels personal, supportive, and intuitive.

Founded in 2008
Co-workers 100
Technology, Platform, InfoSec and Architecture · Iute Group HQ, Tallinn, Estonia

Security Engineer

Loading application form

Already working at Iute Group?

Let’s recruit together and find your next colleague.

Applicant tracking system by Teamtailor