SUMMARY
Owns the security posture of the entire stack from Supabase app layer through to AWS infrastructure. First security hire, so must be hands-on, not purely advisory.
CORE RESPONSIBILITIES
- Design and enforce IAM policies, VPC security groups, and least-privilege access on AWS
- Conduct threat modelling and security review of the Supabase app architecture pre- and post-migration
- Implement SAST/DAST tooling and integrate security gates into CI/CD pipelines
- Own vulnerability scanning, patch management, and incident response playbooks
- Ensure compliance with GDPR/SOC2 as applicable; manage secrets (AWS Secrets Manager / Vault)
- Define and maintain pen testing schedule with third-party providers
REQUIREMENTS
- 5+ years in application or cloud security engineering
- Deep AWS security experience (IAM, GuardDuty, Security Hub, WAF)
- Experience securing Node.js / web application stacks
- Hands-on with OWASP Top 10 and remediation
- Familiarity with IaC security scanning (e.g. Checkov, tfsec)
- AWS Security Specialty or CISSP a strong plus
KEY TOOLS
AWS IAM GuardDuty WAF Snyk Vault Terraform OWASP ZAP
Key Skills
Ranked by relevance
Related Jobs
3 roles aligned with this opportunity
Cybersecurity Engineer
2026-06-19
Software Development Engineer
2026-06-19
DevOps Engineer
2026-06-18
- Posted
- May 15, 2026
- Type
- Full-time
- Level
- Associate
- Location
- Luxembourg
- Company
- Cyberr®
Industries
Categories
Related Jobs
3 roles aligned with this opportunity
Cybersecurity Engineer
2026-06-19
Software Development Engineer
2026-06-19
DevOps Engineer
2026-06-18