Money sitting idle is money lost. We're fixing that.
Founded in 2023 by Antoine and Paul-Adrien, Spiko gives SMEs, non-profits, financial advisers and fintechs access to institutional-grade cash management, via app or API. We are building the full infrastructure: issuing, operating, and distributing the products ourselves.
Two years after launch, we serve thousands of organizations across Europe and process hundreds of millions of euros in flows every month.
Our ambition: become the world's leading treasury management infrastructure in a market worth trillions.
We are backed by Index Ventures, the CEO of Revolut, the founder of Kyriba, and the CTO of Wise.
Spiko runs on excellence, transparency, and straight talk.
We are looking for a Founding Infrastructure & Security Engineer to join Spiko's 8-people engineering team. You will be the first person in the team fully dedicated to infrastructure, security, and reliability. Until now, these responsibilities have been shared across our full-stack engineers.
Typical responsibilities include:
Manage and evolve our cloud infrastructure on AWS, GCP and Cloudflare using Terraform
Manage our deployed environments on Kubernetes (via Qovery)
Improve reliability, observability, and performance of our systems
Define infrastructure standards and deployment best practices
Set up continuous security scanning and automated vulnerability detection
Evaluate and deploy AI-powered pentesting tools
Organize and manage external security audits
Enforce application and cloud security best practices
Manage VPN, SSO, MFA, and access control policies
Handle employee onboarding/offboarding from a systems access perspective
Drive ISO 27001 compliance (policies, controls, evidence collection)
Respond to internal security incidents (stolen devices, phishing, suspicious access)
Cloud: AWS, GCP, Cloudflare (for DNS)
Infrastructure as Code: Terraform
Orchestration & Deployment: Kubernetes, Docker, Qovery
Databases: PostgreSQL
Observability: Datadog (logs, traces, metrics, RUM)
Identity & Access: Ory (Kratos, Hydra, Oathkeeper)
CI/CD: GitHub Actions
Application stack: TypeScript, NX, Effect, React
Requirements:
5+ years of experience in infrastructure, DevOps, or security engineering roles
Strong hands-on experience with AWS (and/or GCP), Terraform, and Kubernetes
Solid understanding of application security, network security, and cloud security best practices
Experience with security audit processes, vulnerability management, or compliance frameworks (ISO 27001, SOC 2, or similar)
Comfortable working autonomously and defining your own roadmap — you'll be the first dedicated person in this area
Comfortable working in an English-speaking environment
Curious, pragmatic, and eager to learn
Nice to have:
Experience in fintech, capital markets, or other highly regulated environments
Familiarity with CI/CD security tooling (SAST, DAST, dependency scanning, container scanning)
Experience with automated pentesting tools or AI-driven security testing
Knowledge of blockchain infrastructure or Web3 security
Experience leading or contributing to ISO 27001 certification
Compensation: €75k - €95k + Stock Options
Office: in the heart of Paris
Remote work: up to 2 days per week and one full remote week per month
The best tech for your job: latest-generation laptops and industry-leading software
Health insurance: 100% covered by Spiko
Monthly Budget to cover different perks of choice
Transport: 50% of public transport pass covered or the Forfait Mobilités Durables (FMD)
Referral Bonus
Social life: regular afterworks and biannual offsites
Screening Interview - 30 min screening call with Lilian, Talent Acquisition
Hiring Manager Interview - 30 min with Nicolas, Tech Lead
45 min technical interview focused on infrastructure & security with one engineer (remote)
2h hands-on technical session with two engineers (infrastructure design, security scenario) (in the office)
Final Interviews with the Founders
Reference Check: we'll reach out to your references to gather further insights
Offer
At Spiko, we hire for what you can bring - your skills, your judgment, your drive - not for what you look like, where you come from, or what your background is. We're committed to building a team that reflects the breadth of the customers we serve, and to creating an environment where everyone can do their best work. If something in this job description doesn't match your background perfectly but you believe you'd thrive in the role, we encourage you to apply anyway. Tell us why.
