Infrastructure Security Engineer

🕒 May 11

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Quidax

Quidax

11 - 50 employees

Founded 2016

₿ Crypto

💳 Fintech

💰 $3M Initial Coin Offering - Quidax on 2021-05

Crypto • Fintech

Quidax is a crypto exchange and digital asset infrastructure platform built for Africa, enabling individuals, businesses, and institutions to buy, sell, stake, and move stablecoins and other cryptocurrencies. It provides instant swaps, order-book trading, a premium OTC desk, APIs and payment gateway (Basqet) for businesses, a stablecoin API for fiat rails, staking and yield products, a launchpad for token listings, and institutional liquidity and settlement solutions — all with a compliance-focused approach and 24/7 support.

📋 Description

• Security Solutions Configuration, Review & Optimization • Within 30 days, the Infrastructure Security Engineer should be able to carry out configuration of various security solutions including network firewalls, Endpoint Detection & Response Solutions, Web Application Firewalls, Cloud Native Application Protection Platforms, Security Incident and Event Management, Security Orchestration Automation and Response Solutions, Identity Provider Solutions and Threat Management Solutions among others • Within 90 days, the Infrastructure Security Engineer should be able to carry out reviews & optimizations on various security solutions in compliance with the established policies • Within 180 days, the Infrastructure Security Engineer should review current security baselines & ensure alignment of all security and technology solutions with the security baselines across all environments (cloud, endpoints, network) • Audits & Compliance Reviews • Within 90 days, the Infrastructure Security Engineer should have adequate understanding of our existing infrastructure security systems and technical controls (how they work, effectiveness & gaps if any) to be able to provide insights during audits & compliance reviews • Within 180 days, the Infrastructure Security Engineer should be able to assume roles within our Information Systems Management framework • Within 180 days, the Infrastructure Security Engineer should be able to work with Governance Risk & Compliance to close audit findings quickly and effectively • Access Control Management & Optimization • Within 30 days, the Infrastructure Security Engineer should have an understanding of our Access Control Policies, Processes & Technologies • Within 30 days, the Infrastructure Security Engineer should be able to take ownership of Access provisioning, decommissioning & access management optimization • Within 90 days, the Infrastructure Security Engineer should have conducted a review of the current access management system, identified gaps and propose recommendations • Vulnerability Management • Within 60 days, establish a consistent vulnerability management process across infrastructure and endpoints • Within 90 days, ensure all critical & high vulnerabilities have clearly defined remediation SLAs • Within 180 days, reduce monthly recurring unremediated vulnerabilities by 40% • Provide clear, actionable vulnerability remediation guidance to Engineering and DevOps teams. • Security Monitoring, Detection & Response • Within 30 days, review and be conversant with existing SIEM architecture • Within 90 days, identify and document all areas of improvement in our security event monitoring • Within 180 days, start implementing all areas of improvement to log aggregation, security event analysis and alerting • Within 90 days, identify new playbooks for automated incident response in the SOAR and document the recommendations • Within 12 months, implement the playbooks for automated incident response recommendations in the SOAR • Continuously improve detection coverage and incident response automation and orchestration across cloud, endpoints, and network layers • Secure Cloud & Network • Within 30 days, review and understand services & configurations across multi-cloud platforms • Within 60 days, be able to administer security policies & security services across multi-cloud platforms • Within 60 days, partner with relevant Engineering teams to ensure security is embedded in infrastructure design and configuration from day one • Security Operations & Automation • Within 30 days, review existing automations, test them out and identify areas of for optimization/improvement • Within 180 days, automate at least 30% of repetitive security operations tasks • Continuously evaluate and implement new tools that improve detection, prevention, or efficiency • Continuously improve security policies and enforcement mechanisms • Cross-Functional Security Enablement • Work closely with Engineering, DevOps, and Product teams to embed security into workflows • Provide hands-on guidance during system design, deployments, and incident response • Promote strong security practices across the company — not just enforce them

🎯 Requirements

• You’ve secured cloud-native environments in a real-world, high-scale setup • You can go from “there’s a problem” to “here’s the fix” to “it’s deployed” without hand-holding • Strong hands-on experience with SIEM, EDR, firewalls, WAFs, vulnerability management tools, Networking concepts (routing, NAT, segmentation, access control), Cloud security (IAM, logging, monitoring, secure configs) • You can break down complex systems into their simple parts and understand how they are built, how they break and what it takes to fix them. • You’re proactive and detail-oriented • You can collaborate with engineers and influence decisions without being the “security police” • You enjoy Cybersecurity and have a passion for learning about new Technologies. • You are committed to continuous development and search out the latest vulnerabilities, attack vectors and security solutions. • Nice-to-Haves: • Experience with implementing security solutions & driving secure processes in fintech, blockchain, or financial systems • Experience writing scripts & automating workflows with technologies like Python, Ansible & Terraform. • Experience with implementing DevSecOps processes and technologies including access control, key management, policy gates e.t.c. • Understanding of blockchain security concepts • Understanding of AI, it’s risks, AI security and AI security solutions • Certifications like CCSP, CEH, CCNP, PCNSE, Security+, AWS

🏖️ Benefits

• Fair Pay + Ownership • Competitive salary based on your skills and experience; annual merit-based reviews to keep your growth visible and rewarded • Growth That’s Real • Annual performance reviews + clear promotion cycles; recognition for great work, from shoutouts to milestone rewards • Personal development fund (courses, books, conferences); study leave so you can keep learning • Work That Works For You • Fully remote forever + flexible working hours • Time Off That Respects Life • Unlimited paid time off + Nigerian national holidays • Parental, sick, compassionate, and life event leave; we show up for you • Connection That Feels Real • Quarterly remote team hangouts + annual offsite; interest-based communities (SIGs) • Regular engagement surveys; your voice matters • Health & life coverage in select locations

Apply Now

Similar Jobs

🕒 December 16, 2025

Talent Safari

1 - 10

🎯 Recruiter

🤝 B2B

👥 HR Tech

Information Security GRC Officer contributing to security objectives for Paystack's global operations. Involves risk management, governance, and compliance within a global organization.

Cloud

Cyber Security