Cybersecurity & Compliance Engineer

We’re a fast-scaling FinTech, founded by an experienced team that has previously built multi-million Euro companies. Over the past three years, we have established ourselves in a regulated €100bn+ market and are backed by leading founders, senior industry executives, and top-tier global VCs.

You will join a growing team at a pivotal stage. In a regulated industry, security isn't just a "nice to have" - it is our foundation.

We are looking for a Cybersecurity & Compliance Engineer who views security as an engineering challenge, not an administrative task.

This is an engineering role. You aren't here to write policies or manage support tickets. You are here to architect and build the technical controls and monitoring systems that keep us secure and resilient.

As our Cybersecurity & Compliance Engineer, you’ll own the "ground truth" of our security posture. You’ll be responsible for hardening our infrastructure, securing our end-user environment, and ensuring our technical setup meets ISO27001 and DORA standards through automation and real-time monitoring.

You don’t need to be a regulatory expert yet. If you have a strong background in Software Engineering or Security Operations, and you are hungry to learn how to apply those skills to high-stakes FinTech regulation, we’ll provide the roadmap.

Your Key Responsibilities

Infrastructure Security & Monitoring

• Security Monitoring & Observability: Own our security monitoring stack. You’ll build and optimize dashboards that give us deep, real-time visibility into our environment.
• Technical Compliance: Implement technical guardrails and automated evidence collection. You'll make sure our systems are "compliant by design," so we never have to scramble for an audit.
• Vulnerability Management: Proactively identify, triage, and remediate technical gaps in our cloud and system configurations.

System & Endpoint Hardening

• Software Governance: Manage the technical lifecycle of software across the company, ensuring unauthorized or vulnerable tools stay out of our network.
• Identity & Access Management: Build and maintain technical workflows for access control, ensuring we follow the principle of least privilege across all systems.
• Security Orchestration: Leveraging existing tools and automation, ensure all company devices (laptops/cloud servers) are encrypted, patched, and compliant with our security baseline.

• Engineering Background: You have a degree in Computer Science, Software Engineering, or significant experience in Security Operations (SecOps). You think in terms of systems and automation.
• Modern Security Tooling: Proficient in managing cloud-native monitoring, logging, and exposure to endpoint security platforms. You have a proven ability to translate ISO 27001 requirements into technical configurations and automated dashboards
• Code First: You prefer writing a script or configuring a tool to solve a problem rather than doing it manually.
• Regulatory Curiosity: You are genuinely interested in learning how frameworks like ISO27001 and DORAtranslate into technical requirements.
• Sharp Analytical Thinker: You stay organized and calm when monitoring multiple moving parts across a complex infrastructure.
• Language: Fluency in English, German is a benefit.

• A Strategic Learning Path: We’ll help you become an expert in the intersection of Engineering and FinTech Regulation (DORA/ISO) - one of the most valuable niches in the industry.
• Real Ownership: You’ll be the technical guardian of our environment, working alongside founders who've built successful companies before.
• The Package: Competitive remuneration, an amazing office in the center of Cologne, and perks like gym memberships.

Send us your CV and a short note on why you’re interested in moving into a specialized Cybersecurity & Compliance role.

Note: We are staunch believers in equal opportunities and celebrate diversity. Discrimination on grounds of race, religion, gender, sexual orientation, age, or any other factor is against our core principles