
Bitpanda · Vienna
WHO WE ARE We simplify wealth creation. Founded in 2014 in Vienna, Austria by Eric Demuth, Paul Klanschek and Christian Trummer, we’re here to help people tru...
We simplify wealth creation. Founded in 2014 in Vienna, Austria by Eric Demuth, Paul Klanschek and Christian Trummer, we’re here
to help people trust themselves enough to build their financial freedom — for now and the future. Our user-friendly,
trade-everything platform empowers both first-time investors and seasoned experts to invest in the cryptocurrencies, crypto
indices, stocks*, precious metals and commodities* they want — with any sized budget, 24/7. Our global team works across different
cultures and time zones, bringing our products to more than 7 million customers, making us one of Europe’s safest and most secure
platforms that powers modern investing.
Headquartered in Austria but operating across Europe, our products are built by fast-moving, talented,
“roll-up-your-sleeves-and-make-it-happen” kind of people. It’s these diverse perspectives and innovative minds operating as ONE
TEAM that keep Bitpanda at the cutting edge of our industry. So if you’re someone who thinks big, moves fast and wants to make an
impact right from day one, then get ready to join our industry-changing team. Let’s go!
Your mission
Millions of customers trust Bitpanda to protect their money, identities and digital assets. As a Senior Cyber Security Engineer,
you'll play a critical role in staying ahead of evolving threats by building the capabilities that detect attacks, respond to
incidents and continuously strengthen our security posture.
You'll combine deep technical expertise with engineering excellence to evolve our security operations, drive automation at scale
and partner across the business to embed security into everything we build. Your work will directly shape how Bitpanda protects
its customers today; and how it stays resilient tomorrow.
high-fidelity detections mapped to real-world attacker techniques while continuously improving coverage, reducing noise and
raising the maturity of our SOC.
threats across AWS, Elastic and Datadog, refine response playbooks, and turn every incident into lasting improvements to our
security capabilities.
SOAR, APIs and custom tooling, reducing manual effort while increasing speed, consistency and resilience across security
operations.
environment, partner with engineering teams to proactively eliminate risk, and support compliance initiatives including ISO
27001, PCI DSS and DORA.
architectural decisions, champion security best practices and help build a security-first culture across Bitpanda.
SIEM, digital forensics and scripting.
workflows and improving security processes that deliver measurable outcomes.
network security, IAM and security monitoring. Experience with Elastic Security, ES|QL and KQL is highly desirable.
initiatives from idea through implementation.
across engineering to build secure systems at scale.
work, with an additional 25 days per year to work from a city or country of your choice.
including participation in our stock option plan.
them through OpenUP.
rest, reset, and recharge, available once you’ve been with us for 6 months.
online courses at your own pace.
travel.
bond with your new addition to the family.
lunches and snacks to keep you fueled and focused all day long.
Bitpanda.
worldwide, fostering fun, connection, and celebration
.…and even more location-specific benefits designed to make life at Bitpanda even more rewarding wherever you are.
Above all, you will have the opportunity to learn and grow as part of Bitpanda’s incredible journey towards being Europe’s future
#1 investment platform.
BITPANDA IS COMMITTED TO FOSTERING A FAIR AND EQUAL ENVIRONMENT BASED ON TRUST AND MUTUAL RESPECT. WE BELIEVE THAT A DIVERSE AND
INCLUSIVE WORKPLACE IS PARAMOUNT TO OUR SUCCESS AND WE ARE COMMITTED TO BUILDING A TEAM THAT REPRESENTS A WIDE VARIETY OF
POLICY APPLY TO TEAMS WITH SHIFT SCHEDULES OR FOR FOLKS WHOSE ROLES REQUIRE THEM TO BE IN-OFFICE (THINK: WORKPLACES TEAM OR IT).
WHO WE ARE We simplify wealth creation. Founded in 2014 in Vienna, Austria by Eric Demuth, Paul Klanschek and Christian Trummer, we’re here to help people trust themselves enough to build their financial freedom — for now and the future. Our user-friendly, trade-everything platform empowers both first-time investors and seasoned experts to invest in the cryptocurrencies, crypto indices, stocks*, precious metals and commodities* they want — with any sized budget, 24/7. Our global team works across different cultures and time zones, bringing our products to more than 7 million customers, making us one of Europe’s safest and most secure platforms that powers modern investing. Headquartered in Austria but operating across Europe, our products are built by fast-moving, talented, “roll-up-your-sleeves-and-make-it-happen” kind of people. It’s these diverse perspectives and innovative minds operating as ONE TEAM that keep Bitpanda at the cutting edge of our industry. So if you’re someone who thinks big, moves fast and wants to make an impact right from day one, then get ready to join our industry-changing team. Let’s go! Your mission Join Bitpanda as a Senior DevOps Engineer and take a leading role in shaping the next generation of our high-performance, cloud-native infrastructure that powers the future of digital finance. As a senior member of the team, you will drive architectural decisions, mentor and guide junior engineers, and ensure our platforms remain secure, scalable, and resilient. You’ll work with a motivated group of highly skilled engineers, contributing your experience while continuing to grow in a cutting-edge, fast-moving environment. What You’ll Do * Design, develop, and evolve our AWS-based infrastructure using best-in-class tooling, including Terraform and ArgoCD, leading the operation and optimisation of our container orchestration platforms, with a focus on multi-cluster networking and service-to-service communication. * Take ownership of our cross-cluster Istio service mesh—implementing policies, improving traffic management, and enhancing mesh-level networking performance and security. * Take ownership of the performance and scaling of either our Confluent Kafka messaging deployments proactively identifying bottlenecks, improving configurations, and collaborating with engineering teams to tune applications. * Monitor, optimise, and automate systems to ensure high availability, strong security posture, and superior performance using Datadog, Opsgenie, and AI-powered tooling. * Build scalable, robust solutions for complex technical challenges, ensuring infrastructure design aligns with best practices and long-term platform goals. * Mentor junior and mid-level engineers, promote engineering excellence, and contribute to team knowledge sharing and process improvements. Who You Are * 5+ years of hands-on experience building and managing AWS infrastructure (EC2, VPC, IAM, RDS, KMS, and related services). * Strong expertise in Docker, Kubernetes, and Infrastructure as Code (Terraform/CloudFormation). * 3+ years of hands-on experience building, managing, and optimizing either cluster-level Kafka deployments (Confluent preferred) or cloud relational/NoSQL database infrastructure in AWS, with a strong understanding of underlying engine mechanics and performance tuning. * Advanced understanding of cloud networking, including routing, load balancing, VPC design, hybrid connectivity, and service-mesh-based networking - familiarity with multi-cluster service mesh (Istio) and related capabilities is preferred * Proficiency in CI/CD systems, with deep experience in GitLab CI/CD and working knowledge of ArgoCD. * Proven experience deploying, maintaining, and scaling critical cloud infrastructure components in production environments. ** We offer a comprehensive relocation package to support candidates who are moving to join our team. Our goal is to make your transition as smooth as possible, and we provide assistance throughout the whole process. WHAT’S IN IT FOR YOU * Flexibility to work where you thrive – Enjoy the freedom of our Hybrid working model, combining onsite collaboration and remote work, with an additional 25 days per year to work from a city or country of your choice. * Reward for your impact – Receive a competitive total compensation package aligned with Bitpanda’s pay-for-impact policy, including participation in our stock option plan. * Support for your mental wellbeing – Access confidential coaching, counselling, and mental health resources whenever you need them through OpenUP. * Time to recharge – On top of your standard annual leave, Prioritise your wellbeing with 3 additional days of paid time off to rest, reset, and recharge, available once you’ve been with us for 6 months. * Continuous learning and growth – Grow your skills and stay ahead in your career with unlimited access to Udemy’s library of online courses at your own pace. * Exclusive perks and rewards – Enjoy discounts, rewards, and perks from partners worldwide across lifestyle, wellness, tech, and travel. * Support during life milestones – Take advantage of our additional 8 weeks of gender-neutral new parent leave to welcome and bond with your new addition to the family. * Fuel and focus on-site – Pandas in Vienna, Bucharest, Barcelona, and Berlin can enjoy free onsite dining, with freshly prepared lunches and snacks to keep you fueled and focused all day long. * Recognition for your contributions – Celebrate milestones and achievements with recognition and rewards for your Tenure at Bitpanda. * Show your Bitpanda pride – Access exclusive Bitpanda-branded merchandise and gear to represent. * Connect and celebrate with your team – Join unforgettable company events, from our Winter Party in Vienna to gatherings worldwide, fostering fun, connection, and celebration .…and even more location-specific benefits designed to make life at Bitpanda even more rewarding wherever you are. Above all, you will have the opportunity to learn and grow as part of Bitpanda’s incredible journey towards being Europe’s future #1 investment platform. BITPANDA IS COMMITTED TO FOSTERING A FAIR AND EQUAL ENVIRONMENT BASED ON TRUST AND MUTUAL RESPECT. WE BELIEVE THAT A DIVERSE AND INCLUSIVE WORKPLACE IS PARAMOUNT TO OUR SUCCESS AND WE ARE COMMITTED TO BUILDING A TEAM THAT REPRESENTS A WIDE VARIETY OF BACKGROUNDS, PERSPECTIVES, AND SKILLS. * THESE BENEFITS MAY BE ADJUSTED AT BITPANDA’S DISCRETION AND DO NOT APPLY TO OUR INTERNSHIPS AND EXCEPTIONS TO OUR HYBRID WORKING POLICY APPLY TO TEAMS WITH SHIFT SCHEDULES OR FOR FOLKS WHOSE ROLES REQUIRE THEM TO BE IN-OFFICE (THINK: WORKPLACES TEAM OR IT).
SUMMARY OF THE ROLE: Maze is building an AI-native vulnerability management platform. Our autonomous agents investigate, triage, and remediate security findings the way a senior analyst would, only faster and at scale. As Head of AI, you'll own the intelligence that makes those agents work: the AI research and implementation strategy for the whole company, plus the crown-jewel technical problem underneath it. Our investigation agents run multi-step, non-deterministic trajectories across a toolset of 180+ tools, tested against a ground-truth exploit lab we built for exactly this purpose. Knowing whether they're getting better, and making them better, is the most important technical problem at Maze. It's the heart of this role. This is a hands-on leadership role, not a management layer. You'll set AI direction as a member of the engineering leadership team reporting to the CTO. But you'll spend most of your time building: designing evaluation frameworks for non-deterministic agents, running fine-tuning and model-routing experiments against real data, prototyping new techniques and getting them into the product. You'll lead a small, strong AI team (3–4 engineers today) by setting the technical bar and doing the work alongside them, while working closely with our ML tech lead and the product teams building agents day to day. Your impact comes from what you ship, not the size of your org. We're not looking for someone to run a large team from two layers up. We're looking for someone who wants to define how generative AI transforms cybersecurity and keep their hands on the code. This role suits a deep LLM-era practitioner who has shipped agentic systems to production, can reason about transformer internals and fine-tuning from first principles, and moves fast. We're a three-product company with a lot of surface area, a well-funded Series A (Theory Ventures) behind us, and a Series B on the horizon. The AI foundation you set now becomes the moat we compete on for years — this is a foundational hire whose standards will shape Maze's AI trajectory well past this raise. YOUR CONTRIBUTIONS TO OUR JOURNEY: * Own AI strategy and research direction: Set the technical roadmap for our AI capabilities. Stay ahead of the research curve to find, validate, and prioritise the techniques that differentiate Maze, and turn what's real into a concrete, sequenced roadmap while discarding the hype. * Own agent quality and evaluation: Build and run the frameworks that tell us whether our investigation agents are improving. That means trajectory evaluation, ground-truth scoring against the exploit lab, and end-to-end benchmarks for non-deterministic, multi-step behaviour. This is the core problem of the role. * Build the breakthroughs yourself: Prototype a new technique in days, get it into the product, and measure the impact. You'll spend most of your time hands-on in the codebase, acting as the technical product manager who guides it to production. * Run fine-tuning and model experiments on real data: Own fine-tuning pipelines, context engineering, model migration, and cost/routing optimisation grounded in production data, not proofs of concept. * Guide prioritisation across the AI team: New techniques, papers, and ideas surface constantly. You'll be the filter deciding which of them are actually worth a prototype this week, and which are noise - keeping the team focused on what moves the needle. * Lead a small team by doing: Set technical direction for the AI engineers, raise the bar through pairing and review, hire as we scale, and stay close enough to the work to make the hard architectural calls yourself. * Partner with the CTO and engineering leadership: Turn the AI roadmap into shipped capability, and make sure evaluation is wired into how the whole team builds. * Get in front of customers: Occasional direct customer exposure, translating what security teams need into concrete improvements to the ML pipeline. * Set the pace: Ship prototypes in days, not quarters. Bring urgency to a domain where most of the field still moves slowly. WHAT YOU NEED TO BE SUCCESSFUL: * Hands-on technical leadership: A track record of leading AI work while personally building it. Strategy and implementation. You lead from the front. If you've moved permanently into management and stopped shipping, this isn't the right fit. * Shipped LLM/agentic systems to production: You've built and run generative-AI systems that real customers use, not research prototypes or slideware. You can point to agents or LLM features you put into production and improved over time. * Deep LLM-era technical depth: You can explain transformer architecture, training, fine-tuning (e.g. LoRA), and inference from first principles. We test this directly. A strong pre-LLM ML pedigree (RL, NLP, recommendations, ASR) is valuable but won't substitute for modern generative-AI depth. * Built evaluation frameworks for non-deterministic systems: You've designed and run evals for multi-step, non-deterministic agents: trajectory evaluation, LLM-as-judge, fine-tuning result measurement. This capability is rare and it's the one we most want. It will set you apart. * Top-tier pedigree with a builder's edge: Experience at a leading AI organisation or strong AI-native startup where you raised the technical bar rather than coasted on the brand. * Unambiguous startup signal: You've operated at early stage or built something from zero. You move fast, own outcomes end-to-end, and don't need a large org around you to ship. Founder experience is a strong plus. * Pace and urgency: You ship prototypes in days. You make pragmatic calls on models, cost, and scope to keep momentum, and you're impatient with quarters-long cycles. * Sharp, concise communication: You communicate clearly and tightly in a remote-first, English-speaking team, in writing and live. You get to the point. * Nice to Haves: * Security, vulnerability-management, or adversarial-domain background. Strongly preferred. Every candidate we've rated highly has had it. Offensive security, vuln management, threat detection, or applying AI to security problems all count. * Comfort in front of customers, able to translate agent behaviour and capability into terms a security team understands. * Model cost/routing pragmatism: real experience cutting inference cost and migrating between models in production. * Track record at a successful AI-first startup, scaling a system from experimentation to production impact. * PhD or published work in ML/AI at top-tier venues, paired with real production experience. YOUR FIRST 90 DAYS * Days 1–30: Get fully up to speed on every agent we've built and how our ML evaluation pipeline works today. Start drafting a short, mid, and long-term technical plan. * Days 31–60: Ship something fundamentally new — for example, fine-tune a small model and get it into production. * Days 61–90: Move onto bigger bets — RLHF for specific use cases, scalability of the evaluation approach, and deeper customer-facing model tuning. THIS ROLE IS NOT FOR: * Manager-of-managers or 2nd/3rd-line leaders who direct rather than build. * Fractional, advisory, or part-time profiles. * Research-only backgrounds without production shipping experience. WHY JOIN US: * The hardest problem in the field, unsolved. Evaluating non-deterministic, multi-step agents against ground truth is an open problem, and we've built the exploit lab and 180+ tool agent infrastructure to attack it. You'd own it, at the intersection of generative AI (LLMs and agents) and cybersecurity. * A team you'll want to be measured against. Founders and engineers from Amazon, Elastic, and Tessian. Hands-on leaders who've been part of multiple acquisitions and an IPO. Most people who join do so because of how strong the team already is. * Build the AI-native company from the ground up. A well-funded Series A (Theory Ventures) with a Series B on the horizon, early enough that you'll set the technical standards for how AI investigates security at scale. * Cybersecurity as a force for good. The work directly helps organisations stop attacks. Measurable impact, real customers, immediate feedback on what you ship. * Founding-level ownership and upside. Significant equity, a seat on engineering leadership, and a path to VP of AI as the team scales around what you build.
ABOUT BARINGA Baringa is a global consulting firm that partners with leaders to drive change and create value. With deep industry expertise, and enabled by advanced technology, the firm helps clients to deliver with greater confidence and certainty. With over 2,000 people across the UK, Europe, North America, Asia and Australia, the firm combines global insight with local understanding. The firm works across energy and resources, financial services, government and public sector, consumer products and retail, pharmaceuticals and life sciences, manufacturing, and technology, media and telecoms, with capabilities spanning strategy, transformation and operational excellence – all powered by advanced technology, data, AI and digital innovation. Clients value Baringa’s collaborative approach and the way its teams integrate seamlessly – all working with a shared understanding of what matters most. The firm is known for its kind, curious experts who listen closely and care deeply about client success as they help clients transform energy markets, modernise financial platforms, expand telecoms and digital networks through advanced data analytics, enable digital services in government, and unlock growth in consumer sectors. Certified as a Great Place to Work around the world, Baringa has been recognised by the Financial Times in 22 categories of its UK Leading Management Consultants rankings, and by Forbes for four consecutive years as one of the World’s Best Management Consulting Firms. OUR TECHNOLOGY AND CYBER TEAM ARE LOOKING FOR AN EXPERIENCED SENIOR CYBER SECURITY ENGINEER TO JOIN THE TEAM. Baringa has grown so fast, and it continues to grow rapidly. Those new joiners keep on coming! We are a global function supporting the firm as it enters new markets. We are re-architecting and evolving our cloud-based business systems and infrastructure. We are on a mission to develop great technology products, deliver great services, and protect the trust our people and clients place in us. We have installed a new operating system for ourselves, and rebooted what was a corporate IT department into a corporate technology company, transforming the way we work. Now we are building for the next era of work. AI is becoming part of the fabric of how Baringa operates, and we are developing the products and platforms that will help colleagues find knowledge, act on insight, navigate complexity, and get work done with greater speed, quality, and confidence. Some of this will be visible through intelligent experiences and agentic systems. Some of it will sit beneath the surface: data products, workflow platforms, integrations, automations, cyber security, governance, and the architecture that makes all of it safe, scalable, resilient, and useful. So much to build on, so much to progress. So much to deliver. So much to play for! Do you know what though? We are going to do it. All of it and more. We have the support to drive change. We have the belief. We are going to do great things. Come and join us! WHAT YOU WILL BE DOING The Senior Cyber Security Engineer (Cyber Security) will be responsible for designing, implementing, reviewing and managing security measures to protect our Azure and M365 environments. The ideal candidate will have extensive Cloud Security experience and a proven track record in managing security measures to protect our Azure & M365 cloud infrastructure and data. This role requires a deep understanding of Azure and M365 security services, best practices, and will work closely with various stakeholders to ensure the security of our cloud infrastructure. * Design, implement and review security solutions for Azure and M365 environments. * Design, develop, maintain and assess security architecture artifacts (e.g., models, templates, standards, and procedures). * Oversee the development and implementation of security engineering best practices and standards. * Identify & implement automation opportunities, particularly across cloud provisioning, CI/CD pipelines, and policy enforcement. * Coordinate and manage Cyber engineering projects, ensuring timely delivery and quality. * Manage and prioritise an engineering backlog using Agile methodologies. * Maintain accurate documentation and team processes. WHAT ARE WE LOOKING FOR? We recruit individuals at all levels based on merit. Some of the key skills we are looking for: * Minimum of 5 years of experience in cyber security, with at least 3 years focused on cloud security. * Experience integrating security-as-code controls (e.g. policy-as-code, guardrails, or security scanning) into CI/CD pipelines using platforms such as Azure DevOps, GitHub, and Azure Policy, or equivalent technologies. * Proven experience designing and implementing security solutions with Azure and M365 security tools and technologies. * Strong understanding of security frameworks and standards (e.g., NIST, CIS, ISO 27001). * Familiarity with scripting and automation tools (e.g., PowerShell, Azure CLI, Azure Logic Apps). * Bachelor's degree in Computer Science, Information Technology, Cyber Security, or a related field. (Or equivalent experience) * Strong analytical and problem-solving skills. * Excellent communication and teamwork abilities. Relevant certifications such as: * Microsoft 365 Certified: Security Administrator Associate * Microsoft Certified: Cybersecurity Architect Expert certification * Certified Information Systems Security Professional (CISSP) * Certified Cloud Security Professional (CCSP) WHAT A CAREER AT BARINGA WILL GIVE YOU PUTTING PEOPLE FIRST. BARINGA IS A PEOPLE FIRST COMPANY AND WELLBEING IS AT THE FOREFRONT OF OUR CULTURE. WE RECOGNISE THE IMPORTANCE OF WORK-LIFE BALANCE AND FLEXIBLE WORKING AND PROVIDE OUR STAFF AMAZING BENEFITS. SOME OF THESE BENEFITS INCLUDE: * Generous Annual Leave Policy: We recognise everyone needs a well-deserved break. We provide our employees with 5 weeks of annual leave, fully available at the start of each year. In addition to this, we have introduced our 5-Year Recharge benefit which allows all employees an additional 2 weeks of paid leave after 5 years continuous service. * Flexible Working: We know that the ‘ideal’ work-life balance will vary from person to person and change at different stages of our working lives. To accommodate this, we have implemented a hybrid working policy and introduced more flexibility around taking unpaid leave. * Corporate Responsibility Days: Our world is important to us, so all our employees get 3 every year to help social and environmental causes and increase our impact on the communities that mean the most to us. * Wellbeing Fund: We want to encourage all employees to take charge and prioritise their own wellbeing. We’ve introduced our annual People Fund to support this by offering every individual a fund to support and manage their wellbeing through an activity of their choice. * Profit Share Scheme: All employees participate in the Baringa Group Profit Share Scheme so everyone has a stake in the company’s success. DIVERSITY AND INCLUSION We are proud to be an Equal Opportunity Employer. We believe that creating an environment where everyone feels a sense of belonging is central to our culture and that diversity is paramount to driving creativity, innovation, and value for our clients and for our people. AN AWARD-WINNING WORKPLACE You can be a part of our ‘Great Place to Work’ – with our commitment to women and well-being in the workplace for all. Click here to see some of our recent awards and how we’ve achieved this. USING BUSINESS AS A FORCE FOR GOOD. We maintain high standards of environmental performance and transparency, which can be seen through our commitment to Net Zero with our SBTI-verified Scope 1, 2 and 3 emissions reduction targets and our support of the Better Business Act. We report our progress publicly and ensure that we are also externally assessed and scored through organisations like CDP and EcoVadis - helping us to continually identify where we can improve. We have a long legacy of supporting the communities in which we work, and offer a variety of ways to contribute, by putting people first and creating impact that lasts. Our Corporate Social Responsibility (CSR) agenda is about giving back to the communities in which we live and work by sharing our skills, talent and time. In essence, we aim to empower and encourage everyone in the firm to contribute to the things we care about, and support registered charities and organisations with a clear social or environmental purpose to increase the positive impact they can have. JOIN US All applications received will be reviewed by a member of our Talent Acquisition team. We never rely solely on automated screening or AI tools to make hiring decisions. Your application will be considered for employment without regard to race, ethnicity, religion, gender, gender identity or expression, sexual orientation, nationality, disability, age, faith or social background. We do not filter applications by university background and encourage those who have taken alternative educational and career paths to apply. We would like to actively encourage applications from those who identify with less represented and minority groups. We operate an inclusive recruitment process, ensuring reasonable adjustments where needed. Please contact a member of our Recruitment Team to discuss further. BARINGA PRIVACY NOTICES For UK & EU Your personal data will be retained by Baringa for up to two years, in accordance with our UK Recruitment Privacy Notice / EU Recruitment Privacy Notice, to evaluate your application and meet our legal and reporting obligations. In line with the General Data Protection Regulation (GDPR), you have the right to request access to, rectification, or erasure (subject to legal limitations) of your personal data. For more information, please contact us at privacy@baringa.com For the USA Your personal data may be retained by Baringa for up to two years, as outlined in our Recruitment Privacy Notice (AMER & APAC), to support the recruitment process and internal reporting requirements. Where applicable, and in accordance with relevant federal and state laws, you may have the right to request access to or correction of your personal information. For further details, please contact privacy@baringa.com For Australia & Singapore Your personal data will be retained by Baringa for up to two years, in accordance with our Recruitment Privacy Notice (AMER & APAC), to assess your application and meet applicable reporting and legal obligations. In line with the Australian Privacy Act and Singapore’s Personal Data Protection Act (PDPA), you may have rights to access, correct, or request limited deletion of your personal data. For more information, please contact us at privacy@baringa.com