Infrastructure Engineer - Security

About This Role

Slash is seeking an Infrastructure, Security Engineer to be their first dedicated security hire, owning end-to-end security across their fintech platform, from cloud infrastructure to application code. This role involves defining and implementing security practices, hardening infrastructure, reviewing code, and shipping fixes, while ensuring compliance and staying ahead of threats.

Responsibilities

• Own Slash's security posture end-to-end, from threat modeling to incident response
• Harden cloud infrastructure (AWS, Kubernetes, Terraform) with secure configurations and least-privilege access controls
• Implement and maintain security tooling including vulnerability scanning, SIEM, intrusion detection, and secrets management
• Lead security reviews of code, architecture, and third-party integrations
• Own and execute against PCI-DSS, SOC 2, and other compliance frameworks, building actual controls
• Build automated security guardrails into the CI/CD pipeline
• Monitor, investigate, and respond to security events, running incident response when needed
• Partner with engineering to fix vulnerabilities and ship secure code
• Define and iterate on the security roadmap as the company scales

Requirements

• 4+ years of experience in security engineering
• Hands-on infrastructure experience (AWS, Kubernetes, Linux)
• Ability to read and write code, and ship fixes in a production environment
• Experience with security tooling (SIEM, vulnerability scanners, WAFs, secrets management)
• Understanding of modern attack vectors and cloud-native defense strategies
• Experience with compliance frameworks (PCI-DSS, SOC 2) and implementing controls
• Comfortable with ambiguity and building security function from the ground up
• Strong communication skills and cross-functional collaboration
• Ability to get things done and ship quickly

Qualifications

• 4+ years of experience in security engineering, with hands-on infrastructure experience

Skills

* Required skills

Benefits