Senior SRE & Security Engineer
2 days ago
Barcelona
ph3About Us /h3 pAlmost every single thing that you eat, wear, or use is imported or exported. Freight quite literally moves the world. And we’re helping it move even better. /p pFreightos (Nasdaq: CRGO) is the global rate management, booking and payment platform for the trillion-dollar freight industry. Hundreds of airlines, trucking companies, ocean liners, and thousands of importers and exporters use our platform to move goods around the world faster and more efficiently. This matters. Efficient freight ultimately makes things cost a little bit less when you buy them in the store. /p pAs the leading global freight booking platform for a massive industry, we’ve been crushing it with double-digit growth, year after year, supporting well over one million shipments every year. /p h3About The Role /h3 pWe are looking for a hybrid powerhouse: a Senior SRE and Security Engineer. /p pIn this role, you will be the "Ghostbuster" of our systems, an elite specialist who ensures our platform is not only lightning-fast and reliable, but also hardened against any digital threat. You are the kind of person who locks every back door behind you while keeping the gate always open for customers worldwide. /p h3Responsibilities /h3 ulliLead security architecture and design reviews to ensure new systems and platforms meet security, reliability, and scalability requirements. /li liDevelop, implement, and enforce technical security standards, secure baseline configurations, and infrastructure hardening guidelines. /li liOwn the reliability, availability, performance, and security of production systems across the organization. /li liDesign, implement, and optimize secure and scalable CI/CD pipelines, integrating security practices throughout the SDLC. /li liBuild and maintain automation tools and operational processes to improve deployment efficiency, system stability, and security posture. /li liEnhance security and observability by implementing and managing monitoring, logging, alerting, and SIEM solutions across distributed systems. /li liLead and participate in incident response activities, including threat monitoring, on-call support, and continuous improvement of operational readiness processes. /li liConduct security assessments, vulnerability management, and compliance audits to identify and remediate risks. /li liPromote a security-first engineering culture by mentoring teams on secure coding, infrastructure, and deployment best practices. /li liStay current with emerging threats, vulnerabilities, attack vectors, and industry best practices, and proactively integrate improvements into engineering and security processes. /li liParticipate in the on-call rotation to provide 24x7 support (maximum 72 days per year). Don’t worry, we’ll keep the coffee flowing. /li /ul h3Basic Requirements /h3 ulli5+ years of experience in DevOps and Security Engineering, with a strong focus on cloud security, infrastructure hardening, and application security. /li liHands-on experience securing cloud environments in AWS and GCP, including Infrastructure as Code (IaC) using tools such as Terraform and Ansible. /li liExperienced in AI security best practice. /li liProven experience managing and supporting large-scale, high-availability, and distributed production systems. /li liStrong experience integrating security controls and automated validation into CI/CD pipelines using platforms such as Jenkins and Bitbucket. /li liDeep understanding of application and infrastructure security practices, including SAST, DAST, SCA, secret scanning, and vulnerability management. /li liFamiliarity with industry security and compliance frameworks such as CIS, NIST, ISO 27001, and SOC 2. /li liStrong scripting and automation skills using Python and Bash to streamline operational and security processes. /li liExperience implementing Zero Trust security principles, identity and access management (IAM), and secrets management solutions. /li liHands-on experience with AWS and GCP security services such as GuardDuty, Security Command Center (SCC), Shield, and CloudTrail, as well as SIEM and observability platforms like Elastic Stack. /li liStrong troubleshooting and analytical skills in network security, encryption, authentication mechanisms, and secure system design. /li /ul h3Preferred Qualifications /h3 ulliCertified AWS and GCP Architects. /li /ul h3Why Freightos is the Perfect Runway for Your Career! /h3 ulliWe genuinely value work-life balance! We work hybrid, allowing you to enjoy quiet days at home, free from traffic, with in-office days, to meet your fabulous team face-to-face just 5 days a month. /li liWe believe that employees who get better make us all better. We strive for professional development and continuous learning. Alongside career support and guidance, you’ll receive an annual training budget for personal and professional development. /li liWe don’t just offer jobs—we offer a stake in something bigger. As part of Freightos, you’ll be eligible to receive equity incentive grants that vest over time, aligning your success with the company’s long-term growth. The more we build together, the more you benefit. /li liA multicultural global team makes global freight easier. You’ll work with people from around the world, gain new perspectives, and experience diverse ways of thinking—fun and eye-opening! /li liSome cool perks such as Private Health Insurance, Ticket Restaurant, and Flexible Remuneration options for nursery, transport, and restaurant vouchers. /li liFlexible schedule intensive working hours on Fridays so that you can enjoy a longer weekend :) /li liOur office in Torre Glories is located in the center of the tech HUB in Barcelona and has stunning city views. We organize events and gatherings throughout the year to keep the team connected and energized. /li /ul pWebCargo by Freightos is an equal opportunity employer, committed to treating all potential employees fairly and ensuring equal opportunities for everyone. /p /p #J-18808-Ljbffr