Security Engineer at Kredete

About the Role

• We are seeking an accomplished Security Engineer to lead our security architecture and protect the integrity of our payment, remittance, and financial systems. In this role, you will define the company’s security strategy, ensure compliance with industry standards (PCI DSS, SOC 2, ISO 27001), and safeguard sensitive financial and customer data.
• You will collaborate closely with product, engineering, DevOps, and compliance teams to embed security-by-design across platforms, applications, and payment infrastructure.

Key Responsibilities

• Define and own the security engineering roadmap aligned with regulatory and payment industry requirements.
• Act as the security authority for fintech products, APIs, and payment integrations.
• Mentor and guide engineering teams on secure coding practices, fraud prevention, and compliance-driven development.
• Design secure, scalable, and resilient architectures for remittance and payment processing systems.
• Lead threat modeling, security design reviews, and risk assessments for new features such as wallets, KYC/AML modules, and cross-border payments.
• Integrate real-time fraud detection and transaction monitoring systems.
• Implement and manage encryption, tokenization, and secure key management for sensitive financial data.
• Oversee the payment security monitoring program, including fraud alerts and suspicious transaction responses.
• Lead incident response for security breaches, ensuring minimal impact to financial operations.
• Partner with SOC, DevOps, and IT to implement SIEM, IDS/IPS, endpoint protection, and fraud monitoring platforms.
• Ensure continuous compliance with PCI DSS, SOC 2, ISO 27001, GDPR, and local financial regulations.
• Support internal and external audits, working directly with compliance and regulators.
• Develop and enforce policies, standards, and security playbooks specific to fintech operations.
• Stay ahead of emerging fintech security threats such as API abuse, account takeover, and payment fraud.
• Champion adoption of DevSecOps practices, embedding automated compliance and security checks into CI/CD pipelines.
• Evaluate and implement security technologies for transaction security, identity verification, and fraud prevention.

Required Qualifications

• 10+ years of experience in security engineering, with at least 3+ years in a principal or lead role within fintech, banking, or payments.
• Proven track record designing and securing payment systems, remittance platforms, or digital wallets.
• Deep understanding of PCI DSS controls, encryption, tokenization, and HSMs.
• Expertise in cloud security (AWS, Azure, GCP) and containerized environments (Docker, Kubernetes).
• Proficiency in API security, identity & access management, fraud prevention systems, and real-time monitoring.
• Hands-on experience with infrastructure-as-code (Terraform, Ansible) and security automation in CI/CD pipelines.

Preferred Qualifications:

• CISSP, CISM, CISA, OSCP, or PCI Professional (PCIP).
• Cloud security certifications such as AWS Security Specialty or GCP Professional Cloud Security Engineer.

Soft Skills:

• Strong leadership and mentoring skills.
• Excellent communication skills with the ability to influence technical and executive stakeholders.
• Ability to balance regulatory compliance with innovative, customer-centric product delivery.

What We Offer

• Exceptional talent is rewarded accordingly, and we’re open to negotiation.
• Additional sign-on bonus for if able to pass the technical screen and start immediately.