Data Security Engineer at Platacard

We are seeking an experienced and driven Data Protection Security Engineer to strengthen our data security capabilities across the organization. This role sits at the intersection of Data Protection, Application Security, and Anti-Fraud, focusing on safeguarding sensitive data, preventing data leaks, and ensuring secure data usage across systems and teams. You will play a key role in designing, implementing, and evolving data protection controls, integrating them into engineering processes, and collaborating closely with security, fraud, and development teams. The ideal candidate combines strong technical expertise with a deep understanding of data security risks, modern protection tools, and secure development practices. Challenges that await you: Data Protection & Security Controls: Design and implement data classification frameworks and enforce data handling standards across the organization. Deploy and maintain DLP/DDR solutions (endpoint, network, and cloud), ensuring effective monitoring and protection of sensitive data. Manage encryption mechanisms (at rest and in transit) and control access to sensitive data using RBAC/ABAC models. Drive data discovery and data lineage initiatives to ensure full visibility of data flows and implement controls to detect and prevent data exfiltration. AppSec & Secure Development Integration: Embed data protection controls into the SDLC following a shift-left approach. Conduct threat modeling with a focus on data leakage risks. Ensure secure logging practices by preventing sensitive data exposure in logs. Implement and enforce secure storage practices for secrets, tokens, and credentials. Identify and remediate vulnerabilities related to data access and exposure. Anti-Fraud & Data Misuse Prevention: Analyze data access patterns to detect anomalies and potential misuse. Develop detection mechanisms for suspicious operations involving sensitive data. Integrate with anti-fraud systems by contributing signals, triggers, and detection rules. Participate in investigations related to fraud and insider threats, and design controls to prevent data abuse scenarios such as mass downloads or scraping. Engineering & Automation: Automate security controls using policy-as-code and detection-as-code approaches. Support the implementation of data protection tools and services across infrastructure and applications. Ensure secure API design and enforce access control for data exposed via services. Governance & Compliance: Support regulatory and internal compliance requirements related to data protection. Define and track key metrics and KPIs (coverage, incidents, MTTD). Prepare for audits and actively participate in them. Maintain clear documentation of data flows, controls, and protection mechanisms. Collaboration & Enablement: Work closely with AppSec, InfoSec, SOC, and Fraud teams to ensure a unified security approach. Provide guidance to developers on secure data handling practices. Participate in architecture reviews to ensure data protection requirements are embedded at design stage. What makes you a great fit: • Strong experience in Data Protection, Information Security, or Application Security • Hands-on experience with DLP/DDR solutions and data protection technologies • Solid understanding of data classification, encryption, and access control models (RBAC/ABAC) • Experience integrating security controls into SDLC (shift-left practices) • Knowledge of threat modeling methodologies with a focus on data risks • Experience with secure storage practices (secrets, tokens, credentials) • Familiarity with monitoring and detection of data exfiltration and misuse • Understanding of API security and secure service-to-service data access • Experience in automating security controls (policy-as-code / detection-as-code) • Strong analytical skills and ability to detect anomalies in data access patterns • Excellent communication skills and ability to collaborate with cross-functional teams Your bonus skills: • Experience in fintech or high-security environments • Familiarity with anti-fraud systems and fraud detection techniques • Experience with data lineage and data discovery tools • Hands-on experience with cloud security (AWS/GCP/Azure) in the context of data protection • Knowledge of SIEM/SOC processes and integration with detection systems • Experience participating in security incident investigations (insider threat, fraud) • Background in secure architecture reviews Our ways of working: • Innovative Spirit: A commitment to creativity and groundbreaking solutions. • Honest Feedback: valuing open, transparent communication. • Supportive Team: a strong, collaborative community. • Celebrating Achievements: recognizing our wins together. • High-Tech Environment: a team full of smart and revolutionary people who date to challenge the status quo of incumbent finances. Our benefits: • Relocation support to one of our hubs — Cyprus, Georgia, Spain, Serbia or Kazakhstan — with assistance for the employee and their family • Flexible work from one of our offices or remote • Healthcare Coverage • Education Budget: Language lessons, professional training and certifications • Wellness Budget: Mental health and fitness activity reimbursements • Vacation policy: 20 days of annual leave and paid sick leave