Search...

Security Engineer

Vivid logo
Vivid

Vivid offers an all-in-one financial platform for both businesses and individuals, combining banking services with investment opportunities. It provides business accounts with features like high-interest rates, cashback, invoicing, and payment solutions, targeting freelancers, startups, and companies. It also offers personal accounts with options to invest in stocks, ETFs, and crypto.

Luxembourg, LUX
About Vivid

Vivid offers a range of financial services for both personal and business use. For businesses, it provides accounts, interest accounts, international transfers, cards, cashback, payment solutions, invoicing, bookkeeping, integrations, and business travel services. It also features a Crypto Earn account. For personal users, Vivid offers accounts, payments, cards, investment options in stocks, ETFs, and crypto, as well as rewards, interest rates, and various pricing plans like Prime. The company operates through several entities: Vivid Money S.A. in Luxembourg, authorized as an electronic money institution; Vivid Money B.V. in the Netherlands, licensed as an Investment Firm and Crypto Asset Service Provider; Vivid Digital S.r.l. in Italy, a registered Virtual Asset Service Provider; and Vivid Money GmbH in Germany. These entities provide specific services like payment services, investment and crypto services, and digital asset services to customers in various jurisdictions.

View jobs by Vivid

Skills

About the Role

You will own and improve the security of the internal environment covering identities, SaaS apps, endpoints, AI tooling, and networks used every day. This is a hands-on senior role where you design controls, find gaps, and drive the changes that close them while building automation that scales. You'll lead technical initiatives independently, influence security architecture, challenge outdated approaches, and clearly explain security topics to engineers and leadership.

Requirements

  • 5+ years in security operations, corporate/IT security, or endpoint engineering
  • Strong with a SIEM (Splunk, Elastic, Panther, Sumo Logic) including detection engineering and incident response
  • Experience with an identity provider (Okta, Entra ID, Google Workspace), access recertification, and least-privilege / PAM
  • Working knowledge of endpoint security (MDM, XDR/EDR/AV) and email / phishing defense
  • Practical experience securing how a company uses AI internally including shadow AI discovery, DLP for AI tools, and controls for AI assistants and agents
  • Strong scripting and automation skills building tooling against APIs
  • Track record of driving improvements end-to-end and leading initiatives with little oversight
  • Clear written and spoken English for engineers and leadership

Responsibilities

  • Own SIEM alerting end-to-end: ship logs from endpoints, IdP, VPN, SaaS, and cloud
  • Write and tune detection rules and cut false positives
  • Act as first responder for security incidents and investigate, contain, and drive to closure with clear runbooks
  • Feed recurring issues back into preventive controls
  • Administer the IdP (SSO via SAML/OIDC, MFA, conditional access)
  • Run access recertification end-to-end across IdP, SaaS, AWS, and internal tools
  • Hunt down over-permissive and stale access, enforce least privilege and PAM
  • Catch SoD gaps and make JML and third-party access work in practice
  • Improve SaaS security posture for Google/Microsoft, Slack, GitHub, and others
  • Apply DLP controls to limit data leakage
  • Keep the endpoint stack healthy and well-tuned including MDM, XDR/AV, device-compliance checks for VPN/ZTNA
  • Define posture requirements such as disk encryption, EDR presence, and OS version with automated remediation
  • Defend against phishing and spoofing with secure email gateway rules and DMARC/SPF/DKIM
  • Run phishing simulations and security awareness training and act on results
  • Build internal tooling and automate repetitive operations
  • Own the roadmap for security areas and lead initiatives independently

Benefits

  • Hybrid model in Limassol office or fully remote outside office locations
  • Relocation support to Cyprus (visa, package) when needed
  • Learning & development budget
  • Fully paid vacation and sick leave
  • Sports compensation