2,614 Open roles
98 Companies
54 Posted today
Jobs / Casumo / Information Security Engineer
Posted 2026-05-21

Information Security Engineer

Description

At Casumo, we’re building a secure, scalable, and forward-thinking digital environment - and we’re looking for an Information Security Engineer to help us do it. In this role, you’ll work at the intersection of engineering and security, embedding best practices into our systems, products, and processes. You’ll collaborate closely with developers, infrastructure teams, and external partners to ensure our platforms remain resilient, secure, and compliant - without slowing innovation.

Responsibilities
  • Design, build, and maintain security tooling and automation to protect applications, infrastructure, and data.
  • Integrate security into the software development lifecycle (SDLC), particularly across modern web stacks.
  • Conduct code reviews, threat modelling, and architecture assessments to strengthen system security.
  • Identify and remediate vulnerabilities across applications, APIs, and services.
  • Partner with development teams to promote and improve secure coding practices.
  • Support and optimise application security tools (e.g. SAST, DAST, dependency scanning).
  • Help secure cloud-native and distributed systems at scale.
  • Take ownership of reducing security debt—working with engineers to design, track, and implement effective fixes.
  • Act as an escalation point for security incidents identified by our managed SOC.
  • Lead or support incident response, investigation, and remediation efforts.
  • Collaborate with SOC providers to enhance detection and response capabilities.
  • Contribute to maintaining security frameworks such as ISO 27001 and PCI DSS.
  • Support audits and regulatory requirements as needed.
  • Maintain and improve security documentation, policies, and technical standards.
  • Champion security best practices across the organisation through training and collaboration.
  • Translate complex security concepts into clear, practical guidance for engineers and stakeholders.
  • Stay up to date with emerging threats, vulnerabilities, and industry trends.
Requirements
  • Degree in Computer Science, Software Engineering, or equivalent practical experience.
  • Around 3–6 years of experience in software engineering, security engineering, or a related field.
  • Hands-on experience securing modern applications and distributed systems.
  • Strong understanding of: Application security principles and common vulnerabilities (e.g. OWASP Top 10), Authentication, authorisation, and security protocols, Applied cryptography fundamentals.
  • Experience with one or more programming languages such as: JavaScript (essential for modern web applications), Python, Java, C/C++, PHP or similar.
  • Ability to read, write, and review code from a security perspective.
  • Familiarity with cloud environments, APIs, and microservices architectures.
  • Experience defending against real-world attack vectors across multiple domains.
  • Understanding of endpoint, network, and application security.
  • Exposure to vulnerability management and security testing practices.
  • Nice to have: Security certifications (e.g. CompTIA Security+, CySA+, AWS Certified Security – Specialty, Google Cloud Professional Cloud Security Engineer).
  • Nice to have: Experience working with ISO/IEC 27001 or PCI DSS environments.
  • Nice to have: Experience collaborating with or operating alongside a managed SOC.
  • Nice to have: Familiarity with security tooling (e.g. Cloudflare, SAST/DAST tools).
  • Nice to have: Experience with Infrastructure as Code (Terraform, CloudFormation) and container security (Docker, Kubernetes).

A pragmatic security engineer who balances risk with business needs.

Curious, self-driven, and comfortable in a fast-paced environment.

A strong communicator who can collaborate across teams and disciplines.

Comfortable taking ownership and working autonomously.

Trustworthy with sensitive and confidential information.

Benefits
  • Private health insurance
  • Wellness incentives, including a fitness allowance and mental well-being services
  • Flexible national holidays: public holidays mean more time off, choose how and when to enjoy them!
  • 2 weeks Work From Anywhere (10 days), increased to 4 weeks (20 days) after longer duration of employment within the Company: explore the world while working remotely
  • Gourmet lunches and healthy snacks prepared by our in-house chef
  • Variety of discounts from local vendors
  • Access to some of the greatest tools and platforms for developing your professional skills and building success within your role
  • A range of training courses, known as Casumo College, for continuous learning and growth
  • Social events for building strong relationships with colleagues from all across the organisation
  • Office lunches - three times per week
About Casumo

At Casumo, we don’t do “ordinary.” We launched in Sweden in 2012 to shake up the online casino world, and we’ve been colouring outside the lines ever since. Today, we’re live across regulated markets under licences from the MGA, Gibraltar, UK, Sweden, and Spain. We’re bold, but we’re also buttoned-up where it counts. Inside the Umoverse, you’ll find thousands of games, a live casino, a slick sportsbook, daily campaigns (we call them Umodays), live leaderboards (Umoboards), and an award-winning app built to make play fast, fun, and seamless. Behind it all? A team of 45+ nationalities spread across Malta, Gibraltar, North Macedonia, Croatia, Spain, and Serbia - curious minds who thrive on creativity and collaboration. Our vision? To create a trusted, responsible gaming environment that transforms everyday moments into lasting memories.

Read more about Casumo →